Massive iFrame Attack Hits More than 90,000 Pages

Researchers have discovered a massive iframe injection campaign that has infected more than 90,000 Web pages. Researchers at Armorize said the injected scripts redirect users to malicious Web domains that is launching attacks targeting known vulnerabilities in Java, Adobe’s PDF, Microsoft’s...

Opera Browser 'SRC' Denial of Service Vulnerability - Windows

Opera browser is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Iframe Injection & Blind SQL Injection vulnerability on Apple.com exposed by Idahc(lebanese hacker)

Iframe Injection & Blind SQL Injection vulnerability on Apple.com exposed byIdahclebanese hacker After Sony hacks, Idahclebanese hacker is back to strike Apple.com . He found two vulnerability on https://consultants.apple.com/ as listed below. Iframe Injection :Click here Blind SQL INjection:Clic...

Iframe Injection & Blind SQL Injection vulnerability on Apple.com exposed by Idahc(lebanese hacker)

Iframe Injection & Blind SQL Injection vulnerability on Apple.com exposed by Idahclebanese hacker After Sony hacks, Idahclebanese hacker is back to strike Apple.com . He found two vulnerability on as listed below. Iframe Injection : Click here Blind SQL INjection: Click Here Examples of the...

CVE-2011-2641

Opera 11.11 allows remote attackers to cause a denial of service application crash by setting the FACE attribute of a FONT element within an IFRAME element after changing the SRC attribute of this IFRAME element to an about:blank value...

CVE-2011-2626

Opera before 11.50 allows remote attackers to cause a denial of service application crash by using "injected script" to set the SRC attribute of an IFRAME element...

CVE-2011-2617

Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service application crash via vectors related to selecting a text node, and closed pop-up windows, removed pop-up windows, and IFRAME elements...

Design/Logic Flaw

Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service application crash via vectors related to selecting a text node, and closed pop-up windows, removed pop-up windows, and IFRAME elements...

Code injection

Opera before 11.50 allows remote attackers to cause a denial of service application crash by using "injected script" to set the SRC attribute of an IFRAME element...

CVE-2011-2617

Unspecified vulnerability in Opera before 11.50 allows remote attackers to cause a denial of service application crash via vectors related to selecting a text node, and closed pop-up windows, removed pop-up windows, and IFRAME elements...

CVE-2011-2626

CVE-2011-2626 affects Opera browsers prior to 11.50, where an injected script could set the SRC attribute of an IFRAME, causing an application crash (DoS). Multiple vendor advisories reiterate the issue and reference Opera’s fixed release paths. Affected: Opera before 11.50; Impact: denial of ser...

CVE-2011-2598

The WebGL implementation in Mozilla Firefox 4.x allows remote attackers to obtain screenshots of the windows of arbitrary desktop applications via vectors involving an SVG filter, an IFRAME element, and uninitialized data in graphics memory...

CVE-2011-2598

The WebGL implementation in Mozilla Firefox 4.x allows remote attackers to obtain screenshots of the windows of arbitrary desktop applications via vectors involving an SVG filter, an IFRAME element, and uninitialized data in graphics memory...

Design/Logic Flaw

The WebGL implementation in Mozilla Firefox 4.x allows remote attackers to obtain screenshots of the windows of arbitrary desktop applications via vectors involving an SVG filter, an IFRAME element, and uninitialized data in graphics memory...

CVE-2011-2598

The WebGL implementation in Mozilla Firefox 4.x allows remote attackers to obtain screenshots of the windows of arbitrary desktop applications via vectors involving an SVG filter, an IFRAME element, and uninitialized data in graphics memory...

M86 Researchers Discover Short-Lived IE 0-Day

Researchers from M86 claim to have discovered a 0-day exploit for Internet Explorer that is being used in the wild, according to Avri Schneider, an M86 researcher. Writing for an M86 blog yesterday, Schneider said that the company’s team of researchers discovered a piece of JavaScript on the page...

Opera Web Browser 11.11 - Remote Crash

/ Opera 11.11 Remote Crash Software link: http://www.opera.com/download/ Tested on: Win32 xp home sp 3 CVE : null Im too lazy to deep analyze this ,but i thing is just unexploitable crash so fjixvt dla klechis³awa i jego kosiarki :i / var a = window.document.getElementById'bo0om'; var b =...

Microsoft Internet Explorer Cookie Hijacking Vulnerability

The host is installed with Internet Explorer and is prone to cookie hijacking vulnerability. This NVT has been replaced by NVT secpodms11-057.nasl OID:1.3.6.1.4.1.25623.1.0.902613. OpenVAS Vulnerability Test $Id: gbmsie9cookiehijackingvuln.nasl 6526 2017-07-05 05:43:52Z cfischer $ Microsoft...

Microsoft Internet Explorer Cookie Hijacking Vulnerability

The host is installed with Internet Explorer and is prone to cookie hijacking vulnerability. OpenVAS Vulnerability Test $Id: gbmsiecookiehijackingvuln.nasl 6526 2017-07-05 05:43:52Z cfischer $ Microsoft Internet Explorer Cookie Hijacking Vulnerability Authors: Sooraj KS Copyright: Copyright c 201...

Microsoft Internet Explorer Cookie Hijacking Vulnerability

Internet Explorer is prone to cookie hijacking vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...