Lucene search
+L

2144 matches found

securityvulns
securityvulns
added 2006/05/12 12:0 a.m.61 views

Ipswitch WhatsUp Professional multiple flaws

WhatsUp is a tool from Ipswitch to monitor application and network, embedding a custom web server on port 8022. Description: This custom web server is prone to multiple flaws. -as authenticated user: src disclosure http://server:8022/NmConsole/Login.asp. there are many XSS flaws, as...

0.1AI score
Exploits0
Prion
Prion
added 2006/02/21 2:2 a.m.16 views

Information disclosure

MUTE 0.4 allows remote attackers to cause a denial of service messages not forwarded and obtain sensitive information about a target by filling a client's mWebCache cache with malicious "zombie" nodes...

6.4CVSS7.2AI score0.01596EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2006/02/21 2:2 a.m.16 views

CVE-2006-0808

MUTE 0.4 allows remote attackers to cause a denial of service messages not forwarded and obtain sensitive information about a target by filling a client's mWebCache cache with malicious "zombie" nodes...

6.4CVSS6.6AI score0.01596EPSS
Exploits0References4
Cvelist
Cvelist
added 2006/02/21 2:0 a.m.26 views

CVE-2006-0808

MUTE 0.4 allows remote attackers to cause a denial of service messages not forwarded and obtain sensitive information about a target by filling a client's mWebCache cache with malicious "zombie" nodes...

6.6AI score0.01596EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2006/02/02 3:50 p.m.46 views

Critical: Red Hat Security Advisory: firefox security update

An updated firefox package that fixes several security bugs is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. Igor Bukanov discovered a bug in the way Firefox's Javascript interpret...

7.5CVSS6.1AI score0.12589EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2006/01/15 12:0 a.m.33 views

Ubuntu 5.04 : mozilla-firefox, mozilla vulnerabilities (USN-124-1)

When a popup is blocked the user is given the ability to open that popup through the popup-blocking status bar icon and, in Firefox, through the information bar. Doron Rosenberg noticed that popups which are permitted by the user were executed with elevated privileges, which could be abused to...

7.5CVSS6AI score0.08283EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2005/08/23 12:0 a.m.42 views

Debian DSA-781-1 : mozilla-thunderbird - several vulnerabilities

Several problems have been discovered in Mozilla Thunderbird, the standalone mail client of the Mozilla suite. The Common Vulnerabilities and Exposures project identifies the following problems : - CAN-2005-0989 Remote attackers could read portions of heap memory into a JavaScript string via the...

7.5CVSS6.2AI score0.68097EPSS
Exploits7References11
Tenable Nessus
Tenable Nessus
added 2005/08/23 12:0 a.m.33 views

Debian DSA-779-2 : mozilla-firefox - several vulnerabilities

We experienced that the update for Mozilla Firefox from DSA 779-1 unfortunately was a regression in several cases. Since the usual praxis of backporting apparently does not work, this update is basically version 1.0.6 with the version number rolled back, and hence still named 1.0.4-. For...

7.5CVSS6.5AI score0.68097EPSS
Exploits12References17
OSV
OSV
added 2005/08/21 12:0 a.m.30 views

DSA-779-2 mozilla-firefox - several

Bulletin has no description...

7.5CVSS6.5AI score0.68097EPSS
Exploits9
Cent OS
Cent OS
added 2005/07/22 3:22 p.m.82 views

thunderbird security update

CentOS Errata and Security Advisory CESA-2005:601 Updated thunderbird package that fixes various bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and...

7.5CVSS5.9AI score0.68097EPSS
Exploits7References8
RedHat Linux
RedHat Linux
added 2005/07/21 5:42 p.m.35 views

Important: Red Hat Security Advisory: thunderbird security update

Updated thunderbird package that fixes various bugs is now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. Mozilla Thunderbird is a standalone mail and newsgroup client. A bug was found in the way...

7.5CVSS5.9AI score0.68097EPSS
Exploits7References2
securityvulns
securityvulns
added 2005/07/21 12:0 a.m.134 views

FreeBSD defvs jail restrictions bypass

It's possible to access restricted hidden device nodes from kailed environment...

2.4AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2005/07/21 12:0 a.m.43 views

Fedora Core 4 : thunderbird-1.0.6-1.1.fc4 (2005-606)

Mozilla Thunderbird is a standalone mail and newsgroup client. A bug was found in the way Thunderbird handled anonymous functions during regular expression string replacement. It is possible for a malicious HTML mail to capture a random block of client memory. The Common Vulnerabilities and...

7.5CVSS5.9AI score0.68097EPSS
Exploits7References1
FreeBSD
FreeBSD
added 2005/07/20 12:0 a.m.36 views

devfs -- ruleset bypass

Problem description Due to insufficient parameter checking of the node type during device creation, any user can expose hidden device nodes on devfs mounted file systems within their jail. Device nodes will be created in the jail with their normal default access permissions. Impact Jailed process...

7.2CVSS6.5AI score0.00375EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/07/13 12:0 a.m.12 views

FreeBSD : mozilla -- privilege escalation via DOM property overrides (f650d5b8-ae62-11d9-a788-0001020eed82)

A Mozilla Foundation Security Advisory reports : mozbugra4 reported several exploits giving an attacker the ability to install malicious code or steal data, requiring only that the user do commonplace actions like click on a link or open the context menu. The common cause in each case was...

5.7AI score
Exploits0References2
Ubuntu
Ubuntu
added 2005/05/11 3:56 p.m.63 views

USN-124-1: Mozilla and Firefox vulnerabilities

When a popup is blocked the user is given the ability to open that popup through the popup-blocking status bar icon and, in Firefox, through the information bar. Doron Rosenberg noticed that popups which are permitted by the user were executed with elevated privileges, which could be abused to...

7.5CVSS6AI score0.08283EPSS
Exploits3
NVD
NVD
added 2005/05/02 4:0 a.m.25 views

CVE-2005-1160

The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to gain privileges by overriding certain properties or methods of DOM nodes, as demonstrated using multiple attacks involving the eval function or the Script object...

5.1CVSS6.6AI score0.02718EPSS
Exploits0References18
UbuntuCve
UbuntuCve
added 2005/05/02 4:0 a.m.22 views

CVE-2005-1160

The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to gain privileges by overriding certain properties or methods of DOM nodes, as demonstrated using multiple attacks involving the eval function or the Script object...

5.1CVSS6AI score0.02718EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2005/04/21 9:11 a.m.49 views

Important: Red Hat Security Advisory: firefox security update

Updated firefox packages that fix various security bugs are now available. This update has been rated as having Important security impact by the Red Hat Security Response Team. Mozilla Firefox is an open source Web browser. Vladimir V. Perepelitsa discovered a bug in the way Firefox handles...

7.5CVSS6.1AI score0.10036EPSS
Exploits4References3
Cvelist
Cvelist
added 2005/04/18 4:0 a.m.26 views

CVE-2005-1160

The privileged "chrome" UI code in Firefox before 1.0.3 and Mozilla Suite before 1.7.7 allows remote attackers to gain privileges by overriding certain properties or methods of DOM nodes, as demonstrated using multiple attacks involving the eval function or the Script object...

6.6AI score0.02718EPSS
Exploits0References18
Rows per page
Query Builder