Lucene search
K

6987 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.29 views

Mozilla Firefox <= 2.0.0.1 (location.hostname) Cross-Domain Vulnerability

No description provided by source. !-- Mozilla Firefox 'location.hostname' Cross-Domain Vulnerability Software : Mozilla Firefox version 2.0.0.1 and prior CVE reference : CVE-2007-0981 Impact : Security Bypass Risk : Moderate Discovered by : Michal Zalewski http://lcamtuf.coredump.cx/ Advisory Da...

7.5CVSS9.5AI score0.12144EPSS
Exploits7
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Mozilla Multiple Products Server Refresh Header XSS

No description provided by source. source: http://www.securityfocus.com/bid/34656/info The Mozilla Foundation has released multiple security advisories specifying various vulnerabilities in Firefox, Thunderbird, and SeaMonkey. Attackers can exploit these issues to bypass same-origin restrictions,...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

MS IE 5/6 OBJECT Tag Same Origin Policy Violation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5196/info Microsoft Internet Explorer allows script code to violate the same origin policy through usage of the HTML OBJECT tag. Malicious script code may obtain a legitimate reference to an embedded object containing a w...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

Microsoft Internet Explorer 5.0.1 - Cached Content Cross Domain Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35200/info Microsoft Internet Explorer is prone to a cross-domain information-disclosure vulnerability because the application fails to properly enforce the same-origin policy. An attacker can exploit this issue to access...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Microsoft Internet Explorer 7/8 Beta 1 Frame Location Cross Domain Security Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29986/info Microsoft Internet Explorer is prone to a cross-domain scripting security-bypass vulnerability because the application fails to properly enforce the same-origin policy. An attacker can exploit this issue to...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.268 views

openSUSE Security Update : mozilla-js192 (openSUSE-SU-2011:1076-1)

Mozilla XULRunner was updated to version 1.9.2.23, fixing various bugs and security issues. MFSA 2011-36: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory...

10CVSS8.9AI score0.04379EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.33 views

openSUSE Security Update : MozillaFirefox (openSUSE-SU-2011:1079-1)

Mozilla Firefox was updated to version 3.6.23, fixing various bugs and security issues. MFSA 2011-36: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption...

10CVSS8.8AI score0.04379EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.39 views

openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2010:0430-2)

This update brings Mozilla Thunderbird to the 3.0.6 security release. It fixes following security bugs: MFSA 2010-34 / CVE-2010-1211: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showe...

9.8CVSS8.3AI score0.43382EPSS
Exploits17References10
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.32 views

openSUSE Security Update : seamonkey (seamonkey-5768)

Mozilla SeaMonkey was updated to 2.7 security update, fixing security issues and bugs. Following security bugs were fixed : MFSA 2012-01: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs...

10CVSS8.6AI score0.36511EPSS
Exploits11References6
Tenable Nessus
Tenable Nessus
added 2014/05/21 12:0 a.m.21 views

Adobe AIR < 13.0.0.111 Multiple Vulnerabilities (APSB14-14)

Binary data 8261.prm...

10CVSS6.7AI score0.08486EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2014/05/20 12:0 a.m.31 views

Flash Player < 13.0.0.214 Multiple Vulnerabilities (APSB14-14)

Binary data 8254.prm...

10CVSS6.7AI score0.08486EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2014/05/19 12:0 a.m.26 views

SuSE 11.3 Security Update : flash-player (SAT Patch Number 9259)

Adobe flash-player was updated to version 11.2.202.359 to resolve several security issues : - Remote attackers could execute arbitrary code and bypass a sandbox protection mechanism via unspecified vectors. CVE-2014-0510 - Remote attackers could bypass the Same Origin Policy via unspecified...

10CVSS6AI score0.08486EPSS
Exploits2References13
OSV
OSV
added 2014/05/14 10:15 p.m.12 views

MGASA-2014-0220 Updated flash-player-plugin packages fix multiple vulnerabilities

Adobe Flash Player 11.2.202.359 contains fixes to critical security vulnerabilities found in earlier versions that could potentially allow an attacker to take control of the affected system. This update resolves a use-after-free vulnerability that could result in arbitrary code execution...

10CVSS10AI score0.08486EPSS
Exploits2References3
Mageia
Mageia
added 2014/05/14 10:15 p.m.35 views

Updated flash-player-plugin packages fix multiple vulnerabilities

Adobe Flash Player 11.2.202.359 contains fixes to critical security vulnerabilities found in earlier versions that could potentially allow an attacker to take control of the affected system. This update resolves a use-after-free vulnerability that could result in arbitrary code execution...

10CVSS7.4AI score0.08486EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2014/05/14 5:46 p.m.2 views

flash-plugin: same origin policy bypass (APSB14-14)

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow remote attackers to bypass the Same Origin Policy via unspecified vectors...

7.5CVSS5.9AI score0.03912EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/05/14 5:46 p.m.39 views

Critical: Red Hat Security Advisory: flash-plugin security update

An updated Adobe Flash Player package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having Critical security impact. Common Vulnerability Scoring System CVSS base scores, which...

10CVSS5.9AI score0.08486EPSS
Exploits2References5
NVD
NVD
added 2014/05/14 11:13 a.m.17 views

CVE-2014-0516

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow remote attackers to bypass the Same Origin Policy via unspecified vectors...

7.5CVSS6.5AI score0.03912EPSS
Exploits0References5
Prion
Prion
added 2014/05/14 11:13 a.m.13 views

Design/Logic Flaw

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow remote attackers to bypass the Same Origin Policy via unspecified vectors...

7.5CVSS7.1AI score0.03912EPSS
Exploits0References5Affected Software2
UbuntuCve
UbuntuCve
added 2014/05/14 11:13 a.m.19 views

CVE-2014-0516

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow remote attackers to bypass the Same Origin Policy via unspecified vectors...

7.5CVSS5.9AI score0.03912EPSS
Exploits0References2
OSV
OSV
added 2014/05/14 11:13 a.m.2 views

UBUNTU-CVE-2014-0516

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow remote attackers to bypass the Same Origin Policy via unspecified vectors...

7.5CVSS5.8AI score0.03912EPSS
Exploits0References3
Rows per page
Query Builder