CVE-2011-2640

CVE-2011-2640 affects Opera before 11.10. An HTML document with an empty parameter value for an embedded Java applet could cause the browser to crash (remote denial of service). Remediation: upgrade to Opera 11.10 or newer as indicated by the referenced advisories.

CVE-2011-2040

The helper application in Cisco AnyConnect Secure Mobility Client formerly AnyConnect VPN Client before 2.5.3041, and 3.0.x before 3.0.629, on Linux and Mac OS X downloads a client executable file vpndownloader.exe without verifying its authenticity, which allows remote attackers to execute...

Design/Logic Flaw

The helper application in Cisco AnyConnect Secure Mobility Client formerly AnyConnect VPN Client before 2.5.3041, and 3.0.x before 3.0.629, on Linux and Mac OS X downloads a client executable file vpndownloader.exe without verifying its authenticity, which allows remote attackers to execute...

CVE-2011-2040

The helper application in Cisco AnyConnect Secure Mobility Client formerly AnyConnect VPN Client before 2.5.3041, and 3.0.x before 3.0.629, on Linux and Mac OS X downloads a client executable file vpndownloader.exe without verifying its authenticity, which allows remote attackers to execute...

New 64-Bit Rootkit Being Used to Steal Banking Credentials

Security researchers have come across a new rootkit that is designed specifically to infect 64-bit Windows systems and steal users’ online banking credentials. It’s believed to be the first piece of malware of its kind that is capable of compromising x64 systems. The new rootkit is being used by...

Authentication flaw

Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries via a Java applet that spoofs interaction with the autocomplete controls...

Mandriva Update for firefox MDVSA-2011:079 (firefox)

Check for the Version of firefox OpenVAS Vulnerability Test Mandriva Update for firefox MDVSA-2011:079 firefox Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

openSUSE Security Update : MozillaFirefox (MozillaFirefox-4459)

Mozilla Firefox was updated to the 3.6.17 security release. MFSA 2011-12: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances,...

SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7491)

Mozilla Firefox was updated to the 3.6.17 security release. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and we...

Mandriva Update for firefox MDVSA-2011:079 (firefox)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

SuSE 11.1 Security Update : Mozilla Firefox (SAT Patch Number 4463)

Mozilla Firefox was updated to the 3.6.17 security release. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and we...

SuSE 10 Security Update : Mozilla XULrunner (ZYPP Patch Number 7493)

Mozilla XULRunner 1.9.1 was updated to the 1.9.1.19 security release. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, a...

Oracle Java Applet2ClassLoader Vulnerability

Added: 05/05/2011 CVE: CVE-2010-4452 BID: 46388 OSVDB: 71193 Background Java is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. Probl...

CVE-2011-0067

Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries via a Java applet that spoofs interaction with the autocomplete controls...

Check Point SSL VPN On-Demand应用程序远程代码执行漏洞

Bugtraq ID: 47695 CVE ID：CVE-2011-1827 SNX SecureWorkSpace和Endpoint Security On-Demand可从Connectra或security gateways下载的客户端，可实现按需远程连接。它们可使用Check Point Deployment Agent Java applet或ActiveX控件配置在浏览中。 应用程序SSL网络扩展器SNX, SecureWorkSpace和Endpoint Security On-Demand通过浏览器配置时，容易受到恶意网站的攻击，导致在末端用户机器上执行任意恶意代码。...

Mandriva Linux Security Advisory : firefox (MDVSA-2011:079)

Chris Evans of the Chrome Security Team reported that the XSLT generate-id function returned a string that revealed a specific valid address of an object on the memory heap. It is possible that in some cases this address would be valuable information that could be used by an attacker while...

Debian DSA-2228-1 : iceweasel - several vulnerabilities

Several vulnerabilities have been found in Iceweasel, a web browser based on Firefox : - CVE-2011-0069 CVE-2011-0070 CVE-2011-0072 CVE-2011-0074 CVE-2011-0075 CVE-2011-0077 CVE-2011-0078 CVE-2011-0080 CVE-2011-0081 'Scoobidiver', Ian Beer Bob Clary, Henri Sivonen, Marco Bonardo, Mats Palmgren,...

Mozilla untrusted events can trigger autocomplete popup (MFSA 2011-14)

Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly implement autocompletion for forms, which allows remote attackers to read form history entries via a Java applet that spoofs interaction with the autocomplete controls...

Mozilla Firefox < 3.5.19 Multiple Vulnerabilities

Binary data 801247.prm...

Mozilla Firefox < 3.5.19 Multiple Vulnerabilities

Binary data 5900.prm...