3851 matches found
DEBIAN-CVE-2006-6497
Multiple unspecified vulnerabilities in the layout engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allow remote attackers to cause a denial of service memory corruption and crash and possibly execute arbitrary code via...
Mozilla Layout Engine vulnerability
Overview A vulnerability exists in the Mozilla Layout Engine that may allow a remote attacker to compromise a vulnerable system. Description The Mozilla Layout Engine contains an unspecified vulnerability that may result in memory corruption. The impact of this memory corruption is unclear...
security flaw
Multiple unspecified vulnerabilities in the layout engine for Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allow remote attackers to cause a denial of service memory corruption and crash and possibly execute arbitrary code via...
[SECURITY] [DSA 1227-1] New Mozilla Thunderbird packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 1227-1 [email protected] http://www.debian.org/security/ Martin Schulze December 4th, 2006 http://www.debian.org/security/faq -...
Debian DSA-1227-1 : mozilla-thunderbird - several vulnerabilities
Several security related problems have been discovered in Mozilla and derived products such as Mozilla Thunderbird. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities : - CVE-2006-4310 Tomas Kempinsky discovered that malformed FTP server responses could lead...
DSA-1227-1 mozilla-thunderbird
Bulletin has no description...
phpPC 1.04 - Multiple Remote File Inclusions
phpPC 1.04 - Multiple Remote File Inclusions phpPC 1.04 Multiples Remote File Inclusion Script : PHP Poll Creator Version : 1.04 Vendor URL : http://www.phppc.de Impact : Remote File Inclusion Discovered by : iss4m Contact : [email protected] Vulnerable code in poll.php...
phpPC <= 1.04 Multiple Remote File Inclusion Vulnerabilities
Exploit for unknown platform in category web applications ============================================================ phpPC = 1.04 Multiple Remote File Inclusion Vulnerabilities ============================================================ phpPC 1.04 Multiples Remote File Inclusion Script : PHP...
phpPC <= 1.04 Multiple Remote File Inclusion Vulnerabilities
No description provided by source. phpPC 1.04 Multiples Remote File Inclusion Script : PHP Poll Creator Version : 1.04 Vendor URL : http://www.phppc.de Impact : Remote File Inclusion Discovered by : iss4m Contact : [email protected] Vulnerable code in poll.php -------------------------------- ?ph...
Mozilla Firefox/SeaMonkey/Thunderbird多个远程安全漏洞
Mozilla Firefox/SeaMonkey/Thunderbird都是Mozilla发布的WEB浏览器和邮件新闻组客户端产品。 上述产品中存在多个安全漏洞,具体如下: 1 Mozilla产品中所捆绑的网络安全服务(NSS)库如果以指数3使用RSA密钥的话,就无法正确的处理签名中的额外数据,允许攻击者伪造SSL/TLS和邮件证书。这个漏洞是MFSA 2006-60中所报告RSA签名漏洞的变种。 2 攻击者可以在执行期间修改Script对象,导致执行任意JavaScript bytecode。 3...
DEBIAN-CVE-2006-5464
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service crash via unspecified vectors...
CVE-2006-5464
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service crash via unspecified vectors...
CVE-2006-5464
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service crash via unspecified vectors...
security flaw
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service crash via unspecified vectors...
security flaw
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox before 1.5.0.8, Thunderbird before 1.5.0.8, and SeaMonkey before 1.0.6 allow remote attackers to cause a denial of service crash via unspecified vectors...
Mozilla products contain several unspecified errors in the layout engine
Overview The Mozilla layout engine contains several unspecified vulnerabilities that may allow an attacker to execute arbitrary code or crash the vulnerable application. Description The Mozilla layout engine, also known as Gecko, is responsible for parsing HTML, XML, CSS, layout, and rendering...
Microsoft IE HTML布局和定位内存破坏漏洞(MS06-042)
Microsoft Internet Explorer是微软发布的非常流行的WEB浏览器。 Internet Explorer解析带有特定布局定位组合的HTML的方式中存在内存破坏漏洞,成功利用此漏洞的攻击者可以完全控制受影响的系统。 由于没有正确的处理CSS类值,通过document.getElementByID访问特制的CSS元素就会触发这个漏洞。攻击者可能通过构建特制网页来利用此漏洞,如果用户查看了该网页,则可能允许远程执行代码。 Microsoft Internet Explorer 6.0 SP1 Microsoft Internet Explorer 6.0 临时解决方法:...
USN-347-1: Linux kernel vulnerabilities
Sridhar Samudrala discovered a local Denial of Service vulnerability in the handling of SCTP sockets. By opening such a socket with a special SOLINGER value, a local attacker could exploit this to crash the kernel. CVE-2006-4535 Kirill Korotaev discovered that the ELF loader on the ia64 and sparc...
CVE-2006-3637
Microsoft Internet Explorer 5.01 SP4 and 6 does not properly handle various HTML layout component combinations, which allows user-assisted remote attackers to execute arbitrary code via a crafted HTML file that leads to memory corruption, aka "HTML Rendering Memory Corruption Vulnerability."...
Microsoft Internet Explorer HTML Layout and Positioning Remote Code Execution Vulnerability
Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. This vulnerability is related to how the browser renders HTML with certain layout and positioning combinations. An attacker could exploit this issue to execute arbitrary code in the context of the user...