Lucene search
+L

69 matches found

RedHat Linux
RedHat Linux
added 2018/03/15 11:24 a.m.8 views

Mozilla: Fetch API improperly returns cached copies of no-store/no-cache resources (MFSA 2018-07)

Under certain circumstances the "fetch" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessib...

5.9CVSS7.3AI score0.02323EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/03/15 11:6 a.m.7 views

Mozilla: Fetch API improperly returns cached copies of no-store/no-cache resources (MFSA 2018-07)

Under certain circumstances the "fetch" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessib...

5.9CVSS7.3AI score0.02323EPSS
Exploits0References5
OSV
OSV
added 2018/03/14 12:0 a.m.5 views

UBUNTU-CVE-2018-5131

Under certain circumstances the "fetch" API can return transient local copies of resources that were sent with a "no-store" or "no-cache" cache header instead of downloading a copy from the network as it should. This can result in previously stored, locally cached data of a website being accessib...

5.9CVSS6.9AI score0.02323EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2016/06/11 2:11 p.m.55 views

Security update for MozillaFirefox, mozilla-nss (important)

This update to Mozilla Firefox 47 fixes the following issues boo983549: Security fixes: - CVE-2016-2815/CVE-2016-2818: Miscellaneous memory safety hazards boo983638 MFSA 2016-49 - CVE-2016-2819: Buffer overflow parsing HTML5 fragments boo983655 MFSA 2016-50 - CVE-2016-2821: Use-after-free deletin...

9.3CVSS0.5AI score0.23957EPSS
Exploits7References15
Kitploit
Kitploit
added 2014/04/14 12:17 a.m.49 views

HULK - Web Server DoS Tool

HULK is a web server denial of service tool DDoS Tool written for research purposes. It is designed to generate volumes of unique and obfuscated traffic at a webserver, bypassing caching engines and therefore hitting the server's direct resource pool. The Hulk Web server is a brainchild of Barry...

7.3AI score
Exploits0
CVE
CVE
added 2013/08/20 10:0 p.m.54 views

CVE-2013-4959

CVE-2013-4959 : Puppet Enterprise before 3.0.1 exposes HTTP responses without a no-cache header, enabling local users to retrieve sensitive data via browser cache. Affected: Puppet Enterprise prior to 3.0.1. Impact as described: potential leakage of host name, MAC address, and SSH keys. CVSS 2.0 ...

2.1CVSS5.9AI score0.00352EPSS
Exploits0References1Affected Software1
Atlassian
Atlassian
added 2012/09/05 11:5 a.m.51 views

Provide HTTP headers for the content that absolutely must not be cached on the client

We have to provide the following HTTP headers in all responses containing sensitive content: Cache-control: no-store Pragma: no-cache We have identified some files at the following path, where we need to provide above headers. We are not able to identify the jsp pages or servlet, so that we can...

1.4AI score
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2009/02/04 8:59 a.m.6 views

Firefox directives to not cache pages ignored

Mozilla Firefox 3.x before 3.0.6 does not properly implement the 1 no-store and 2 no-cache Cache-Control directives, which allows local users to obtain sensitive information by using the a back button or b history list of the victim's browser, as demonstrated by reading the response page of an...

3.3CVSS7.4AI score0.00521EPSS
Exploits0References4
CVE
CVE
added 2008/05/12 7:0 p.m.49 views

CVE-2008-2143

CVE-2008-2143 affects unspecified Microsoft Outlook Web Access (OWA) versions. The underlying issue is that OWA uses Cache-Control: no-cache instead of no-store, which may allow browsers following RFC-2616 to cache sensitive information. Impact is potential exposure of cached data; no exploitatio...

1.9CVSS6.4AI score0.01545EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder