Mozilla Firefox < 19.0 Multiple Vulnerabilities

Binary data 6691.prm...

Firefox ESR 17.x < 17.0.3 Multiple Vulnerabilities

The installed version of Firefox ESR 17.x is potentially affected by the following security issues : - Numerous memory safety errors exist. CVE-2013-0783 - An error exists related to Chrome Object Wrappers COW or System Only Wrappers SOW that could allow security bypass. CVE-2013-0773 - The file...

Firefox 18.x Multiple Vulnerabilities (Mac OS X)

The installed version of Firefox 18.x is potentially affected by the following security issues : - Numerous memory safety errors exist. CVE-2013-0783, CVE-2013-0784 - An out-of-bounds read error exists related to the handling of GIF images. CVE-2013-0772 - An error exists related to 'WebIDL' obje...

Firefox < 19.0 Multiple Vulnerabilities

The installed version of Firefox is earlier than 19.0 and thus, is potentially affected by the following security issues : - Numerous memory safety errors exist. CVE-2013-0783, CVE-2013-0784 - An out-of-bounds read error exists related to the handling of GIF images. CVE-2013-0772 - An error exist...

USN-791-1: Moodle vulnerabilities

Thor Larholm discovered that PHPMailer, as used by Moodle, did not correctly escape email addresses. A local attacker with direct access to the Moodle database could exploit this to execute arbitrary commands as the web server user. CVE-2007-3215 Nigel McNie discovered that fetching https URLs di...

DEBIAN-CVE-2008-4796

The httpsrequest function Snoopy/Snoopy.class.php in Snoopy 1.2.3 and earlier, as used in 1 ampache, 2 libphp-snoopy, 3 mahara, 4 mediamate, 5 opendb, 6 pixelpost, and possibly other products, allows remote attackers to execute arbitrary commands via shell metacharacters in https URLs...

Design/Logic Flaw

The httpsrequest function Snoopy/Snoopy.class.php in Snoopy 1.2.3 and earlier, as used in 1 ampache, 2 libphp-snoopy, 3 mahara, 4 mediamate, 5 opendb, 6 pixelpost, and possibly other products, allows remote attackers to execute arbitrary commands via shell metacharacters in https URLs...

CVE-2008-3171

Apple Safari sends Referer headers containing https URLs to different https web sites, which allows remote attackers to obtain potentially sensitive information by reading Referer log data...

apache13-modssl -- format string vulnerability in proxy support

A OpenPKG Security Advisory reports: Triggered by a report to Packet Storm from Virulent, a format string vulnerability was found in modssl, the Apache SSL/TLS interface to OpenSSL, version up to and including 2.8.18 for Apache 1.3. The modssl in Apache 2.x is not affected. The vulnerability coul...