5731 matches found
CVE-2006-2335
Jelsoft vBulletin (CSS upload handling) is affected by a vulnerability where uploading a CSS file containing PHP code and selecting it via the style chooser can result in the PHP code being executed. The issue is described as enabling remote authenticated administrators to gain shell access throu...
vbulletin security Alert
---------------------------------------------------------- Discovered by: Aura ARIA - SECURITY TEAM Gr33t to: O.U.T.L.A.W & R@1D3N & Smok3r ----------------------------------------------------------- » Vendor: Vbulletin » Summary: vbulletin is a powerfull Forum System »Description An administrato...
MS Internet Explorer <= 6.0.2900 SP2 (CSS Attribute) Denial of Service
No description provided by source. !-- Internet Explorer = 6.0.2900 SP2 suffers from a DoS vulnerability in which a remote users Internet Explorer session can be crashed when hovering their cursor over a specially made table. The fault occurs when the "position" CSS attribute is set to a table...
Microsoft Internet Explorer 6.0.2900 SP2 - CSS Attribute Denial of Service
Microsoft Internet Explorer 6.0.2900 SP2 - CSS Attribute Denial of Service IE-Crash - By seven header position: fixed; height: 761px; width: 1268; milw0rm.com 2006-05-10...
MS Internet Explorer <= 6.0.2900 SP2 (CSS Attribute) Denial of Service
Exploit for unknown platform in category dos / poc ====================================================================== MS Internet Explorer IE-Crash - By seven header position: fixed; height: 761px; width: 1268; 0day.today 2018-04-02...
Microsoft Internet Explorer 6.0.2900 SP2 - CSS Attribute Denial of Service
IE-Crash - By seven header position: fixed; height: 761px; width: 1268; milw0rm.com 2006-05-10...
Ubuntu 5.04 / 5.10 : mozilla-thunderbird vulnerabilities (USN-276-1)
Igor Bukanov discovered that the JavaScript engine did not properly declare some temporary variables. Under some rare circumstances, a malicious mail with embedded JavaScript could exploit this to execute arbitrary code with the privileges of the user. CVE-2006-0292, CVE-2006-1742 The function...
[SECURITY] [DSA 1044-1] New Mozilla Firefox packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1044-1 [email protected] http://www.debian.org/security/ Martin Schulze April 26th, 2006 http://www.debian.org/security/faq -...
XSS Bug in OpenGear Server Website
0x0 Advisory ============== Web Penetrated By:- [email protected] ======================================= Hit :- Site Manipulation. ==== Vulnerability :- XSS Injection && CSS Injection OpenGear WebSite ============== BrowserStatus :- Windows IE 6.0 ============== Injections :- ========== 0x01 ' ...
security flaw
Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via a large number in the CSS letter-spacing property that leads to a heap-based buffer overflow...
Ubuntu 4.10 / 5.04 / 5.10 : mozilla-firefox, firefox vulnerabilities (USN-271-1)
Web pages with extremely long titles caused subsequent launches of Firefox browser to hang for up to a few minutes, or caused Firefox to crash on computers with insufficient memory. CVE-2005-4134 Igor Bukanov discovered that the JavaScript engine did not properly declare some temporary variables...
security flaw
Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via a large number in the CSS letter-spacing property that leads to a heap-based buffer overflow...
security flaw
The CSS border-rendering code in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via certain Cascading Style Sheets CSS that...
Mozilla Firefox CSS Letter-Spacing Heap Overflow Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Mozilla/Firefox web browser and Thunderbird e-mail client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious e-mail. The...
Mozilla products border-rendering code vulnerability using CSS
Overview A vulnerability in the way Mozilla products and derivative programs handle certain CSS methods could allow a remote attacker to crash the application or execute arbitrary code on a vulnerable system. Description The Mozilla browser and derived products include support for Content Style...
Mozilla CSS integer overflow vulnerability
Overview Mozilla products contain an integer overflow that could allow a remote, unauthenticated attacker to execute arbitrary code. Description Cascading Style SheetsCSS is a mechanism for adding style to web documents. The problem Mozilla products contain an integer overflow in the CSS letter...
[Full-disclosure] ZDI-06-010: Mozilla Firefox CSS Letter-Spacing Heap Overflow Vulnerability
ZDI-06-010: Mozilla Firefox CSS Letter-Spacing Heap Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-010.html April 13, 2006 -- CVE ID: CVE-2006-1730 -- Affected Vendor: Mozilla -- Affected Products: Mozilla 1.7.x and below Firefox 1.5.x and below -- TippingPointTM IPS...
security flaw
Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via a large number in the CSS letter-spacing property that leads to a heap-based buffer overflow...
security flaw
The CSS border-rendering code in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via certain Cascading Style Sheets CSS that...
CVE-2006-1739
The CSS border-rendering code in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via certain Cascading Style Sheets CSS that...