Lucene search
K

58 matches found

Ubuntu
Ubuntu
added 2009/01/06 11:17 p.m.73 views

USN-701-1: Thunderbird vulnerabilities

Several flaws were discovered in the browser engine. If a user had Javascript enabled, these problems could allow an attacker to crash Thunderbird and possibly execute arbitrary code with user privileges. CVE-2008-5500 Boris Zbarsky discovered that the same-origin check in Thunderbird could be...

10CVSS8.6AI score0.03201EPSS
Exploits0
Ubuntu
Ubuntu
added 2008/12/18 12:17 a.m.58 views

USN-690-3: Firefox vulnerabilities

Several flaws were discovered in the browser engine. These problems could allow an attacker to crash the browser and possibly execute arbitrary code with user privileges. CVE-2008-5500 Boris Zbarsky discovered that the same-origin check in Firefox could be bypassed by utilizing XBL-bindings. An...

10CVSS8.6AI score0.03201EPSS
Exploits0
Ubuntu
Ubuntu
added 2008/12/18 12:8 a.m.75 views

USN-690-2: Firefox vulnerabilities

Several flaws were discovered in the browser engine. These problems could allow an attacker to crash the browser and possibly execute arbitrary code with user privileges. CVE-2008-5500 Boris Zbarsky discovered that the same-origin check in Firefox could be bypassed by utilizing XBL-bindings. An...

10CVSS8.3AI score0.03201EPSS
Exploits0
Ubuntu
Ubuntu
added 2008/11/26 12:42 a.m.69 views

USN-668-1: Thunderbird vulnerabilities

Georgi Guninski, Michal Zalewsk and Chris Evans discovered that the same-origin check in Thunderbird could be bypassed. If a user were tricked into opening a malicious website, an attacker could obtain private information from data stored in the images, or discover information about software on t...

10CVSS8.7AI score0.05865EPSS
Exploits1
OSV
OSV
added 2008/11/23 12:0 a.m.38 views

DSA-1669-1 xulrunner - several vulnerabilities

Bulletin has no description...

10CVSS9.8AI score0.43921EPSS
Exploits17
Tenable Nessus
Tenable Nessus
added 2008/11/20 12:0 a.m.254 views

Mozilla Thunderbird < 2.0.0.18 Multiple Vulnerabilities

The installed version of Thunderbird is earlier than 2.0.0.18. Such versions are potentially affected by the following security issues : - The canvas element can be used in conjunction with an HTTP redirect to bypass same-origin restrictions and gain access to the content in arbitrary images from...

10CVSS8.9AI score0.05865EPSS
Exploits1References17
Ubuntu
Ubuntu
added 2008/11/17 9:26 p.m.72 views

USN-667-1: Firefox and xulrunner vulnerabilities

Liu Die Yu discovered an information disclosure vulnerability in Firefox when using saved .url shortcut files. If a user were tricked into downloading a crafted .url file and a crafted HTML file, an attacker could steal information from the user's cache. CVE-2008-4582 Georgi Guninski, Michal...

10CVSS8.7AI score0.10187EPSS
Exploits2
Mozilla
Mozilla
added 2008/11/12 12:0 a.m.28 views

nsXMLHttpRequest::NotifyEventListeners() same-origin violation — Mozilla

Mozilla security researcher mozbugra4 reported that the same-origin check in nsXMLHttpRequest::NotifyEventListeners could be bypassed. This vulnerability could be used to execute JavaScript in the context of a different website...

7.5CVSS1.2AI score0.03029EPSS
Exploits0References2Affected Software3
Tenable Nessus
Tenable Nessus
added 2008/10/09 12:0 a.m.42 views

Debian DSA-1649-1 : iceweasel - several vulnerabilities

Several remote vulnerabilities have been discovered in the Iceweasel web browser, an unbranded version of the Firefox browser. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2008-0016 Justin Schuh, Tom Cross and Peter Williams discovered a buffer overfl...

10CVSS9.1AI score0.43921EPSS
Exploits15References29
OSV
OSV
added 2008/10/08 12:0 a.m.40 views

DSA-1649-1 iceweasel - several vulnerabilities

Bulletin has no description...

10CVSS9.8AI score0.43921EPSS
Exploits15
Ubuntu
Ubuntu
added 2008/09/26 2:32 a.m.89 views

USN-647-1: Thunderbird vulnerabilities

It was discovered that the same-origin check in Thunderbird could be bypassed. If a user had JavaScript enabled and were tricked into opening a malicious website, an attacker may be able to execute JavaScript in the context of a different website. CVE-2008-3835 Several problems were discovered in...

10CVSS8.7AI score0.07351EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2008/09/26 12:0 a.m.17 views

Mozilla Thunderbird < 2.0.0.17 Multiple Vulnerabilities

Binary data 4696.prm...

10CVSS7.3AI score0.43921EPSS
Exploits16References25
Ubuntu
Ubuntu
added 2008/09/25 6:29 p.m.64 views

USN-645-3: Firefox and xulrunner regression

USN-645-1 fixed vulnerabilities in Firefox and xulrunner. The upstream patches introduced a regression in the saved password handling. While password data was not lost, if a user had saved any passwords with non-ASCII characters, Firefox could not access the password database. This update fixes t...

8.8AI score
Exploits0References1
Ubuntu
Ubuntu
added 2008/09/24 11:39 a.m.69 views

USN-645-2: Firefox vulnerabilities

USN-645-1 fixed vulnerabilities in Firefox and xulrunner for Ubuntu 7.04, 7.10 and 8.04 LTS. This provides the corresponding update for Ubuntu 6.06 LTS. Original advisory details: Justin Schuh, Tom Cross and Peter Williams discovered errors in the Firefox URL parsing routines. If a user were...

10CVSS8.8AI score0.43921EPSS
Exploits15
Ubuntu
Ubuntu
added 2008/09/24 10:20 a.m.78 views

USN-645-1: Firefox and xulrunner vulnerabilities

Justin Schuh, Tom Cross and Peter Williams discovered errors in the Firefox URL parsing routines. If a user were tricked into opening a crafted hyperlink, an attacker could overflow a stack buffer and execute arbitrary code. CVE-2008-0016 It was discovered that the same-origin check in Firefox...

10CVSS8.9AI score0.43921EPSS
Exploits15
Tenable Nessus
Tenable Nessus
added 2008/09/24 12:0 a.m.31 views

Mozilla Firefox < 2.0.0.17 Multiple Vulnerabilities

Binary data 4692.prm...

10CVSS7.3AI score0.43921EPSS
Exploits15References25
Tenable Nessus
Tenable Nessus
added 2008/09/24 12:0 a.m.30 views

SeaMonkey < 1.1.12 Multiple Vulnerabilities

The installed version of SeaMonkey is affected by various security issues : - Using a specially crafted UTF-8 URL in a hyperlink, an attacker might be able to exploit a stack buffer overflow in the Mozilla URL parsing routes to execute arbitrary code. MFSA 2008-37 - It is possible to bypass the...

10CVSS7.5AI score0.43921EPSS
Exploits16References25
Tenable Nessus
Tenable Nessus
added 2008/09/24 12:0 a.m.40 views

Firefox < 2.0.0.17 Multiple Vulnerabilities

The installed version of Firefox is affected by various security issues : - Using a specially crafted UTF-8 URL in a hyperlink, an attacker might be able to exploit a stack buffer overflow in the Mozilla URL parsing routes to execute arbitrary code MFSA 2008-37. - It is possible to bypass the...

10CVSS7.7AI score0.43921EPSS
Exploits15References25
Rows per page
Query Builder