19 matches found
EUVD-2010-3021
Malware in sbrugna...
EUVD-2010-4022
Malware in sbrugna...
SUSE CVE-2010-3019
Heap-based buffer overflow in Opera before 10.61 allows remote attackers to execute arbitrary code or cause a denial of service application crash or hang via vectors related to HTML5 canvas painting operations that occur during the application of transformations...
SUSE CVE-2010-4046
Opera before 10.63 does not properly verify the origin of video content, which allows remote attackers to obtain sensitive information by using a video stream as HTML5 canvas content...
Vega Charts Kibana Cross-Site Scripting Vulnerability
Vega is a Javscript-based software from the Vega team that can be used to create interactive visual displays. The software can use JSON format to describe the data visualization and use HTML5 Canvas or SVG to generate interactive views. A cross-site scripting vulnerability exists in Vega Charts...
WebkitGTK+ 2.20.3 - ImageBufferCairo::getImageData() Buffer Overflow (PoC)
WebkitGTK+ 2.20.3 - ImageBufferCairo::getImageData Buffer Overflow PoC Exploit Title: WebkitGTK+ 2.20.3 - 'ImageBufferCairo::getImageData' Buffer Overflow PoC Date: 2018-08-15 Exploit Author: PeregrineX Vendor Homepage: https://webkitgtk.org/ & https://webkit.org/wpe/ Software Link:...
Firefox 58 to Block Canvas Browser Fingerprinting By Default to Stop Online Tracking
Do you know? Thousands of websites use HTML5 Canvas—a method supported by all major browsers that allow websites to dynamically draw graphics on web pages—to track and potentially identify users across the websites by secretly fingerprinting their web browsers. Over three years ago, the concern...
Microsoft Windows - gdi32.dll Multiple Issues in the EMF CREATECOLORSPACEW Record Handling (MS16-055
Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=722 There are multiple programming errors in the implementation of the CREATECOLORSPACEW record in EMF files, as found in the user-mode gdi32.dll system library. The worst of them...
HTML5 Canvas Fingerprint — Widely Used Unstoppable Web Tracking Technology
Till Now we have seen many traditional way of tracking web users, such as using cookies that get saved on user’s system may not be available forever to many companies, but a new method of tracking users has emerged that worked without the use of cookies. From last two years, many websites and...
openSUSE Security Update : opera (openSUSE-SU-2010:0540-1)
This update of opera fixes the following vulnerabilities : - CVE-2010-2576: CVSS v2 Base Score: 6.8 CWE-94: unexpected changes in tab focus could be used to run programs from the Internet, as reported by Jakob Balle and Sven Krewitt of Secunia - CVE-2010-3019: CVSS v2 Base Score: 9.3 CWE-119: hea...
FlashCanvas 'proxy.php'跨站脚本漏洞
Bugtraq ID:64251 CVE ID:CVE-2013-6880 FlashCanvas是一个JavaScript库,可使Internet Explorer支持HTML5 Canvas。 FlashCanvas 'proxy.php'脚本不充分校验Referer Header数据,允许远程攻击者利用漏洞提交特制的GET请求,可获取敏感信息或劫持用户会话。 0 FlashCanvas 1.5 厂商补丁: FlashCanvas ----- FlashCanvas 1.6已经修复该漏洞,请到厂商的主页下载: http://flashcanvas.net/...
Specially crafted WebP images can be used to disclose random chunks of memory
WebP images may be used as fill patterns in a HTML5 Canvas, and the values of each pixel in the image can then be intentionally read using scripts. Specially crafted WebP images may specify the wrong size for certain parts of their data, which causes Opera to read data from the wrong positions in...
PT-2011-16: Denial Of Service in Mozilla Firefox
Positive Research Center has discovered a Denial of Service vulnerability in Mozilla Firefox. Due to insufficient checks of input parameters of HTML5 Canvas' Arc method, Mozilla Firefox allows a remote attacker to cause a denial of service infinite loop. Example of HTML code triggering the...
CVE-2010-4046
Opera before 10.63 does not properly verify the origin of video content, which allows remote attackers to obtain sensitive information by using a video stream as HTML5 canvas content...
Private video streams can be intercepted
Video content may be used as filler content for a HTML5 canvas, if the video format is natively supported by Opera. If the video and page are from the same site, the content of the canvas can be safely read out by scripts. In some cases, Opera does not check the video's origin correctly, and may...
Heap overflow
Heap-based buffer overflow in Opera before 10.61 allows remote attackers to execute arbitrary code or cause a denial of service application crash or hang via vectors related to HTML5 canvas painting operations that occur during the application of transformations...
FreeBSD : opera -- multiple vulnerabilities (71273c4d-a6ec-11df-8a8d-0008743bf21a)
The Opera Destkop Team reports : - Fixed an issue where heap buffer overflow in HTML5 canvas could be used to execute arbitrary code, as reported by Kuzzcc. - Fixed an issue where unexpected changes in tab focus could be used to run programs from the Internet, as reported by Jakob Balle and Sven...
Opera Update Closes Severe Heap Overflow Hole
Opera Software has released version 10.61 of the Opera web browser to fix a high severity hole. The issue was a heap overflow in the HTML5 canvas when performing some painting operations, which could in some cases be used to execute code. Read the full article. The H Security...
opera -- multiple vulnerabilities
The Opera Destkop Team reports: Fixed an issue where heap buffer overflow in HTML5 canvas could be used to execute arbitrary code, as reported by Kuzzcc. Fixed an issue where unexpected changes in tab focus could be used to run programs from the Internet, as reported by Jakob Balle and Sven Krewi...