71 matches found
Mandriva Update for roundcubemail MDVSA-2010:048 (roundcubemail)
Check for the Version of roundcubemail OpenVAS Vulnerability Test Mandriva Update for roundcubemail MDVSA-2010:048 roundcubemail Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
Mandriva Update for roundcubemail MDVSA-2010:048 (roundcubemail)
Check for the Version of roundcubemail OpenVAS Vulnerability Test Mandriva Update for roundcubemail MDVSA-2010:048 roundcubemail Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
[ MDVSA-2010:048 ] roundcubemail
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2010:048 http://www.mandriva.com/security/ Package : roundcubemail Date : February 25, 2010 Affected: Enterprise Server 5.0 Problem Description: Roundcube 0.3.1 and earlier does not request that the web browser...
[Backports-security-announce] Security Update for roundcube
Holger Levsen uploaded a new package for roundcube which fixed the following security problems: CVE-2010-0464 Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determi...
[Backports-security-announce] Security Update for roundcube
Holger Levsen uploaded a new package for roundcube which fixed the following security problems: CVE-2010-0464 Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determi...
[Backports-security-announce] Security Update for roundcube
Holger Levsen uploaded a new package for roundcube which fixed the following security problems: CVE-2010-0464 Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determi...
Mozilla Products Necko DNS Information Disclosure Vulnerability (Windows)
The host is installed with Thundebird/Seamonkey and is prone to Information Disclosure vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsneckodnsinfodiscvulnwin.nasl 6444 2017-06-27 11:24:02Z santu $ Mozilla Products Necko DNS Information Disclosure Vulnerability Windows Authors: Antu...
Mozilla Products Necko DNS Information Disclosure Vulnerability (Linux)
The host is installed with Thundebird/Seamonkey and is prone to Information Disclosure vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsneckodnsinfodiscvulnlin.nasl 7273 2017-09-26 11:17:25Z cfischer $ Mozilla Products Necko DNS Information Disclosure Vulnerability Linux Authors: Antu...
CVE-2010-0464
Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...
CVE-2010-0463
Horde IMP 4.3.6 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...
CVE-2010-0464
Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...
DEBIAN-CVE-2010-0464
Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...
Cross site request forgery (csrf)
Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...
Cross site request forgery (csrf)
Horde IMP 4.3.6 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...
CVE-2010-0464
Roundcube 0.3.1 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...
Design/Logic Flaw
Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, performs DNS prefetching of domain names contained in links within local HTML documents, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests. NOTE: the...
CVE-2010-0463
Horde IMP 4.3.6 and earlier does not request that the web browser avoid DNS prefetching of domain names contained in e-mail messages, which makes it easier for remote attackers to determine the network location of the webmail user by logging DNS requests...
CVE-2009-4629
Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other applications, performs DNS prefetching even when the app type is APPTYPEMAIL or APPTYPEEDITOR, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests, as...
CVE-2009-4630
Mozilla Necko, as used in Firefox, SeaMonkey, and other applications, performs DNS prefetching of domain names contained in links within local HTML documents, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests. NOTE: the...
CVE-2009-4629
Mozilla Necko, as used in Thunderbird 3.0.1, SeaMonkey, and other applications, performs DNS prefetching even when the app type is APPTYPEMAIL or APPTYPEEDITOR, which makes it easier for remote attackers to determine the network location of the application's user by logging DNS requests, as...