6967 matches found
UBUNTU-CVE-2014-4465
WebKit in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1 allows remote attackers to bypass the Same Origin Policy via crafted Cascading Style Sheets CSS token sequences within an SVG file in the SRC attribute of an IMG element...
UBUNTU-CVE-2014-0580
Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows remote attackers to bypass the Same Origin Policy via unspecified vectors...
CVE-2014-8453
CVE-2014-8453 affects Cisco? (no) Actually affected product is Adobe Reader/Acrobat. The connected documents confirm that Adobe Reader/Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X are vulnerable. The underlying issue is a same-origin policy bypass, with exploit vectors ...
CVE-2014-8453
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow remote attackers to bypass the Same Origin Policy via unspecified vectors...
CVE-2014-0580
Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows remote attackers to bypass the Same Origin Policy via unspecified vectors...
CVE-2014-0580
CVE-2014-0580 affects Adobe Flash Player prior to 13.0.0.259 and 14.x up to 16.x before 16.0.0.235 on Windows/OS X, and prior to 11.2.202.425 on Linux. The vulnerability allows remote attackers to bypass the Same Origin Policy via unspecified vectors. The available connected sources identify upda...
CVE-2014-4465
CVE-2014-4465 affects WebKit in Apple Safari: CSS tokens within an SVG in the SRC attribute of an IMG element can bypass Same Origin Policy. Affected products/versions include Safari/macOS WebKit builds prior to 6.2.1, 7.x prior to 7.1.1, and 8.x prior to 8.0.1. The issue enables cross-origin CSS...
CVE-2014-4465
WebKit in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1 allows remote attackers to bypass the Same Origin Policy via crafted Cascading Style Sheets CSS token sequences within an SVG file in the SRC attribute of an IMG element...
flash-plugin: Same-Origin-Policy bypass flaw (APSB14-27)
Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before 16.0.0.235 on Windows and OS X and before 11.2.202.425 on Linux allows remote attackers to bypass the Same Origin Policy via unspecified vectors...
Critical: Red Hat Security Advisory: flash-plugin security update
An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. Red Hat Product Security has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detail...
Adobe Reader < 10.1.13 / 11.0.10 Multiple Vulnerabilities (APSB14-28) (Mac OS X)
The version of Adobe Reader installed on the remote host is a version prior to 10.1.13 / 11.0.10. It is, therefore, affected by the following vulnerabilities : - Memory corruption errors exist that allow arbitrary code execution. CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8456,...
Adobe Reader < 10.1.13 / 11.0.10 Multiple Vulnerabilities (APSB14-28)
The version of Adobe Reader installed on the remote host is a version prior to 10.1.13 / 11.0.10. It is, therefore, affected by the following vulnerabilities : - Memory corruption errors exist that allow arbitrary code execution. CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8456,...
Adobe Acrobat < 10.1.13 / 11.0.10 Multiple Vulnerabilities (APSB14-28) (Mac OS X)
The version of Adobe Acrobat installed on the remote host is a version prior to 10.1.13 / 11.0.10. It is, therefore, affected by the following vulnerabilities : - Memory corruption errors exist that allow arbitrary code execution. CVE-2014-8445, CVE-2014-8446, CVE-2014-8447, CVE-2014-8456,...
MGASA-2014-0521 Updated flash-player-plugin packages fix multiple security vulnerabilities
Adobe Flash Player 11.2.202.425 contains fixes to critical security vulnerabilities found in earlier versions that could potentially allow an attacker to take control of the affected system. This update resolves memory corruption vulnerabilities that could lead to code execution CVE-2014-0587,...
Updated flash-player-plugin packages fix multiple security vulnerabilities
Adobe Flash Player 11.2.202.425 contains fixes to critical security vulnerabilities found in earlier versions that could potentially allow an attacker to take control of the affected system. This update resolves memory corruption vulnerabilities that could lead to code execution CVE-2014-0587,...
Flash Player For Mac <= 15.0.0.239 Multiple Vulnerabilities (APSB14-27)
According to its version, the installation of Adobe Flash Player installed on the remote Mac OS X host is equal or prior to 15.0.0.239. It is, therefore, affected by the following vulnerabilities : - A security bypass vulnerability that allows an attacker to bypass the same-origin policy...
Google Chrome < 39.0.2171.95 Multiple Vulnerabilities (Mac OS X)
The version of Google Chrome installed on the remote Mac OS X host is a version prior to 39.0.2171.95. It is, therefore, affected by the following vulnerabilities : - A security bypass vulnerability that allows an attacker to bypass the same-origin policy. CVE-2014-0580 - Multiple memory corrupti...
Flash Player <= 15.0.0.239 Multiple Vulnerabilities (APSB14-27)
According to its version, the installation of Adobe Flash Player installed on the remote Windows host is equal or prior to 15.0.0.239. It is, therefore, affected by the following vulnerabilities : - A security bypass vulnerability that allows an attacker to bypass the same-origin policy...
Scientific Linux Security Update : firefox on SL5.x, SL6.x, SL7.x i386/x86_64 (20141202)
Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with the privileges of the user running Firefox. CVE-2014-1587, CVE-2014-1590, CVE-2014-1592, CVE-2014-1593 A flaw was...
Scientific Linux Security Update : thunderbird on SL6.x i386/x86_64 (20141202)
Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. CVE-2014-1587, CVE-2014-1590, CVE-2014-1592, CVE-2014-1593 A...