CVE-2012-1863

Cross-site scripting XSS vulnerability in Microsoft Office SharePoint Server 2007 SP2 and SP3 Windows SharePoint Services 3.0 SP2, and SharePoint Foundation 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript elements in a URL, aka "SharePoint...

CVE-2012-1861

Cross-site scripting XSS vulnerability in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript elements in a URL, aka "SharePoint Script i...

Cross site scripting

Cross-site scripting XSS vulnerability in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript elements in a URL, aka "SharePoint Script i...

CVE-2012-1861

Cross-site scripting XSS vulnerability in Microsoft SharePoint Server 2010 Gold and SP1, SharePoint Foundation 2010 Gold and SP1, and Office Web Apps 2010 Gold and SP1 allows remote attackers to inject arbitrary web script or HTML via crafted JavaScript elements in a URL, aka "SharePoint Script i...

Mozilla Products 'jsinfer.cpp' Denial of Service Vulnerability (Mac OS X)

This host is installed with Mozilla firefox/thunderbird and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsjsinferdosvulnmacosx.nasl 6445 2017-06-27 12:31:06Z santu $ Mozilla Products 'jsinfer.cpp' Denial of Service Vulnerability Mac OS X Authors: Racha...

Mozilla: Miscellaneous memory safety hazards (rv:13.0/ rv:10.0.5) (MFSA 2012-34)

jsinfer.cpp in Mozilla Firefox ESR 10.x before 10.0.5 and Thunderbird ESR 10.x before 10.0.5 does not properly determine data types, which allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via crafted JavaScript code...

Google Chrome Cache History Information Disclosure Vulnerabilities - Linux

Google Chrome is prone to information disclosure vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Opera Cache History Information Disclosure Vulnerability (Windows)

The host is installed with Opera and is prone to information disclosure vulnerability. OpenVAS Vulnerability Test $Id: gboperacachehistoryinfodiscvulnwin.nasl 7006 2017-08-25 11:51:20Z teissa $ Opera Cache History Information Disclosure Vulnerability Windows Authors: Rachana Shetty Copyright:...

Mozilla Firefox Cache Objects History Enumeration Weakness Vulnerability (MAC OS X)

The host is installed with Mozilla Firefox and is prone to cache objects history enumeration weakness vulnerability. OpenVAS Vulnerability Test $Id: gbmozillafirefoxcacheobjenumweaknessvulnmacosx.nasl 7006 2017-08-25 11:51:20Z teissa $ Mozilla Firefox Cache Objects History Enumeration Weakness...

Mozilla Firefox Cache Objects History Enumeration Weakness Vulnerability (Windows)

The host is installed with Mozilla Firefox and is prone to cache objects history enumeration weakness vulnerability. OpenVAS Vulnerability Test $Id: gbmozillafirefoxcacheobjenumweaknessvulnwin.nasl 7019 2017-08-29 11:51:27Z teissa $ Mozilla Firefox Cache Objects History Enumeration Weakness...

Design/Logic Flaw

Google Chrome 15.0.874.121 and earlier does not prevent capture of data about the times of Same Origin Policy violations during IFRAME loading attempts, which makes it easier for remote attackers to determine whether a document exists in the browser cache via crafted JavaScript code...

CVE-2011-3886

Google V8, as used in Google Chrome before 15.0.874.102, allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted JavaScript code that triggers out-of-bounds write operations...

CVE-2011-2881

Google Chrome before 14.0.835.202 does not properly handle Google V8 hidden objects, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via crafted JavaScript code...

CVE-2011-3232

YARR, as used in Mozilla Firefox before 7.0, Thunderbird before 7.0, and SeaMonkey before 2.4, allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted JavaScript...

CVE-2011-3232

CVE-2011-3232 affects the YARR engine used by Mozilla Firefox up to 7.0, Thunderbird up to 7.0, and SeaMonkey up to 2.4. The vulnerability allows remote attackers to crash the application or potentially execute arbitrary code via crafted JavaScript. The issue arises from the JavaScript engine han...

Google Chrome 'WebKit' CSS Implementation DoS Vulnerability - Windows

Google Chrome is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Null pointer dereference

The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in the Cascading Style Sheets CSS implementation in WebCore in WebKit before r82222, as used in Google Chrome before 11.0.696.43 and other products, does not properly handle access to the 1 counterIncrement and 2 counterReset...

CVE-2011-1186

Google Chrome before 10.0.648.127 on Linux does not properly handle parallel execution of calls to the print method, which might allow remote attackers to cause a denial of service application crash via crafted JavaScript code...

Code injection

Google Chrome before 10.0.648.127 on Linux does not properly handle parallel execution of calls to the print method, which might allow remote attackers to cause a denial of service application crash via crafted JavaScript code...

CVE-2011-1186

Google Chrome before 10.0.648.127 on Linux does not properly handle parallel execution of calls to the print method, which might allow remote attackers to cause a denial of service application crash via crafted JavaScript code...