2114 matches found
CVE-2007-0534
Multiple cross-site scripting XSS vulnerabilities in the 1 Project issue tracking 4.7.0 through 5.x before 20070123 and 2 Project 4.6.0 through 5.x before 20070123 modules for Drupal allow remote authenticated users to inject arbitrary web script or HTML via a certain "fields on project nodes" or...
Who control our browser-vulnerability warning-the black bar safety net
1 phenomenon? From about the beginning of this year, a lot of people will find, when browsing some websites, the address bar url will be somehow plus“? curtime=xxxxxxxxxx”is x is the number, and pop-up advertising window. A lot of people think this is the site your own pop-up advertising, also di...
DEBIAN-CVE-2006-3811
Multiple vulnerabilities in Mozilla Firefox before 1.5.0.5, Thunderbird before 1.5.0.5, and SeaMonkey before 1.0.3 allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via Javascript that leads to memory corruption, including 1...
DEBIAN-CVE-2006-3417
Tor client before 0.1.1.20 prefers entry points based on isfast or isstable flags, which could allow remote attackers to be preferred over nodes that are identified as more trustworthy "entry guard" isguard systems by directory authorities...
DEBIAN-CVE-2006-3410
Tor before 0.1.1.20 creates "internal circuits" primarily consisting of nodes with "useful exit nodes," which allows remote attackers to conduct unspecified statistical attacks...
CentOS 4 : mozilla (CESA-2005:386)
Updated mozilla packages that fix various security bugs are now available. This update has been rated as having Important security impact by the Red Hat Security Response Team. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. Vladimir V...
CentOS 4 : firefox (CESA-2006:0200)
An updated firefox package that fixes several security bugs is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. Igor Bukanov discovered a bug in the way Firefox's JavaScript interpret...
Design/Logic Flaw
NmConsole/utility/RenderMap.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain sensitive information about network nodes via a modified nDeviceGroupID parameter...
CVE-2006-2356
NmConsole/utility/RenderMap.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain sensitive information about network nodes via a modified nDeviceGroupID parameter...
CVE-2006-2356
NmConsole/utility/RenderMap.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain sensitive information about network nodes via a modified nDeviceGroupID parameter...
Ipswitch WhatsUp Professional multiple flaws
WhatsUp is a tool from Ipswitch to monitor application and network, embedding a custom web server on port 8022. Description: This custom web server is prone to multiple flaws. -as authenticated user: src disclosure http://server:8022/NmConsole/Login.asp. there are many XSS flaws, as...
Information disclosure
MUTE 0.4 allows remote attackers to cause a denial of service messages not forwarded and obtain sensitive information about a target by filling a client's mWebCache cache with malicious "zombie" nodes...
CVE-2006-0808
MUTE 0.4 allows remote attackers to cause a denial of service messages not forwarded and obtain sensitive information about a target by filling a client's mWebCache cache with malicious "zombie" nodes...
CVE-2006-0808
MUTE 0.4 allows remote attackers to cause a denial of service messages not forwarded and obtain sensitive information about a target by filling a client's mWebCache cache with malicious "zombie" nodes...
Critical: Red Hat Security Advisory: firefox security update
An updated firefox package that fixes several security bugs is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. Igor Bukanov discovered a bug in the way Firefox's Javascript interpret...
Ubuntu 5.04 : mozilla-firefox, mozilla vulnerabilities (USN-124-1)
When a popup is blocked the user is given the ability to open that popup through the popup-blocking status bar icon and, in Firefox, through the information bar. Doron Rosenberg noticed that popups which are permitted by the user were executed with elevated privileges, which could be abused to...
Debian DSA-779-2 : mozilla-firefox - several vulnerabilities
We experienced that the update for Mozilla Firefox from DSA 779-1 unfortunately was a regression in several cases. Since the usual praxis of backporting apparently does not work, this update is basically version 1.0.6 with the version number rolled back, and hence still named 1.0.4-. For...
Debian DSA-781-1 : mozilla-thunderbird - several vulnerabilities
Several problems have been discovered in Mozilla Thunderbird, the standalone mail client of the Mozilla suite. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-0989 Remote attackers could read portions of heap memory into a JavaScript string via the...
DSA-779-2 mozilla-firefox - several
Bulletin has no description...
thunderbird security update
CentOS Errata and Security Advisory CESA-2005:601 Updated thunderbird package that fixes various bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and...