EUVD-2011-3303

Malware in sbrugna...

SUSE CVE-2006-6506

The "Feed Preview" feature in Mozilla Firefox 2.0 before 2.0.0.1 sends the URL of the feed when requesting favicon.ico icons, which results in a privacy leak that might allow feed viewing services to determine browsing habits...

Cross site scripting

Cross-site scripting XSS vulnerability in the Admin Control Center in Sentinel HASP Run-time Environment 5.95 and earlier in SafeNet Sentinel HASP formerly Aladdin HASP SRM run-time installer before 6.x and SDK before 5.11, as used in 7 Technologies 7T IGSS 7 and other products, when Firefox 2.0 ...

CVE-2011-3339

Cross-site scripting XSS vulnerability in the Admin Control Center in Sentinel HASP Run-time Environment 5.95 and earlier in SafeNet Sentinel HASP formerly Aladdin HASP SRM run-time installer before 6.x and SDK before 5.11, as used in 7 Technologies 7T IGSS 7 and other products, when Firefox 2.0 ...

Java Runtime Environment AWT setDiffICM buffer overflow

Added: 11/27/2009 CVE: CVE-2009-3869 BID: 36881 OSVDB: 59710 Background Java Runtime Environment JRE allows end users to run Java applications. Problem A buffer overflow vulnerability in the setDiffICM function of the Abstract Window Toolkit AWT allows command execution when a user loads a...

Java Runtime Environment HsbParser.getSoundBank Stack Buffer Overflow

Added: 11/06/2009 CVE: CVE-2009-3867 BID: 36881 OSVDB: 59711 Background The Java Runtime Environment JRE is part of the Java Development Kit JDK, a set of programming tools for developing Java applications. The Java Runtime Environment provides the minimum requirements for executing a Java...

Invision Power Board 3.0.0b5 XSS

================================================================================ Found : brainpillow Dork : "Powered By IP.Board 3.0.0 Beta 5" Visit : brainpillow.cc, forum.antichat.ru, raz0r.name Greetz: slider, halkfild, m0nzt3r, c411k, ettee Mail : [email protected] Note: works on IE 6,7,8...

Mozilla Firefox/SeaMonkey UTF-8基于栈的缓冲区溢出漏洞

BUGTRAQ ID: 31397 CVE ID：CVE-2008-0016 CNCVE ID：CNCVE-20080016 Mozilla Firefox/SeaMonkey是一款开放源代码的WEB浏览器和WEB应用套件。 Mozilla Firefox/SeaMonkey处理UTF-8 URL存在缓冲区溢出，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 Mozilla...

CVE-2008-2786

Buffer overflow in Firefox 3.0 and 2.0.x has unknown impact and attack vectors. NOTE: due to lack of details as of 20080619, it is not clear whether this is the same issue as CVE-2008-2785. A CVE identifier has been assigned for tracking purposes...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Flex 3 History Management feature in Adobe Flex 3.0.1 SDK and Flex Builder 3, and generated applications, allow remote attackers to inject arbitrary web script or HTML via the anchor identifier to 1...

security flaw

GUI overlay vulnerability in Mozilla Firefox 1.5.x before 1.5.0.10 and 2.x before 2.0.0.2, and SeaMonkey before 1.0.8 allows remote attackers to spoof certain user interface elements, such as the host name or security indicators, via the CSS3 hotspot property with a large, transparent, custom...

CVE-2006-6507

Mozilla Firefox 2.0 before 2.0.0.1 allows remote attackers to bypass Cross-Site Scripting XSS protection via vectors related to a Function.prototype regression error...

Mozilla Foundation Security Advisory 2006-75

Mozilla Foundation Security Advisory 2006-75 Title: RSS Feed-preview referrer leak Impact: Low Announced: December 19, 2006 Reporter: Jared Breland Products: Firefox 2.0 Fixed in: Firefox 2.0.0.1 Description Jared Breland reported on LEGROOM.net that when the new "Feed Preview" feature in Firefox...

CVE-2006-6585

The Extensions manager in Mozilla Firefox 2.0 does not properly populate the list of local extensions, which allows attackers to construct an extension that hides itself by finding its name in the list and then calling RemoveElement, as demonstrated by the FFsniFF extension. NOTE: it was later...

Firefox2.0-dos.txt

New Flaw in Firefox 2.0: DoS and possible remote code execution PoC here: http://werterxyz.altervista.org/Firefox2Range.htm function docrash var range; range = document.createRange; range.selectNodedocument.firstChild; range.createContextualFragment''; Good bye Firefox!...