4315 matches found
Firefox 2 and 3 crashes in the JavaScript engine
The layout engine in Mozilla Firefox 2 and 3 before 3.0.7, Thunderbird before 2.0.0.21, and SeaMonkey 1.1.15 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via vectors related to gczeal, a different vulnerability than CVE-2009-0773...
RHEL 4 / 5 : firefox (RHSA-2009:0315)
The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2009:0315 advisory. - libpng arbitrary free flaw CVE-2009-0040 - Firefox 3 Layout Engine Crashes CVE-2009-0771 - Firefox 2 and 3 - Layout engine crashes...
Ubuntu USN-717-1 (xulrunner-1.9)
The remote host is missing an update to xulrunner-1.9 announced via advisory USN-717-1. OpenVAS Vulnerability Test $Id: ubuntu7171.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7171.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-717-1 xulrunner-1.9 Author...
USN-717-1: Firefox and Xulrunner vulnerabilities
Several flaws were discovered in the browser engine. These problems could allow an attacker to crash the browser and possibly execute arbitrary code with user privileges. CVE-2009-0352, CVE-2009-0353 A flaw was discovered in the JavaScript engine. An attacker could bypass the same-origin policy i...
Google Chrome Multiple Vulnerabilities (Feb-09)
This host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvuln.nasl 4869 2016-12-29 11:01:45Z teissa $ Google Chrome Multiple Vulnerabilities Feb-09 Authors: Sujit Ghosal Copyright: Copyright c 2009 Greenbone Networks Gmb...
Google Chrome Multiple Vulnerabilities (Feb 2009)
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Memory corruption
Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to the JavaScript engine...
CVE-2009-0353
Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to the JavaScript engine...
Firefox javascript crashes with evidence of memory corruption
Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to the JavaScript engine...
Firefox javascript crashes with evidence of memory corruption
Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to the JavaScript engine...
CVE-2009-0353
Unspecified vulnerability in Mozilla Firefox 3.x before 3.0.6, Thunderbird before 2.0.0.21, and SeaMonkey before 1.1.15 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to the JavaScript engine...
CVE-2009-0276
Cross-domain vulnerability in the V8 JavaScript engine in Google Chrome before 1.0.154.46 allows remote attackers to bypass the Same Origin Policy via a crafted script that accesses another frame and reads its full URL and possibly other sensitive information, or modifies the URL of this frame...
CVE-2009-0276
Removed by vendor...
CVE-2009-0276
CVE-2009-0276 affects Google Chrome (V8 JavaScript engine) prior to 1.0.154.46. A cross-domain vulnerability lets a crafted script bypass the Same Origin Policy, enabling reading the full URL of another frame and potentially other sensitive data, or modifying the URL of the target frame. The vuln...
Crashes with evidence of memory corruption (rv:1.9.0.6) — Mozilla
Mozilla developers identified and fixed several stability bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these crashes showed evidence of memory corruption under certain circumstances and we presume that with enough effort at least some of these could be...
Apple Safari JavaScript Engine Cross Domain Information Disclosure Vulnerability
The host is running Apple Safari web browser which is prone to information disclosure vulnerability. OpenVAS Vulnerability Test $Id: secpodapplesafarijsinfodiscvuln.nasl 5055 2017-01-20 14:08:39Z teissa $ Apple Safari JavaScript Engine Cross Domain Information Disclosure Vulnerability Authors:...
Debian: Security Advisory (DSA-1696-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1696-1 : icedove - several vulnerabilities
Several remote vulnerabilities have been discovered in the Icedove mail client, an unbranded version of the Thunderbird mail client. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0016 Justin Schuh, Tom Cross and Peter Williams discovered a buffer...
DSA-1696-1 icedove - several vulnerabilities
Bulletin has no description...
USN-701-2: Thunderbird vulnerabilities
Several flaws were discovered in the browser engine. If a user had Javascript enabled, these problems could allow an attacker to crash Thunderbird and possibly execute arbitrary code with user privileges. CVE-2008-5500 Boris Zbarsky discovered that the same-origin check in Thunderbird could be...