Opera Browser 'document.write()' Code execution Vulnerability - Windows

Opera web browser is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mozilla Firefox v3.6 and Opera Long String Crash(0day) Exploit

No description provided by source. code by Asheesh kumar Mani Tripathi email [email protected] company www.aksitservices.co.in Credit by Asheesh Anaconda Download www.mozilla.com/firefox Background Mozilla Firefox is a popular internet browser. .....: Vulnerability This bug is a typic...

Mozilla Foundation Security Advisory 2009-44

Mozilla Foundation Security Advisory 2009-44 Title: Location bar and SSL indicator spoofing via window.open on invalid URL Impact: Moderate Announced: August 3, 2009 Reporter: Juan Pablo Lopez Yacubian Products: Firefox Fixed in: Firefox 3.5.2 Firefox 3.0.13 Description Security researcher Juan...

Design/Logic Flaw

Mozilla Firefox before 3.0.13, and 3.5.x before 3.5.2, allows remote attackers to spoof the address bar, and possibly conduct phishing attacks, via a crafted web page that calls window.open with an invalid character in the URL, makes document.write calls to the resulting object, and then calls th...

CVE-2009-2654

Mozilla Firefox before 3.0.13, and 3.5.x before 3.5.2, allows remote attackers to spoof the address bar, and possibly conduct phishing attacks, via a crafted web page that calls window.open with an invalid character in the URL, makes document.write calls to the resulting object, and then calls th...

Location bar and SSL indicator spoofing via window.open() on invalid URL — Mozilla

Security researcher Juan Pablo Lopez Yacubian reported that an attacker could call window.open on an invalid URL which looks similar to a legitimate URL and then use document.write to place content within the new document, appearing to have come from the spoofed location. Additionally, if the...

Mozilla Firefox Buffer Overflow Vulnerability - July09 (Windows)

The host is installed with Mozilla Firefox browser and is prone to Buffer Overflow vulnerability. OpenVAS Vulnerability Test $Id: gbfirefoxbofvulnjul09win.nasl 4865 2016-12-28 16:16:43Z teissa $ Mozilla Firefox Buffer Overflow Vulnerability - July09 Windows Authors: Sharath S Copyright: Copyright...

CVE-2008-2014

Mozilla Firefox 3.0 beta 5 allows remote attackers to cause a denial of service application crash via JavaScript code that calls document.write in an infinite loop...

CVE-2008-2014

Mozilla Firefox 3.0 beta 5 allows remote attackers to cause a denial of service application crash via JavaScript code that calls document.write in an infinite loop...

CVE-2008-2000

Unspecified vulnerability in Apple Safari 3.1.1 allows remote attackers to cause a denial of service application crash via JavaScript code that calls document.write in an infinite loop...

Apple Safari多个拒绝服务及欺骗漏洞

BUGTRAQ ID: 28891 Safari是苹果家族操作系统默认所捆绑的WEB浏览器。 Safari在处理畸形恶意的JavaScript时存在漏洞，用户访问包含有恶意代码的网页时会导致浏览器崩溃。 在通过document.write写入到同一页面时，无限的while循环可能导致Safari出现以下错误崩溃： Access violation when writing to 0FDFFFEE 如果使用safari打开了file://类链接的话，浏览器可能出现以下错误崩溃： Access violation when reading 00000004...

Mozilla Firefox document.write()拒绝服务漏洞

BUGTRAQ ID: 28892 Firefox是一款流行的开源WEB浏览器。 Firefox处理畸形的JavaScript代码时存在漏洞，访问恶意的网页可能导致浏览器崩溃。 在通过document.write写入到同一页面时，无限的while循环可能导致Firefox出现以下错误崩溃： Access violation when writing to 0FDFFFEE Mozilla Firefox 3.0 Beta 5 Mozilla ------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

security flaw

Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME 1 during the load stage or 2 in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript code, as demonstrated by code that intercepts keystrok...

Firefox wyciwyg:// cache zone bypass

There is an interesting vulnerability in how Mozilla Firefox handles internal wyciwyg:// pseudo-URIs. These cache-related resource identifiers are meant to be inaccessible by the user - but there are at least three routes to bypass these restrictionss, one of which - HTTP 302 redirect - also...

CVE-2007-3089

Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME 1 during the load stage or 2 in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript code, as demonstrated by code that intercepts keystrok...

Code injection

Mozilla Firefox before 2.0.0.5 does not prevent use of document.write to replace an IFRAME 1 during the load stage or 2 in the case of an about:blank frame, which allows remote attackers to display arbitrary HTML or execute certain JavaScript code, as demonstrated by code that intercepts keystrok...

Microsoft Internet Explorer URL spoofing

It's possible to spoof URL with document.write within OnClick method for a tag...