CVE-2011-1691

The counterToCSSValue function in CSSComputedStyleDeclaration.cpp in the Cascading Style Sheets CSS implementation in WebCore in WebKit before r82222, as used in Google Chrome before 11.0.696.43 and other products, does not properly handle access to the 1 counterIncrement and 2 counterReset...

CVE-2011-1691

The CVE-2011-1691 issue affects WebKit’s CSS Core (CSSComputedStyleDeclaration.cpp) in WebCore, where counterToCSSValue mishandles access to counterIncrement and counterReset from getComputedStyle data. It permits remote attackers to trigger a denial-of-service (NULL pointer dereference and crash...

(Pwn2Own) Webkit CSS Text Element Count Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WebKit library's...

Joomla! Component joomlacontenteditor - Blind SQL Injection

Joomla! Component joomlacontenteditor - Blind SQL Injection =================================================================== joomlacontenteditor comjce BLIND sql injection vulnerability =================================================================== Software: joomlacontenteditor comjce...

CVE-2011-1492

steps/utils/modcss.inc in Roundcube Webmail before 0.5.1 does not properly verify that a request is an expected request for an external Cascading Style Sheets CSS stylesheet, which allows remote authenticated users to trigger arbitrary outbound TCP connections from the server, and possibly obtain...

CVE-2011-1492

CVE-2011-1492 affects Roundcube Webmail prior to 0.5.1. The issue is in steps/utils/modcss.inc, where requests for an external CSS stylesheet are not properly verified, allowing remote authenticated users to trigger arbitrary outbound TCP connections from the server and potentially obtain sensiti...

Google Chrome multiple vulnerabilities - March 11 (Linux)

The host is running Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodgooglechromemultvulnmar11lin.nasl 7015 2017-08-28 11:51:24Z teissa $ Google Chrome multiple vulnerabilities - March 11 Linux Authors: Sooraj KS Copyright: Copyright c 2011 SecPod,...

Google Chrome < 10.0.648.204 Multiple Vulnerabilities (Mar 2011) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome < 10.0.648.204 Multiple Vulnerabilities (Mar 2011) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 15 Update: roundcubemail-0.5.1-1.fc15

RoundCube Webmail is a browser-based multilingual IMAP client with an application-like user interface. It provides full functionality you expect from an e-mail client, including MIME support, address book, folder manipulation, message searching and spell checking. RoundCube Webmail is written in...

CVE-2011-1294

Google Chrome before 10.0.648.204 does not properly handle Cascading Style Sheets CSS token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."...

Null pointer dereference

Google Chrome before 10.0.648.204 does not properly handle Cascading Style Sheets CSS token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."...

CVE-2011-1294

Google Chrome before 10.0.648.204 does not properly handle Cascading Style Sheets CSS token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."...

CVE-2011-1294

The CVE-2011-1294 entry corresponds to Google Chrome before version 10.0.648.204, where improper handling of CSS token sequences could cause a denial of service and possibly other impact via a stale pointer. Public records (NVD/OpenVAS entries) corroborate Chrome-related vulnerabilities in Mar 20...

CVE-2011-1294

Removed by vendor...

Google Chrome < 10.0.648.204 Multiple Vulnerabilities

Binary data 800965.prm...

Google Chrome < 10.0.648.204 Multiple Vulnerabilities

Binary data 5845.pasl...

Google Chrome < 10.0.648.204 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is earlier than 10.0.648.204. Such versions of Chrome are affected by multiple vulnerabilities: - A buffer error exists in string handling functions. Issue 72517 - A use-after-free error exists in the processes for loading frames. Issue...

Host-Extract - Host/IP Pattern Extractor Tool !

Host-Extract - Host/IP Pattern Extractor Tool ! This little ruby script tries to extract all IP/Host patterns in page response of a given URL and JavaScript/CSS files of that URL. With it, you can quickly identify internal IPs/Hostnames, development IPs/ports, cdn, load balancers, additional...

CVE-2011-0161

WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle the Attr.style accessor, which allows remote attackers to bypass the Same Origin Policy and inject Cascading Style Sheets CSS token sequences via a crafted web site...