Google Chrome 'GetWidget' methods DoS Vulnerability (Linux)

The host is installed Google Chrome and is prone to denial of service vulnerability. OpenVAS Vulnerability Test $Id: gbgooglechromegetwidgetdosvulnlin.nasl 7019 2017-08-29 11:51:27Z teissa $ Google Chrome 'GetWidget' methods DoS Vulnerability Linux Authors: Madhuri D Copyright: Copyright c 2011...

Google Chrome 'GetWidget' methods DoS Vulnerability - Linux

Google Chrome is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-2761

Google Chrome 14.0.794.0 does not properly handle a reload of a page generated in response to a POST, which allows user-assisted remote attackers to cause a denial of service application crash via a crafted web site, related to GetWidget methods...

Design/Logic Flaw

Google Chrome 14.0.794.0 does not properly handle a reload of a page generated in response to a POST, which allows user-assisted remote attackers to cause a denial of service application crash via a crafted web site, related to GetWidget methods...

CVE-2011-2761

Google Chrome 14.0.794.0 does not properly handle a reload of a page generated in response to a POST, which allows user-assisted remote attackers to cause a denial of service application crash via a crafted web site, related to GetWidget methods...

CVE-2011-2761

CVE-2011-2761 affects Google Chrome 14.0.794.0, where reloading a page generated by a POST is mishandled, enabling user‑assisted remote attackers to trigger a DoS (application crash) via a crafted site. The issue is related to the GetWidget methods. Public sources describe the vulnerability acros...

CVE-2011-2761

Removed by vendor...

News Intl. Calls Brown's Allegations of Malware Use "Nonsense"

Allegations made on Wednesday by former British Prime Minister Gordon Brown that journalists working for Rupert Murdoch’s News of the World tabloid used malicious software to break into and gather information from computers belonging to the subjects of investigations was greeted with a strong...

PalTalk messenger ActiveX insecure methods

It's possible to save files into arbitrary locations...

File Transit Inc. Cross Site Scripting

%+ $...............4.........|........0............// %+ %+ %+ %++++++++++++++++++++++++++++++++++++++++ Exploit Title:File Transit Inc. persistent XSS vulnerability Vendor: www.filetransit.com Author: $4d0//r007k17 a.k.a Raghavendra Karthik D [email protected] Google Dork: File Transit...

Easewe FTP OCX ActiveX Control code execution

Unsafe methods allow data access and code execution...

Nmap NSE net: http-methods

Finds out what options are supported by an HTTP server by sending an OPTIONS request. Lists potentially risky methods. Optionally tests each method individually to see if they are subject to e.g. IP address restrictions. In this script, 'potentially risky' methods are anything except GET, HEAD,...

Easewe FTP ActiveX Control Multiple Insecure Methods

High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Easewe FTP OCX ActiveX Control, which can be exploited to potentially compromise a user's system. 1 Insecure methods in Easewe FTP ActiveX Control 1.1 The vulnerability is caused due to the EaseWeFtp.FtpLibrary...

Nmap NSE net: http-methods

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Exploit writing tutorial part 2 - Jumping to shellcode [RUS by pleaZ]

Автор: Peter Van Eeckhoutte corelanc0d3r Перевод: peaz 5/2011 В предыдущей части руководства Part1: Stack Based Overflows, я объяснял основы по использованию информации о найденной уязвимости в целях создания собственного эксплойта. На примере из предыдущей части, мы видели, что ESP указывал на...

SMTP Authentication Methods

The remote SMTP server advertises that it supports authentication. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid54580; scriptversion"1.7"; scriptcvsdate"Date: 2019/03/05 11:48:05"; scriptnameenglish:"SMTP Authentication Methods"; scriptsummaryenglish:"Checks which...

New Version of Alureon Ups the Ante on Encryption

A new version of the venerable Alureon malware has appeared, and this one includes some odd behavior designed to prevent analysis and detection by antimalware systems. However, this isn’t the typical evasion algorithm, as it uses some unusual encryption and decryption routines to make life much...

ECshop payment methods 0day manual injection EXP-vulnerability warning-the black bar safety net

ECshop payment methods 0day manual injection of the study The original EXP: respond. php? code=tenpay&attach=voucher&spbillno=1 andselect 1 fromselect count,concatselect select SELECT concat0x7e,0x27,count,0x27,0x7e FROM ecs. ecsadminuser from the informationschema. tables limit 0,1,floorrand02x...

CVE-2011-1720

The SMTP server in Postfix before 2.5.13, 2.6.x before 2.6.10, 2.7.x before 2.7.4, and 2.8.x before 2.8.3, when certain Cyrus SASL authentication methods are enabled, does not create a new server handle after client authentication fails, which allows remote attackers to cause a denial of service...

Memory corruption

The SMTP server in Postfix before 2.5.13, 2.6.x before 2.6.10, 2.7.x before 2.7.4, and 2.8.x before 2.8.3, when certain Cyrus SASL authentication methods are enabled, does not create a new server handle after client authentication fails, which allows remote attackers to cause a denial of service...