SUSE CVE-2014-1500

Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to cause a denial of service resource consumption and application hang via onbeforeunload events that trigger background JavaScript execution...

MozillaThunderbird,seamonkey (important)

Mozilla Thunderbird was updated to 24.4.0. Mozilla SeaMonkey was updated to 2.25. MFSA 2014-15/CVE-2014-1493/CVE-2014-1494 Miscellaneous memory safety hazards MFSA 2014-17/CVE-2014-1497 bmo966311 Out of bounds read during WAV file decoding MFSA 2014-18/CVE-2014-1498 bmo935618...

Mozilla多个产品onbeforeunload事件页面导航拒绝服务漏洞

CVE ID:CVE-2014-1500 Mozilla Firefox/SeaMonkey是Mozilla所发布的WEB浏览器/新闻组客户端。 当onbeforeunload事件与页面导航一起使用时会使浏览器变得不稳定，允许攻击者利用漏洞构建恶意WEB页，诱使用户解析，可使应用程序崩溃。 0 Mozilla Firefox 27 Mozilla Seamonkey 2.24 Mozilla Firefox 28，Seamonkey 2.25已经修复该漏洞，建议用户下载更新： http://www.mozilla.org...

Design/Logic Flaw

Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to cause a denial of service resource consumption and application hang via onbeforeunload events that trigger background JavaScript execution...

CVE-2014-1500

CVE-2014-1500 affects Mozilla Firefox prior to 28.0 and SeaMonkey prior to 2.25. The issue allows remote attackers to cause resource exhaustion and application hang via onbeforeunload events that trigger background JavaScript execution. Exploitation details are not provided in the available docum...

CVE-2014-1500

Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to cause a denial of service resource consumption and application hang via onbeforeunload events that trigger background JavaScript execution...

Mozilla Firefox 3.0.7 OnbeforeUnLoad DesignMode Dereference Crash

No description provided by source. BODY onload="document.designMode='on';//string alert'Design mode is on!'; document.removeChilddocument.firstChild;//object; document.queryCommandState'BackColor'; alert'Close the Window to see the crash!'; "...

Mozilla Firefox 3.0.7 OnbeforeUnLoad DesignMode Dereference Crash

Exploit for multiple platform in category dos / poc ================================================================= Mozilla Firefox 3.0.7 OnbeforeUnLoad DesignMode Dereference Crash ================================================================= 0day.today 2018-02-15...

Mozilla Firefox 3.0.7 - OnbeforeUnLoad DesignMode Dereference Crash

Mozilla Firefox 3.0.7 - OnbeforeUnLoad DesignMode Dereference Crash milw0rm.com 2009-03-16...

Google Chrome OnbeforeUload and OnUnload Null Check Vulnerability.

Advisory: Google Chrome OnbeforeUload and OnUnload Null Check Vulnerability. Version Affected: Chrome/0.2.149.30 Chrome/0.2.149.29 Chrome/0.2.149.27 Description: Google chrome is susceptible to stringent behavior while handling "onbeforeunload" and "onunload" event in body tags. The malicious...

CVE-2007-3826

Microsoft Internet Explorer 7 on Windows XP SP2 allows remote attackers to prevent users from leaving a site, spoof the address bar, and conduct phishing and other attacks via repeated document.open function calls after a user requests a new page, but before the onBeforeUnload function is called...

MSIE7 entrapment again (+ FF tidbit)

Hello again, Microsoft Internet Explorer seems to have a soft spot for browser entrapment vulnerabilities. Just to recap, in these attacks, the user is made believe he had left a webpage and the URL bar or SSL state data reinforce him in this belief - but in reality, is prevented from doing so, a...