10 matches found
Imgur: De-anonymization Attack: Cross Site Information Leakage
Dear Imgur Security Team, We are researchers at the IMDEA Software Institute in Madrid, Spain. We have been working on analyzing Cross-Site Browser Leaks xsleaks and building a tool for finding instances of it on target web sites. Recently we tested imgur.com and discovered a flaw that can affect...
openSUSE Security Update : flash-player (openSUSE-SU-2011:0897-1)
The update to Flash-Player 10.3.188.5 fixes various security issues : - CVE-2011-2130: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2134: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2135: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2136: CVSS v...
openSUSE Security Update : flash-player (openSUSE-SU-2011:0897-1)
The update to Flash-Player 10.3.188.5 fixes various security issues : - CVE-2011-2130: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2134: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2135: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2136: CVSS v...
SuSE 10 Security Update : flash-player (ZYPP Patch Number 7679)
The update to Flash-Player 10.3.188.5 fixes various security issues : - CVE-2011-2130: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2134: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2135: CVSS v2 Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P - CVE-2011-2136: CVSS v...
Adobe Air and Flash Player Multiple Vulnerabilities (Mac OS X)
This host is installed with Adobe Air and/or Flash Player and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodadobeprdtsmultvulnmacosx.nasl 7024 2017-08-30 11:51:43Z teissa $ Adobe Air and Flash Player Multiple Vulnerabilities Mac OS X Authors: Madhuri D Copyright:...
Adobe Air and Flash Player Multiple Vulnerabilities (Aug 2011) - Windows
Adobe Air and/or Flash Player is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Flash Player <= 10.3.181.36 Multiple Vulnerabilities (APSB11-21)
According to its version, the instance of Flash Player installed on the remote Windows host is 10.3.181.36 or earlier. As such, it is reportedly affected by several critical vulnerabilities : - Multiple buffer overflow vulnerabilities could lead to code execution. CVE-2011-2130, CVE-2011-2134,...
FreeBSD : mozilla -- multiple vulnerabilities (c4f067b9-dc4a-11df-8e32-000f20797ede)
The Mozilla Project reports : MFSA 2010-64 Miscellaneous memory safety hazards rv:1.9.2.11/ 1.9.1.14 MFSA 2010-65 Buffer overflow and memory corruption using document.write MFSA 2010-66 Use-after-free error in nsBarProp MFSA 2010-67 Dangling pointer vulnerability in LookupGetterOrSetter MFSA...
Mozilla cross-site information disclosure via modal calls
Mozilla Firefox before 3.5.14 and 3.6.x before 3.6.11, Thunderbird before 3.0.9 and 3.1.x before 3.1.5, and SeaMonkey before 2.0.9 do not properly handle certain modal calls made by javascript: URLs in circumstances related to opening a new window and performing cross-domain navigation, which...
CVE-2008-1318
Unspecified vulnerability in MediaWiki 1.11 before 1.11.2 allows remote attackers to obtain sensitive "cross-site" information via the callback parameter in an API call for JavaScript Object Notation JSON formatted results...