11 matches found
EUVD-2010-3808
Malware in sbrugna...
Scientific Linux Security Update : webkitgtk on SL6.x i386/x86_64
Multiple memory corruption flaws were found in WebKit. Malicious web content could cause an application using WebKitGTK+ to crash or, potentially, execute arbitrary code with the privileges of the user running the application. CVE-2010-1782, CVE-2010-1783, CVE-2010-1784, CVE-2010-1785,...
FreeBSD Ports: webkit-gtk2
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Fedora Update for webkitgtk FEDORA-2011-0121
Check for the Version of webkitgtk OpenVAS Vulnerability Test Fedora Update for webkitgtk FEDORA-2011-0121 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
FreeBSD : webkit-gtk2 -- Multiple vulnerabilities (06a12e26-142e-11e0-bea2-0015f2db7bde)
Gustavo Noronha Silva reports : The patches to fix the following CVEs are included with help from Huzaifa Sidhpurwala from the Red Hat security team. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML...
Design/Logic Flaw
WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail message that uses a LINK element for X-Confirm-Reading-To functionality, a related issue to...
CVE-2010-3829
WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail message that uses a LINK element for X-Confirm-Reading-To functionality, a related issue to...
CVE-2010-3829
CVE-2010-3829 is a WebKit vulnerability described for WebKit in Apple iOS prior to 4.2, where processing of an HTML LINK element with DNS prefetching could bypass the remote image loading setting in Mail. The issue allows remote attackers to bypass access restrictions via a LINK element used for ...
CVE-2010-3829
WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail message that uses a LINK element for X-Confirm-Reading-To functionality, a related issue to...
CVE-2010-3813
The WebCore::HTMLLinkElement::process function in WebCore/html/HTMLLinkElement.cpp in WebKit, as used in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4; webkitgtk before 1.2.6; and possibly other products does not verify whether DNS...
CVE-2010-3813
CVE-2010-3813 concerns WebKit: The WebCore::HTMLLinkElement::process function does not verify whether DNS prefetching is enabled when processing a LINK element. This can let remote attackers bypass intended access restrictions, demonstrated by an HTML email using a LINK element for X-Confirm-Read...