CVE-2013-3909

CVE-2013-3909 affects Microsoft Internet Explorer 6–8. An attacker can read content from a different domain/zone via crafted CSS token sequences, enabling remote information disclosure. The issue is addressed by Microsoft Security Bulletin MS13-088 and corresponding patches. The vulnerability sch...

Microsoft Internet Explorer Multiple Vulnerabilities (2888505)

This host is missing a critical security update according to Microsoft Bulletin MS13-088. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2013-3909

Microsoft Internet Explorer 6 through 8 allows remote attackers to read content from a different 1 domain or 2 zone via crafted characters in Cascading Style Sheets CSS token sequences, aka "Internet Explorer Information Disclosure Vulnerability."...

CA20131024-01: Security Notice for CA SiteMinder

-----BEGIN PGP SIGNED MESSAGE----- CA20131024-01: Security Notice for CA SiteMinder Issued: October 24, 2013 CA Technologies Support is alerting customers to a potential vulnerability in CA SiteMinder that can be mitigated by utilizing existing product functionality. The vulnerability,...

Fedora Update for roundcubemail FEDORA-2013-16232

Check for the Version of roundcubemail OpenVAS Vulnerability Test Fedora Update for roundcubemail FEDORA-2013-16232 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

[SECURITY] Fedora 19 Update: drupal7-theme-zen-5.4-1.fc19

Zen is a powerful, yet simple, HTML5 starting theme with a responsive, mobile-first grid design. If you are building your own standards-compliant theme, you will find it much easier to start with Zen than to start with Garland or Stark. This theme has fantastic online documentation...

[SECURITY] Fedora 19 Update: roundcubemail-0.9.3-2.fc19

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

CVE-2013-5570

Cross-site scripting XSS vulnerability in the Javascript and CSS Optimizer extension before 1.1.14 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2013-5570

Cross-site scripting XSS vulnerability in the Javascript and CSS Optimizer extension before 1.1.14 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2013-5570

CVE-2013-5570 is an XSS vulnerability in the TYPO3 extension Javascript and CSS Optimizer before version 1.1.14 . The flaw allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Affected versions include 1.1.13 and earlier. Remediation: update to 1.1.14 , which is...

Animated line drawing in SVG

There's a demo you're missing here because JavaScript or inline SVG isn't available. I like using diagrams as a way of showing information flow or browser behaviour, but large diagrams can be daunting at first glance. When I gave talks about the Application Cache and rendering performance I start...

Microsoft Internet Explorer column-count Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Oracle Linux 5 : squirrelmail (ELSA-2009-1066)

The remote Oracle Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2009-1066 advisory. - fix broken patch for CVE-2009-1579 - fix broken patch for CVE-2009-1579 - fix: CVE-2009-1581 : CSS positioning vulnerability - fix: CVE-2009-1579 :...

Oracle Linux 5 : kdelibs (ELSA-2009-1127)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-1127 advisory. - Resolves: 505621, CVE-2009-1687, integer overflow in KJS JavaScript garbage collector CVE-2009-1698, KHTML CSS parser - incorrect handling CSS style...

Oracle Linux 3 : kdelibs (ELSA-2009-1128)

From Red Hat Security Advisory 2009:1128 : Updated kdelibs packages that fix one security issue are now available for Red Hat Enterprise Linux 3. This update has been rated as having important security impact by the Red Hat Security Response Team. The kdelibs packages provide libraries for the K...

Apple Safari CSS format Argument Handling Memory Corruption - High Confidence (CVE-2010-0046)

Safari is a web browsing application developed by Apple. The browser is capable of processing HTML, images, scripting languages, and various other popular Internet specifications. Safari is the default browser included with the Mac OS X operating system. A memory corruption vulnerability exists i...

CVE-2013-2866

CVE-2013-2866 affects Google Chrome and Chrome OS where the Flash plugin's handling of an embedded Flash element’s opacity allowed a clickjacking technique to trick users into granting camera or microphone access. Root cause: improper determination of user consent for Flash-permission requests, e...

Internet Explorer CSS Use After Free (MS13-047; CVE-2013-3117)

A use after free vulnerability has been reported in Microsoft Internet Explorer...

CVE-2013-2844

Use-after-free vulnerability in the Cascading Style Sheets CSS implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to style resolution...

CVE-2013-2844

Use-after-free vulnerability in the Cascading Style Sheets CSS implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to style resolution...