USN-1122-1: Thunderbird vulnerabilities

It was discovered that there was a vulnerability in the memory handling of certain types of content. An attacker could exploit this to possibly run arbitrary code as the user running Thunderbird. CVE-2011-0081 It was discovered that Thunderbird incorrectly handled certain JavaScript requests. If...

USN-1112-1: Firefox and Xulrunner vulnerabilities

It was discovered that there was a vulnerability in the memory handling of certain types of content. An attacker could exploit this to possibly run arbitrary code as the user running Firefox. CVE-2011-0081 It was discovered that Firefox incorrectly handled certain JavaScript requests. An attacker...

Apple Safari and Google Chrome Webkit Object Outline Memory Corruption (CVE-2010-1813)

WebKit is a development toolkit which allows third party developers to build applications that use Internet technologies such as HTML, HTTP, and others. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML, which may allow the attacker to execute...

Microsoft Internet Explorer HTML Rendering Remote Memory Corruption Vulnerability (944533)

This host is missing a critical security update according to Microsoft Bulletin MS08-010. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

[SECURITY] Fedora 11 Update: kazehakase-0.5.8-5.fc11.1

Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine...

Memory corruption

Microsoft Internet Explorer 7 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object, leading to memory corruption, aka "HTML Rendering Memory Corruption Vulnerability."...

CVE-2010-0555

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and read arbitrary files via vectors involving the product's use of text/html as the default content...

Design/Logic Flaw

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and read arbitrary files via vectors involving JavaScript exploit code that constructs a reference to...

PT-2010-2312 · Microsoft · Internet Explorer +5

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and read arbitrary files via vectors involving the product's use of text/html as the default content...

[SECURITY] Fedora 11 Update: kazehakase-0.5.8-4.fc11

Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine...

[SECURITY] Fedora 10 Update: kazehakase-0.5.6-4.fc10.7

Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine...

[SECURITY] Fedora 11 Update: kazehakase-0.5.8-2.fc11.1

Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine...

Pegasus Mail Client 4.51 PoC BoF

Exploit for unknown platform in category remote exploits ================================ Pegasus Mail Client 4.51 PoC BoF ================================ Title: Pegasus Mail Client 4.51 PoC BoF CVE-ID: OSVDB-ID: Author: Francis Provencher Published: 2009-10-23 Verified: yes view source print?...

Pegasus Mail Client 4.51 - Remote Buffer Overflow

Pegasus Mail Client 4.51 - Remote Buffer Overflow Application: Pegasus Mail Client Platforms: Windows XP Professional SP2 Exploitation: remote BoF Date: 2009-10-06 Author: Francis Provencher Protek Research Lab's 1 Introduction 2 Technical details 3 The Code Only DoS =============== 1 Introductio...

[SECURITY] Fedora 10 Update: kazehakase-0.5.6-4.fc10.6

Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine...

[SECURITY] Fedora 11 Update: kazehakase-0.5.6-11.svn3771_trunk.fc11.3

Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine...

[SECURITY] Fedora 9 Update: gtkmozembedmm-1.4.2.cvs20060817-30.fc9

This package provides a C++/gtkmm wrapper for GtkMozEmbed from Mozilla 1.4.x to 1.7.x. The wrapper provides a convenient interface for C++ programmers to use the Gtkmozembed HTML-rendering widget inside their software...

[SECURITY] Fedora 10 Update: kazehakase-0.5.6-4.fc10.3

Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine...

Information disclosure

Microsoft Internet Explorer 5.01 SP4; 6 SP1; 6 and 7 for Windows XP SP2 and SP3; 6 and 7 for Server 2003 SP2; 7 for Vista Gold, SP1, and SP2; and 7 for Server 2008 SP2 does not prevent HTML rendering of cached content, which allows remote attackers to bypass the Same Origin Policy via unspecified...

CVE-2009-1140

CVE-2009-1140 affects Microsoft Internet Explorer versions including IE 5.01 SP4; 6 SP1; 6 and 7 for Windows XP SP2/SP3; 6/7 for Server 2003 SP2; 7 for Vista SP1/SP2; and 7 for Server 2008 SP2. The vulnerability is a cross-domain information disclosure caused by IE failing to prevent HTML renderi...