Lucene search
K

71 matches found

OpenVAS
OpenVAS
added 2010/03/02 12:0 a.m.20 views

Mandriva Update for roundcubemail MDVSA-2010:048 (roundcubemail)

Check for the Version of roundcubemail OpenVAS Vulnerability Test Mandriva Update for roundcubemail MDVSA-2010:048 roundcubemail Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

5CVSS0.2AI score0.01962EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/03/02 12:0 a.m.17 views

Mandriva Update for roundcubemail MDVSA-2010:048 (roundcubemail)

Check for the Version of roundcubemail OpenVAS Vulnerability Test Mandriva Update for roundcubemail MDVSA-2010:048 roundcubemail Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...

5CVSS0.2AI score0.01962EPSS
Exploits0References2
securityvulns
securityvulns
added 2010/02/25 12:0 a.m.56 views

[ MDVSA-2010:048 ] roundcubemail

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:048 http://www.mandriva.com/security/ Package : roundcubemail Date : February 25, 2010 Affected: Enterprise Server 5.0 Problem Description: Roundcube 0.3.1 and earlier does not request that the web browser...

5CVSS6.2AI score0.01962EPSS
Exploits0
Debian
Debian
added 2010/02/17 2:48 p.m.24 views

[Backports-security-announce] Security Update for roundcube

Holger Levsen uploaded a new package for roundcube which fixed the following security problems: CVE-2010-0464 Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determi...

5CVSS2.1AI score0.01962EPSS
Exploits0
Debian
Debian
added 2010/02/17 2:48 p.m.24 views

[Backports-security-announce] Security Update for roundcube

Holger Levsen uploaded a new package for roundcube which fixed the following security problems: CVE-2010-0464 Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determi...

5CVSS1.2AI score0.01962EPSS
Exploits0
Debian
Debian
added 2010/02/17 2:48 p.m.22 views

[Backports-security-announce] Security Update for roundcube

Holger Levsen uploaded a new package for roundcube which fixed the following security problems: CVE-2010-0464 Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determi...

5CVSS5.8AI score0.01962EPSS
Exploits0
OpenVAS
OpenVAS
added 2010/02/04 12:0 a.m.26 views

Mozilla Products Necko DNS Information Disclosure Vulnerability (Windows)

The host is installed with Thundebird/Seamonkey and is prone to Information Disclosure vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsneckodnsinfodiscvulnwin.nasl 6444 2017-06-27 11:24:02Z santu $ Mozilla Products Necko DNS Information Disclosure Vulnerability Windows Authors: Antu...

5CVSS6.5AI score0.00934EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2010/02/04 12:0 a.m.22 views

Mozilla Products Necko DNS Information Disclosure Vulnerability (Linux)

The host is installed with Thundebird/Seamonkey and is prone to Information Disclosure vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsneckodnsinfodiscvulnlin.nasl 7273 2017-09-26 11:17:25Z cfischer $ Mozilla Products Necko DNS Information Disclosure Vulnerability Linux Authors: Antu...

5CVSS6.5AI score0.00934EPSS
Exploits0References2
NVD
NVD
added 2010/01/29 6:30 p.m.12 views

CVE-2010-0464

Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...

5CVSS6.4AI score0.01962EPSS
Exploits0References3
NVD
NVD
added 2010/01/29 6:30 p.m.13 views

CVE-2010-0463

Horde IMP 4.3.6 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...

5CVSS6.4AI score0.01945EPSS
Exploits0References3
OSV
OSV
added 2010/01/29 6:30 p.m.4 views

CVE-2010-0464

Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...

6.6AI score
Exploits0References3
OSV
OSV
added 2010/01/29 6:30 p.m.2 views

DEBIAN-CVE-2010-0464

Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...

5CVSS6.7AI score0.01962EPSS
Exploits0References1
Prion
Prion
added 2010/01/29 6:30 p.m.12 views

Cross site request forgery (csrf)

Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...

5CVSS6.9AI score0.01962EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2010/01/29 6:30 p.m.10 views

Cross site request forgery (csrf)

Horde IMP 4.3.6 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...

5CVSS6.9AI score0.01945EPSS
Exploits0References3Affected Software1
UbuntuCve
UbuntuCve
added 2010/01/29 6:30 p.m.17 views

CVE-2010-0464

Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...

5CVSS5.9AI score0.01962EPSS
Exploits0References1
Prion
Prion
added 2010/01/29 6:30 p.m.18 views

Design/Logic Flaw

Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, performs DNS prefetching of domain names contained in links within local HTML documents, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests. NOTE: the...

5CVSS6.8AI score0.01025EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2010/01/29 6:30 p.m.14 views

CVE-2010-0463

Horde IMP 4.3.6 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...

5CVSS5.9AI score0.01945EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2010/01/29 6:30 p.m.29 views

CVE-2009-4629

Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other applications, performs DNS prefetching even when the app type is APPTYPEMAIL or APPTYPEEDITOR, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests, as...

5CVSS5.9AI score0.00934EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2010/01/29 6:30 p.m.24 views

CVE-2009-4630

Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, performs DNS prefetching of domain names contained in links within local HTML documents, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests. NOTE: the...

5CVSS5.9AI score0.01025EPSS
Exploits0References1
NVD
NVD
added 2010/01/29 6:30 p.m.23 views

CVE-2009-4629

Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other applications, performs DNS prefetching even when the app type is APPTYPEMAIL or APPTYPEEDITOR, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests, as...

5CVSS6.5AI score0.00934EPSS
Exploits0References2
Rows per page
Query Builder