5580 matches found
iSpy Keylogger Targets Passwords, Skype, Webcams
Researchers are monitoring sales and infection rates of a new keylogger being sold on the dark web for $25 to $35. Along with capturing keystrokes, iSpy grabs passwords stored in web browsers, records Skype chats, takes webcam screenshots and steals the license keys of software such as Adobe...
The vulnerability of the Windows operating system, which allows a perpetrator to bypass the security mechanisms for secure downloads
The vulnerability of the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass the security mechanisms for secure loading by using administrative or physical access to install a specially crafted loader...
Microsoft Secure Boot Security Feature Bypass Vulnerability
Microsoft Windows is the popular computer operating system. A security vulnerability exists in Windows Secure Boot due to the program not loading the boot manager correctly. An attacker with access privileges is allowed to exploit the vulnerability to bypass the Secure Boot protection mechanism...
CVE-2016-5141
Blink, as used in Google Chrome before 52.0.2743.116, allows remote attackers to spoof the address bar via vectors involving a provisional URL for an initially empty document, related to FrameLoader.cpp and ScopedPageLoadDeferrer.cpp...
UBUNTU-CVE-2016-5141
Blink, as used in Google Chrome before 52.0.2743.116, allows remote attackers to spoof the address bar via vectors involving a provisional URL for an initially empty document, related to FrameLoader.cpp and ScopedPageLoadDeferrer.cpp...
Google Chrome Blink Same-Origin Policy Bypass Vulnerability (CNVD-2016-05588)
Blink is the United States Google Google Inc. and Norway Opens Opera Software company jointly developed a set of browser layout engine rendering engine. A same-origin policy bypass vulnerability exists in the WebKit/Source/core/loader/FrameLoader.cpp file in Blink used in versions prior to Google...
chromium-browser: same-origin bypass in blink
WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 52.0.2743.82, does not disable frame navigation during a detach operation on a DocumentLoader object, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...
CVE-2016-1711
WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 52.0.2743.82, does not disable frame navigation during a detach operation on a DocumentLoader object, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...
UBUNTU-CVE-2016-1711
WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 52.0.2743.82, does not disable frame navigation during a detach operation on a DocumentLoader object, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...
The vulnerability of the Linter Bastion database management system allows a malicious individual to replace and execute the executable file.
If the database management system Linter Bastion was installed without the “loltp.exe” module being installed, a malicious individual can place any executable file named “loltp.exe” in a directory that will be scanned by the executable file loader. Then, using RPC calls with numbers 0x1A...
The vulnerability of Google Chrome browser allows a violator to circumvent existing access restrictions policies.
The vulnerability of the FrameLoader::startLoad function WebKit/Source/core/loader/FrameLoader.cpp in the Google Chrome browser’s Blink component is related to the lack of control over frame navigation during interrupt operations of the DocumentLoader. Exploiting this vulnerability could allow a...
The vulnerability of Google Chrome browser allows a violator to circumvent existing access restrictions policies.
The vulnerability of the Blink component in Google Chrome’s browser is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to circumvent existing access restrictions by manipulating the FrameLoader.cpp and LocalFrame.cpp files...
Google Chrome FrameLoader::startLoad Same Origin Policy Bypass Vulnerability
Google Chrome is a web browsing tool developed by Google. In versions of Google Chrome prior to 51.0.2704.79, the Blink/WebKit/Source/core/loader/FrameLoader.cpp/FrameLoader::startLoad function fails to prevent frame navigation in the DocumentLoader separation operation. A same-origin policy bypa...
UBUNTU-CVE-2016-1697
The FrameLoader::startLoad function in WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 51.0.2704.79, does not prevent frame navigations during DocumentLoader detach operations, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScrip...
CVE-2016-1697
The FrameLoader::startLoad function in WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 51.0.2704.79, does not prevent frame navigations during DocumentLoader detach operations, which allows remote attackers to bypass the Same Origin Policy via crafted JavaScrip...
CVE-2016-1675
Blink, as used in Google Chrome before 51.0.2704.63, allows remote attackers to bypass the Same Origin Policy by leveraging the mishandling of Document reattachment during destruction, related to FrameLoader.cpp and LocalFrame.cpp...
UBUNTU-CVE-2016-1675
Blink, as used in Google Chrome before 51.0.2704.63, allows remote attackers to bypass the Same Origin Policy by leveraging the mishandling of Document reattachment during destruction, related to FrameLoader.cpp and LocalFrame.cpp...
Graphite2 - GlyphCache::Loader Heap Overreads
Graphite2 - GlyphCache::Loader Heap Overreads Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=751 The following crashes due to two different heap-based buffer overreads can be observed in an ASAN build of the standard Graphite2 gr2FontTest utility git trunk, triggered with the...
Graphite2 - GlyphCache::Loader Heap Based Overreads
Exploit for multiple platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=751 The following crashes due to two different heap-based buffer overreads can be observed in an ASAN build of the standard Graphite2 gr2FontTest utility git trunk, triggered with...
Graphite2 - GlyphCache::Loader Heap Overreads
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=751 The following crashes due to two different heap-based buffer overreads can be observed in an ASAN build of the standard Graphite2 gr2FontTest utility git trunk, triggered with the following command: $ ./gr2fonttest /path/to/fil...