CVE-2010-1757

WebKit in Apple iOS before 4 on the iPhone and iPod touch does not enforce the expected boundary restrictions on content display by an IFRAME element, which allows remote attackers to spoof the user interface via a crafted HTML document...

CVE-2010-1757

WebKit in Apple iOS before 4 on the iPhone and iPod touch does not enforce the expected boundary restrictions on content display by an IFRAME element, which allows remote attackers to spoof the user interface via a crafted HTML document...

CVE-2010-1407

CVE-2010-1407 affects WebKit in Apple iOS prior to version 4, where history.replaceState implemented with IFRAME handling could allow a remote attacker to obtain sensitive information via a crafted HTML document. The NVD entry assigns a CVSS v2 base score of 4.3 (Medium) with network attack vecto...

PT-2010-3395 · Apple · Ios +1

Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 4 Description: The issue concerns the WebKit component in Apple iOS, which fails to enforce proper boundary restrictions on content displayed by an IFRAME element. This allows remote attackers to spoof the user...

PT-2010-3103 · Apple · Ios

Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 4 Description: The issue concerns the improper implementation of the history.replaceState method in certain situations involving IFRAME elements, allowing remote attackers to obtain sensitive information via a...

focus() behavior can be used to inject or steal keystrokes — Mozilla

Google security researcher Michal Zalewski reported that focus could be used to change a user's cursor focus while they are typing, potentially directing their keyboard input to an unintended location. This behavior was also present across origins when content from one domain was embedded within...

DEBIAN-CVE-2010-2273

Multiple cross-site scripting XSS vulnerabilities in Dojo 1.0.x before 1.0.3, 1.1.x before 1.1.2, 1.2.x before 1.2.4, 1.3.x before 1.3.3, and 1.4.x before 1.4.2 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to...

DoS attacks on email clients via protocol handlers

Hello 3APA3A! I want to warn you about security vulnerabilities in email clients, particularly in Outlook Express and Outlook. This advisory is concerned with my series of advisories about vulnerabilities in browsers, which belong to group of DoS via protocol handlers. ---------------------------...

Opera 'IFRAME' Denial Of Service vulnerability (Windows)

The host is installed with Opera Browser and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gboperaiframedosvulnwin.nasl 5323 2017-02-17 08:49:23Z teissa $ Opera 'IFRAME' Denial Of Service vulnerability Windows Authors: Sooraj KS Copyright: Copyright c 2010 Greenbone...

Microsoft Internet Explorer 'IFRAME' Denial Of Service Vulnerability (June-10)

This host is installed with Internet Explorer and is prone to Denial Of Service vulnerability. OpenVAS Vulnerability Test $Id: gbmsieiframedosvulnjune10.nasl 5323 2017-02-17 08:49:23Z teissa $ Microsoft Internet Explorer 'IFRAME' Denial Of Service Vulnerability June-10 Authors: Antu Sanadi...

Microsoft Internet Explorer 'IFRAME' Denial Of Service Vulnerability -june 10

This host is installed with Internet Explorer and is prone to Denial Of Service vulnerability. OpenVAS Vulnerability Test $Id: gbmsieiframedosvuln.nasl 5323 2017-02-17 08:49:23Z teissa $ Microsoft Internet Explorer 'IFRAME' Denial Of Service Vulnerability - june 10 Authors: Antu Sanadi Copyright:...

Mozilla Firefox 'IFRAME' Denial Of Service vulnerability (Windows)

The host is installed with Mozilla Firefox browser and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: gbmozillafirefoxiframedosvulnwin.nasl 5323 2017-02-17 08:49:23Z teissa $ Mozilla Firefox 'IFRAME' Denial Of Service vulnerability Windows Authors: Antu Sanadi...

Microsoft Internet Explorer 'IFRAME' DoS Vulnerability (Jun 2010)

Internet Explorer is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Internet Explorer 'IFRAME' Denial Of Service Vulnerability (Jun 2010)

Internet Explorer is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Opera 'IFRAME' DoS Vulnerability - Windows

Opera Browser is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mozilla Firefox 'IFRAME' DoS Vulnerability - Windows

Mozilla Firefox browser is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2010-2121

Opera 9.52 allows remote attackers to cause a denial of service resource consumption via JavaScript code containing an infinite loop that creates IFRAME elements for invalid 1 news:// or 2 nntp:// URIs...

CVE-2010-2120

Google Chrome 1.0.154.48 allows remote attackers to cause a denial of service resource consumption via JavaScript code containing an infinite loop that creates IFRAME elements for invalid news:// URIs...

CVE-2010-2118

Microsoft Internet Explorer 6.0.2900.2180 and 8.0.7600.16385 allows remote attackers to cause a denial of service resource consumption via JavaScript code containing an infinite loop that creates IFRAME elements for invalid news:// URIs...

CVE-2010-2119

Microsoft Internet Explorer 6.0.2900.2180 allows remote attackers to cause a denial of service resource consumption via JavaScript code containing an infinite loop that creates IFRAME elements for invalid nntp:// URIs...