16 matches found
EUVD-2007-0702
Malware in sbrugna...
CVE-2020-25268
Remote Code Execution can occur via the external news feed in ILIAS 6.4 because of incorrect parameter sanitization for Magpie RSS data...
CVE-2020-25268
Remote Code Execution can occur via the external news feed in ILIAS 6.4 because of incorrect parameter sanitization for Magpie RSS data...
Remote code execution
Remote Code Execution can occur via the external news feed in ILIAS 6.4 because of incorrect parameter sanitization for Magpie RSS data...
CVE-2020-25268
ILIAS 6.4 is vulnerable to Remote Code Execution via the external news feed due to incorrect parameter sanitization of Magpie RSS data. The issue affects the Magpie RSS data parsing path, enabling an attacker to execute code remotely. CVSS details indicate a high impact (C, I, A high) with networ...
Mozilla Firefox < 12.0 Multiple Vulnerabilities
Binary data 6790.prm...
Mozilla Firefox <= 11 Multiple Vulnerabilities
Binary data 801359.prm...
Thunderbird < 12.0 Multiple Vulnerabilities (Mac OS X)
The installed version of Thunderbird is earlier than 12.0 and thus, is potentially affected by the following security issues : - An error exists with handling JavaScript errors that can lead to information disclosure. CVE-2011-1187 - An off-by-one error exists in the 'OpenType Sanitizer' which ca...
Mozilla Thunderbird < 12.0 Multiple Vulnerabilities
The installed version of Thunderbird is earlier than 12.0 and thus, is potentially affected by the following security issues : - An error exists with handling JavaScript errors that could lead to information disclosure. CVE-2011-1187 - An off-by-one error exists in the 'OpenType Sanitizer' that...
Sleipnir RSS bar vulnerable in handling RSS data in an inappropriate security zone
Overview Sleipnir is a tabbed web browser developed in Japan by Fenrir & Co. Sleipnir RSS bar contains a vulnerability that RSS data is handled in an inappropriate security zone My Computer zone. Impact An arbitrary script could be executed in an inappropriate security zone. Solution None...
Cross site scripting
Cross-zone scripting vulnerability in Sleipnir 2.49 and earlier, and Portable Sleipnir 2.45 and earlier, allows remote attackers to bypass Web content zone restrictions via certain script contained in RSS data. NOTE: some of these details are obtained from third party information...
CVE-2007-0706
Cross-zone scripting vulnerability in Darksky RSS bar for Internet Explorer before 1.29, RSS bar for Sleipnir before 1.29, and RSS bar for unDonut before 1.29 allows remote attackers to bypass Web content zone restrictions via certain script contained in RSS data. NOTE: some of these details are...
CVE-2007-0705
Cross-zone scripting vulnerability in Sleipnir 2.49 and earlier, and Portable Sleipnir 2.45 and earlier, allows remote attackers to bypass Web content zone restrictions via certain script contained in RSS data. NOTE: some of these details are obtained from third party information...
CVE-2007-0706
Cross-zone scripting vulnerability in Darksky RSS bar for Internet Explorer before 1.29, RSS bar for Sleipnir before 1.29, and RSS bar for unDonut before 1.29 allows remote attackers to bypass Web content zone restrictions via certain script contained in RSS data. NOTE: some of these details are...
CVE-2007-0705
CVE-2007-0705 affects Sleipnir 2.49 and earlier and Portable Sleipnir 2.45 and earlier. The vulnerability arises from RSS data handling in Sleipnir’s RSS bar, allowing a cross-zone scripting attack that bypasses Web content zone restrictions and could cause arbitrary script execution in an inappr...
JVN#93700808 Sleipnir RSS bar vulnerable in handling RSS data in an inappropriate security zone
Impact An arbitrary script could be executed in an inappropriate security zone. Solution Products Affected Sleipnir 2.49 and earlier Portable Sleipnir 2.45 and earlier RSS bar for Sleipnir 1.28 Release3 and earlier...