Ubuntu 7.10 : firefox-3.0 vulnerabilities (USN-717-2)

A flaw was discovered in the browser engine when restoring closed tabs. If a user were tricked into restoring a tab to a malicious website with form input controls, an attacker could steal local files on the user's system. CVE-2009-0355 Wladimir Palant discovered that Firefox did not restrict...

Ubuntu: Security Advisory (USN-920-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for Firefox 3.0 and Xulrunner vulnerabilities USN-920-1

Ubuntu Update for Linux kernel vulnerabilities USN-920-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9201.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for Firefox 3.0 and Xulrunner vulnerabilities USN-920-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH...

Ubuntu 8.04 LTS / 8.10 / 9.04 : firefox-3.0, xulrunner-1.9 vulnerabilities (USN-920-1)

Martijn Wargers, Josh Soref, Jesse Ruderman, and Ehsan Akhgari discovered flaws in the browser engine of Firefox. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking...

Mandriva Linux Security Advisory : firefox (MDVSA-2010:042)

Security issues were identified and fixed in firefox 3.0.x and 3.5.x : Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and ...

Ubuntu Update for Firefox 3.0 and Xulrunner 1.9 vulnerabilities USN-895-1

Ubuntu Update for Linux kernel vulnerabilities USN-895-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN8951.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for Firefox 3.0 and Xulrunner 1.9 vulnerabilities USN-895-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks...

Ubuntu: Security Advisory (USN-877-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mandriva Security Advisory MDVSA-2009:339 (firefox)

The remote host is missing an update to firefox announced via advisory MDVSA-2009:339. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

USN-873-1: Firefox 3.0 and Xulrunner 1.9 vulnerabilities

Jesse Ruderman, Josh Soref, Martijn Wargers, Jose Angel, Olli Pettay, and David James discovered several flaws in the browser and JavaScript engines of Firefox. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary...

Firefox内容注入网页欺骗漏洞

BUGTRAQ ID: 37370 CVE ID: CVE-2009-3985 Firefox是一款流行的开源WEB浏览器。 恶意网页可以将document.location设置为无法正确显示的URL，然后向所生成的空白页中注入内容。攻击者可以利用这个漏洞在地址栏中放置看起来合法但实际上无效的URL，并向页面中注入HTML和JavaScript，执行欺骗攻击。 Mozilla Firefox 3.5.x Mozilla Firefox 3.0.x Mozilla SeaMonkey 2.0 厂商补丁： Debian ------...

iGaming CMS v1.5 CSRF Vulnerability

Exploit for unknown platform in category web applications =================================== iGaming CMS v1.5 CSRF Vulnerability =================================== NeX of the HackTalk team has found a CSRF Vulnerability in iGaming CMS v 1.5 that allows an attacker to make new administrative...

Mozilla Firefox libpr0n GIF解析器堆溢出漏洞

BUGTRAQ ID: 36855 CVE ID: CVE-2009-3373 Firefox是一款流行的开源WEB浏览器。 Firefox的libpr0n GIF解析器使用gifimageheader语句解释单个单个图形/帧描述记录。一个GIF文件可能包含有多个图形，每个图形都关联到不同的颜色映射。 在处理多图形GIF文件中后面图形颜色映射的变化时没有正确地管理内存重新分配，用户受骗打开包含有GIF文件的恶意网页就可能触发堆溢出，导致执行任意指令。 Mozilla Firefox 3.5.x Mozilla Firefox 3.0.x Mozilla SeaMonkey 1.1.x...

CVE-2009-3374

The XPCVariant::VariantDataToJS function in the XPCOM implementation in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 does not enforce intended restrictions on interaction between chrome privileged code and objects obtained from remote web sites, which allows remote attackers to...

Ubuntu USN-811-1 (xulrunner-1.9)

The remote host is missing an update to xulrunner-1.9 announced via advisory USN-811-1. OpenVAS Vulnerability Test $Id: ubuntu8111.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu8111.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-811-1 xulrunner-1.9 Author...

Mandrake Security Advisory MDVSA-2009:198 (firefox)

The remote host is missing an update to firefox announced via advisory MDVSA-2009:198. OpenVAS Vulnerability Test $Id: mdksa2009198.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:198 firefox Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

Mandrake Security Advisory MDVSA-2009:182 (firefox)

The remote host is missing an update to firefox announced via advisory MDVSA-2009:182. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...

Ubuntu: Security Advisory (USN-798-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 8.04 LTS / 8.10 / 9.04 : firefox-3.0, xulrunner-1.9 vulnerabilities (USN-798-1)

Several flaws were discovered in the Firefox browser and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. CVE-2009-2462,...

CVE-2009-0689

Array index error in the 1 dtoa implementation in dtoa.c aka pdtoa.c and the 2 gdtoa aka new dtoa implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x...

Ubuntu: Security Advisory (USN-779-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...