667 matches found
CVE-2006-4565
Heap-based buffer overflow in Mozilla Firefox before 1.5.0.7, Thunderbird before 1.5.0.7, and SeaMonkey before 1.0.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a JavaScript regular expression with a "minimal quantifier."...
Mozilla Firefox JavaScript Navigator object vulnerability
Added: 08/14/2006 CVE: CVE-2006-3677 BID: 19192 OSVDB: 27559 Background When used in a web page, Java references properties of the window.navigator object as it starts up in Firefox or SeaMonkey. Problem If a web page replaces the navigator object before starting Java, then the page could cause t...
CVE-2006-3801
CVE-2006-3801 affects Mozilla Firefox 1.5 (pre-1.5.0.5) and SeaMonkey (pre-1.0.3). The vulnerability arises from a JavaScript reference to a frame or window that isn’t properly cleared when content is destroyed, leaving a pointer to a deleted object. This can enable remote attackers to execute ar...
Mozilla products fail to properly handle frame references
Overview Mozilla products fail to properly handle frame or window references. This may allow a remote attacker to execute arbitrary code on a vulnerable system. Description JavaScript references are not properly cleared after an object is deleted. An attacker may be able to use the reference to a...
Kil13r-SA-20060701-2.txt
Title: Kil13r-SA-20060701-2 MoniWiki 1.1.1 Cross-Site Scripting Vulnerability Author: Kil13r - http://www.kil13r.info/ Local / Remote: Remote Timeline: 2006/06/28 - Discovery 2006/06/28 - Vendor notification 2006/06/30 - Vendor notification 2006/07/01 - Release Affected version: MoniWiki 1.1.1 or...
CVE-2006-3224
CVE-2006-3224 affects Apple Safari 2.0.3 (417.9.3) running on Mac OS X 10.4.6. The issue allows remote attackers to trigger high CPU usage and denial of service by executing JavaScript containing an infinite for loop. The description notes this might not constitute a vulnerability outside Safari’...
mozThunDoS.txt
Mozilla Thunderbird : Remote Code Execution & Denial of Service //----- Advisory Program : Mozilla Thunderbird Homepage : http://www.mozilla.com/thunderbird/ Tested version : Denial of service application crash : iframe src="javascript:parent.document.write'Found by www.s...
Malicious setRequestHeader cross-site vulnerability
A malicious setRequestHeader can be used to stealuser credentials and inject cross-site JavaScript...
CVE-2002-2101
Microsoft Outlook 2002 allows remote attackers to execute arbitrary JavaScript code, even when scripting is disabled, via an "about:" or "javascript:" URI in the href attribute of an "a" tag...
CVE-2004-1686
Internet Explorer 6.0 in Windows XP SP2 allows remote attackers to bypass the Information Bar prompt for ActiveX and Javascript via an XHTML page that contains an Internet Explorer formatted comment between the DOCTYPE tag and the HTML tag, as demonstrated using the DesignScience MathPlayer Activ...
CVE-2005-0146
Firefox before 1.0 and Mozilla before 1.7.5 allow remote attackers to obtain sensitive data from the clipboard via Javascript that generates a middle-click event on systems for which a middle-click performs a paste operation...
Netscape Navigator 7.2 - Infinite Array Sort Denial of Service
source: https://www.securityfocus.com/bid/12331/info Netscape Navigator is prone to a vulnerability that may result in a browser crash. This issue is exposed when the browser performs an infinite JavaScript array sort operation. It is conjectured that this will only result in a denial of service...
Mozilla0.x Netscape 34 Firefox 1.0 - JavaScript IFRAME Rendering Denial of Service
Mozilla0.x Netscape 34 Firefox 1.0 - JavaScript IFRAME Rendering Denial of Service source: https://www.securityfocus.com/bid/11823/info Mozilla/Netscape and Firefox browsers are reported prone a remote denial of service vulnerability. It is reported that the affected browsers will crash as a resu...
Mozilla Camino Web Browser 0.70.8 - Infinite Array Sort Denial of Service
Mozilla Camino Web Browser 0.70.8 - Infinite Array Sort Denial of Service source: https://www.securityfocus.com/bid/11761/info Mozilla Camino Web browser is prone to a vulnerability that may result in a browser crash. This issue is exposed when the browser performs an infinite JavaScript array so...
Mozilla Firefox 0.8/0.9/0.10 - Infinite Array Sort Denial of Service
source: https://www.securityfocus.com/bid/11752/info Mozilla Firefox is prone to a vulnerability that may result in a browser crash. This issue is exposed when the browser performs an infinite JavaScript array sort operation. It is conjectured that this will only result in a denial of service and...
Opera < 7.54.0 Empty CCCC Object JavaScript-based DoS
Binary data 2259.prm...
Microsoft Internet Explorer 6.0 Firefox 0.80.9.x - JavaScript Denial of Service
Microsoft Internet Explorer 6.0 Firefox 0.80.9.x - JavaScript Denial of Service source: https://www.securityfocus.com/bid/10998/info Web browsers from various vendors are reported prone to a JavaScript denial-of-service vulnerability. The specified JavaScript code will consume 100% of the CPU...
Opera Web Browser 7.23 - JavaScript Denial of Service
Opera Web Browser 7.23 - JavaScript Denial of Service source: https://www.securityfocus.com/bid/10997/info Opera Web Browser is reported prone to a JavaScript denial-of-service vulnerability. This vulnerability presents itself when Opera attempts to execute a specific JavaScript command. When...
Opera Web Browser 7.23 - JavaScript Denial of Service
source: https://www.securityfocus.com/bid/10997/info Opera Web Browser is reported prone to a JavaScript denial-of-service vulnerability. This vulnerability presents itself when Opera attempts to execute a specific JavaScript command. When executing this command, Opera will reportedly crash. This...
Opera < 7.50 JavaScript Engine Array Handling DoS
The version of Opera on the remote host is vulnerable to an issue when handling large JavaScript arrays. In particular, it is possible to crash the browser when performing various operations on Array objects with 99999999999999999999999 or 0x23000000 elements. The crash is due to a segmentation...