Lucene search
K

6 matches found

Veracode
Veracode
added 2019/05/02 5:51 a.m.20 views

Cross-site Scripting (XSS)

Firefox, Firefox ESR and Thunderbird are vulnerable to cross-site scripting XSS attacks. A remote user can bypass inline JavaScript Content Security Policy CSP and cause event handlers on marquee elements to be executed resulting in arbitrary code to execution. The affected component is Marquee T...

6.1CVSS7.7AI score0.01839EPSS
Exploits1References12Affected Software3
RedHat Linux
RedHat Linux
added 2016/12/21 10:0 a.m.12 views

Mozilla: CSP bypass using marquee tag (MFSA 2016-94, MFSA 2016-95)

Event handlers on "marquee" elements were executed despite a strict Content Security Policy CSP that disallowed inline JavaScript. This vulnerability affects Firefox 50.1, Firefox ESR 45.6, and Thunderbird 45.6...

6.1CVSS7.3AI score0.01839EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2016/12/14 10:1 a.m.5 views

Mozilla: CSP bypass using marquee tag (MFSA 2016-94, MFSA 2016-95)

Event handlers on "marquee" elements were executed despite a strict Content Security Policy CSP that disallowed inline JavaScript. This vulnerability affects Firefox 50.1, Firefox ESR 45.6, and Thunderbird 45.6...

6.1CVSS7.3AI score0.01839EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2016/09/02 12:0 a.m.54 views

SUSE SLES11 Security Update : MozillaFirefox (SUSE-SU-2016:2195-1)

Mozilla Firefox was updated to 45.3.0 ESR to fix the following issues bsc991809 : - MFSA 2016-62/CVE-2016-2835/CVE-2016-2836 Miscellaneous memory safety hazards rv:48.0 / rv:45.3 - MFSA 2016-63/CVE-2016-2830 Favicon network connection can persist when page is closed - MFSA 2016-64/CVE-2016-2838...

9.8CVSS7.2AI score0.08767EPSS
Exploits3References35
Packet Storm
Packet Storm
added 2006/06/12 12:0 a.m.25 views

marquee.txt

Guy's the marquee tag dos exploit also afest's ie and opera also here is proof of concept credit's n00b and all that helped. This is for opera and ie. Ie voulnrability credit's to n00b and every-one who helped. /marque...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/05/31 12:0 a.m.30 views

Fire fox dos exploit

I have found a problem which causes denial of service on fire fox browser Creadit:to n00b for finding this bug.. the problem lie's in the marquee html tag uses 100 cpu and crash's the browser.. Following proof of concept available html head titleCredit to n00b../title meta http-equiv="Content-Typ...

0.1AI score
Exploits0
Rows per page
Query Builder