Linux Distros Unpatched Vulnerability : CVE-2011-0778

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via...

SuSE 11.1 Security Update : webkit (SAT Patch Number 4765)

Webkit version 1.2.7 fixes several security issues. CVE-2010-2441 / CVE-2010-2901 / CVE-2010-4042 / CVE-2010-4492 / CVE-2010-4493 / CVE-2010-4578 / CVE-2011-0482 / CVE-2011-0778 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

openSUSE Security Update : libwebkit (openSUSE-SU-2011:0482-1)

This version upgrade of webkit to 1.2.7 fixes the following bugs : - CVE-2010-2441: CVSS v2 Base Score: 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N: Permissions, Privileges, and Access Control CWE-264 - CVE-2010-2901: CVSS v2 Base Score: 3.7 AV:L/AC:H/Au:N/C:P/I:P/A:P: Buffer Errors CWE-119 - CVE-2010-4042:...

Design/Logic Flaw

The HTML5 drag and drop functionality in WebKit in Apple Safari before 5.0.4 allows user-assisted remote attackers to bypass the Same Origin Policy and obtain sensitive information via vectors related to the dragging of content. NOTE: this might overlap CVE-2011-0778...

Debian DSA-2188-1 : webkit - several vulnerabilities

Several vulnerabilities have been discovered in WebKit, a Web content engine library for GTK+. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2010-1783 WebKit does not properly handle dynamic modification of a text node, which allows remote attackers to...

Debian: Security Advisory (DSA-2166-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 2166-1 (chromium-browser)

The remote host is missing an update to chromium-browser announced via advisory DSA 2166-1. OpenVAS Vulnerability Test $Id: deb21661.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2166-1 chromium-browser Authors: Thomas Reinke Copyright: Copyright c 2011...

FreeBSD Ports: webkit-gtk2

The remote host is missing an update to the system as announced in the referenced advisory. VID 35ecdcbe-3501-11e0-afcd-0015f2db7bde OpenVAS Vulnerability Test $ Description: Auto generated from VID 35ecdcbe-3501-11e0-afcd-0015f2db7bde Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

[SECURITY] [DSA 2166-1] chromium-browser security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2166-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano February 16, 2011 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2166-1] chromium-browser security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2166-1 [email protected] http://www.debian.org/security/ Giuseppe Iuculano February 16, 2011 http://www.debian.org/security/faq -...

CVE-2011-0778

Google Chrome before 9.0.597.84 does not properly restrict drag and drop operations, which might allow remote attackers to bypass the Same Origin Policy via unspecified vectors...

CVE-2011-0778

Google Chrome before 9.0.597.84 is vulnerable due to improper restriction of drag-and-drop operations, which could allow remote attackers to bypass the Same Origin Policy via unspecified vectors. Root cause: insufficiently restricted drag-and-drop handling. Impact: potential cross-origin data exp...