Lucene search
K

6987 matches found

CVE
CVE
added 2014/03/19 10:0 a.m.66 views

CVE-2014-1501

Mozilla Firefox for Android is affected (before 28.0). The issue allows remote attackers to bypass the Same Origin Policy and access arbitrary file: URLs via the Open Link in New Tab action, enabling local file access from web content. The root cause is a Same Origin Policy bypass in the Android ...

5.8CVSS8.9AI score0.01568EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2014/03/19 10:0 a.m.123 views

CVE-2014-1502

CVE-2014-1502 affects Mozilla Firefox (pre-28.0) and SeaMonkey (pre-2.25). The vulnerability arises in WebGL functions WebGL.compressedTexImage2D and WebGL.compressedTexSubImage2D, enabling remote attackers to bypass Same Origin Policy and render content from a different domain via unspecified ve...

6.8CVSS9.1AI score0.01147EPSS
Exploits0References8Affected Software2
Cvelist
Cvelist
added 2014/03/19 10:0 a.m.29 views

CVE-2014-1502

The 1 WebGL.compressedTexImage2D and 2 WebGL.compressedTexSubImage2D functions in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to bypass the Same Origin Policy and render content in a different domain via unspecified vectors...

9.3AI score0.01147EPSS
Exploits0References8
CVE
CVE
added 2014/03/19 10:0 a.m.177 views

CVE-2014-1505

CVE-2014-1505 affects Mozilla Firefox (and related Mozilla components) where SVG filter operations in feDisplacementMap could leak displacement-correlation data and potentially bypass Same Origin Policy via a timing attack, enabling partial information disclosure from a different domain. Affected...

7.5CVSS8.5AI score0.04002EPSS
Exploits3References14Affected Software3
RedHat Linux
RedHat Linux
added 2014/03/18 8:34 p.m.5 views

Mozilla: SVG filters information disclosure through feDisplacementMap (MFSA 2014-28)

The SVG filter implementation in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to obtain sensitive displacement-correlation information, and possibly bypass the Same Origin Policy and read text from a differen...

7.5CVSS6.9AI score0.04002EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2014/03/18 8:34 p.m.3 views

Mozilla: Information disclosure through polygon rendering in MathML (MFSA 2014-26)

The libxul.so!gfxContext::Polygon function in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to obtain sensitive information from process memory, cause a denial of service out-of-bounds read and application...

9.1CVSS7AI score0.0427EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2014/03/18 12:0 a.m.33 views

CVE-2014-1508

The libxul.so!gfxContext::Polygon function in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to obtain sensitive information from process memory, cause a denial of service out-of-bounds read and application...

9.1CVSS6.9AI score0.0427EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2014/03/18 12:0 a.m.48 views

CVE-2014-1505

The SVG filter implementation in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to obtain sensitive displacement-correlation information, and possibly bypass the Same Origin Policy and read text from a differen...

7.5CVSS6.9AI score0.04002EPSS
Exploits3References4
UbuntuCve
UbuntuCve
added 2014/03/18 12:0 a.m.37 views

CVE-2014-1502

The 1 WebGL.compressedTexImage2D and 2 WebGL.compressedTexSubImage2D functions in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to bypass the Same Origin Policy and render content in a different domain via unspecified vectors...

6.8CVSS6.9AI score0.01147EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/03/18 12:0 a.m.26 views

SuSE 11.3 Security Update : flash-player (SAT Patch Number 9012)

Adobe Flash Player was updated to version 11.2.202.346 to fix security issues : - A vulnerability that could be used to bypass the same origin policy was fixed. CVE-2014-0503 - A vulnerability that could be used to read the contents of the clipboard was fixed. More information can be found on:...

6.4CVSS5.8AI score0.04293EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2014/03/14 9:4 p.m.30 views

flash-player to 11.2.202.346 (important)

Adobe Flash Player was updated to version 11.2.202.346 to fix security issues: CVE-2014-0503: A vulnerability that could be used to bypass the same origin policy was fixed. CVE-2014-0504: A vulnerability that could be used to read the contents of the clipboard was fixed. More information can be...

10CVSS0.1AI score0.09516EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2014/03/13 12:0 a.m.37 views

RHEL 5 / 6 : flash-plugin (RHSA-2014:0289)

An updated Adobe Flash Player package that fixes two security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

6.4CVSS5.9AI score0.04293EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2014/03/12 6:18 p.m.2 views

flash-plugin: same origin policy bypass (APSB14-08)

Adobe Flash Player before 11.7.700.272 and 11.8.x through 12.0.x before 12.0.0.77 on Windows and OS X, and before 11.2.202.346 on Linux, allows remote attackers to bypass the Same Origin Policy via unspecified vectors...

6.4CVSS6.2AI score0.04293EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/03/12 6:18 p.m.37 views

Moderate: Red Hat Security Advisory: flash-plugin security update

An updated Adobe Flash Player package that fixes two security issues is now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

6.4CVSS6.1AI score0.04293EPSS
Exploits0References4
Mageia
Mageia
added 2014/03/12 4:22 p.m.35 views

Updated flash-player-plugin packages fix security vulnerabilities

Adobe Flash Player 11.2.202.346 contains fixes to important vulnerabilities found in earlier versions that could allow a remote attacker to bypass security restrictions or to access sensitive information. This update resolves a vulnerability that could be used to bypass the same origin policy...

6.4CVSS6.2AI score0.04293EPSS
Exploits0References2
NVD
NVD
added 2014/03/12 5:15 a.m.16 views

CVE-2014-0503

Adobe Flash Player before 11.7.700.272 and 11.8.x through 12.0.x before 12.0.0.77 on Windows and OS X, and before 11.2.202.346 on Linux, allows remote attackers to bypass the Same Origin Policy via unspecified vectors...

6.4CVSS6.6AI score0.04293EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2014/03/12 5:15 a.m.33 views

CVE-2014-0503

Adobe Flash Player before 11.7.700.272 and 11.8.x through 12.0.x before 12.0.0.77 on Windows and OS X, and before 11.2.202.346 on Linux, allows remote attackers to bypass the Same Origin Policy via unspecified vectors...

6.4CVSS6.1AI score0.04293EPSS
Exploits0References2
Prion
Prion
added 2014/03/12 5:15 a.m.23 views

Design/Logic Flaw

Adobe Flash Player before 11.7.700.272 and 11.8.x through 12.0.x before 12.0.0.77 on Windows and OS X, and before 11.2.202.346 on Linux, allows remote attackers to bypass the Same Origin Policy via unspecified vectors...

6.4CVSS7.2AI score0.04293EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2014/03/12 1:0 a.m.26 views

CVE-2014-0503

Adobe Flash Player before 11.7.700.272 and 11.8.x through 12.0.x before 12.0.0.77 on Windows and OS X, and before 11.2.202.346 on Linux, allows remote attackers to bypass the Same Origin Policy via unspecified vectors...

6.5AI score0.04293EPSS
Exploits0References5
CVE
CVE
added 2014/03/12 1:0 a.m.77 views

CVE-2014-0503

CVE-2014-0503 affects Adobe Flash Player; versions prior to 11.7.700.272 (and 11.8.x through 12.0.x before 12.0.0.77) on Windows/macOS and pre-11.2.202.346 on Linux are vulnerable to bypassing the Same Origin Policy via unspecified vectors. Affected users should upgrade to Flash Player 11.2.202.3...

6.4CVSS6.6AI score0.04293EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder