33 matches found
CVE-2017-5120
Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafted HTML page. In other words, Chrome could...
Design/Logic Flaw
Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafted HTML page. In other words, Chrome could...
CVE-2017-5120
CVE-2017-5120 describes a downgrade of HTTPS during redirects in the Chromium/Chrome browser. Affected: Chromium/Chrome before 61.0.3163.79 on desktop (Mac/Windows/Linux) and 61.0.3163.81 on Android, with downstream advisories referencing Chromium builds. Root cause: a misdesign workaround for ww...
CVE-2017-5120
Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafted HTML page. In other words, Chrome could...
CVE-2017-5120
Removed by vendor...
OPENSUSE-SU-2017:2482-1 Security update for chromium
This update for chromium to version 61.0.3163.79 fixes several issues. These security issues were fixed: - CVE-2017-5111: Use after free in PDFium boo1057364. - CVE-2017-5112: Heap buffer overflow in WebGL boo1057364. - CVE-2017-5113: Heap buffer overflow in Skia boo1057364. - CVE-2017-5114: Memo...
OPENSUSE-SU-2017:2491-1 Security update for chromium
This update for chromium to version 61.0.3163.79 fixes several issues. These security issues were fixed: - CVE-2017-5111: Use after free in PDFium boo1057364. - CVE-2017-5112: Heap buffer overflow in WebGL boo1057364. - CVE-2017-5113: Heap buffer overflow in Skia boo1057364. - CVE-2017-5114: Memo...
chromium-browser: potential https downgrade during redirect navigation
Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafted HTML page. In other words, Chrome could...
Google Chrome < 61.0.3163.79 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 61.0.3163.79. It is, therefore, affected by multiple vulnerabilities as referenced in the 201709stable-channel-update-for-desktop advisory. - Type confusion in V8 in Google Chrome prior to 61.0.3163.79 for Mac, Windows, a...
CVE-2017-5120
Inappropriate use of www mismatch redirects in browser navigation in Google Chrome prior to 61.0.3163.79 for Mac, Windows, and Linux, and 61.0.3163.81 for Android, allowed a remote attacker to potentially downgrade HTTPS requests to HTTP via a crafted HTML page. In other words, Chrome could...
[ASA-201709-1] chromium: multiple issues
Arch Linux Security Advisory ASA-201709-1 ========================================= Severity: Critical Date : 2017-09-06 CVE-ID : CVE-2017-5111 CVE-2017-5112 CVE-2017-5113 CVE-2017-5114 CVE-2017-5115 CVE-2017-5116 CVE-2017-5117 CVE-2017-5118 CVE-2017-5119 CVE-2017-5120 Package : chromium Type :...
Morpheus - Automated Ettercap TCP/IP Hijacking Tool
Morpheus framework automates tcp/udp packet manipulation tasks by using etter filters to manipulate target requests/responses under MitM attacks replacing the tcp/udp packet contents by our contents befor forward the packet back to the target host... workflow: 1º - attacker - arp poison local lan...
Linux TCP Flaw allows Hackers to Hijack Internet Traffic and Inject Malware Remotely
If you are using the Internet, there are the possibilities that you are open to attack. The Transmission Control Protocol TCP implementation in all Linux systems deployed since 2012 version 3.6 and above of the Linux kernel poses a serious threat to Internet users, whether or not they use Linux...