12 matches found
EUVD-2010-2580
Malware in sbrugna...
EUVD-2005-0592
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2020-15677
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - By exploiting an Open Redirect vulnerability on a website, an attacker could have spoofed the site displayed in the download file dialog to show the original si...
CVE-2025-4086
A specially crafted filename containing a large number of encoded newline characters could obscure the file's extension when displayed in the download dialog. This bug only affects Thunderbird for Android. Other versions of Thunderbird are unaffected. This vulnerability affects Firefox 138 and...
SUSE CVE-2010-2576
Opera before 10.61 does not properly suppress clicks on download dialogs that became visible after a recent tab change, which allows remote attackers to conduct clickjacking attacks, and consequently execute arbitrary code, via vectors involving 1 closing a tab or 2 hiding a tab, a related issue ...
CVE-2020-15677
By exploiting an Open Redirect vulnerability on a website, an attacker could have spoofed the site displayed in the download file dialog to show the original site the one suffering from the open redirect rather than the site the file was actually downloaded from. This vulnerability affects Firefo...
Opera < 12.01 Multiple Vulnerabilities
Binary data 6551.prm...
Small windows can be used to trick users into executing downloads – Opera Security Advisories
When the download dialog is displayed, it should always be visible to the user, to ensure that the user realizes it is there. If the dialog is displayed in a small enough window, the user may not realize it is being displayed, and if the right keyboard sequence is carefully followed, they can end...
CVE-2010-2576
CVE-2010-2576 (Opera) affects Opera pre-10.61. The issue arises because download dialogs that become visible after a tab change are not properly suppressed, enabling a clickjacking vector. A remote attacker could exploit this to trigger arbitrary code execution via vectors involving (1) closing a...
Microsoft Internet Explorer and Mozilla Firefox multiple security vulnerabilities
Internet Explorer race conditions allow cross domain access. Mozilla Firefox IFRAME cross domain access. Mozilla file download dialogs delay protection bypass. MSIE address bar spoofing...
CVE-2003-0309
Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to bypass security zone restrictions and execute arbitrary programs via a web document with a large number of duplicate file:// or other requests that point to the program and open multiple file download dialogs, which eventually cause...
CVE-2003-0309
Internet Explorer 5.01, 5.5, and 6.0 allows remote attackers to bypass security zone restrictions and execute arbitrary programs via a web document with a large number of duplicate file:// or other requests that point to the program and open multiple file download dialogs, which eventually cause...