CVE-2016-5224

Removed by vendor...

CVE-2016-5206

Removed by vendor...

CVE-2016-5224

CVE-2016-5224 affects Chromium/Blink SVG handling. The Debian advisory and related feeds describe a same-origin policy bypass in the SVG component of the Chromium browser, with historical references to a timing-attack-derived bypass in denormalized floating-point SVG filters (Chrome prior to 55.0...

XSSI: a not famous but the impact of a wide range of Web vulnerabilities-vulnerability warning-the black bar safety net

Find a specific category of vulnerability two key components: vulnerability awareness and find the vulnerability of the difficulty. Cross-site scripting containsXSSIvulnerability in the fact of a common standard i.e.: OWASP TOP 10 and is not mentioned. In addition and there is no disclosure of th...

Privilege escalation

Microsoft Edge allows remote attackers to bypass the Same Origin Policy via vectors involving the about:blank URL and data: URLs, aka "Microsoft Edge Elevation of Privilege Vulnerability."...

CVE-2017-0002

Microsoft Edge allows remote attackers to bypass the Same Origin Policy via vectors involving the about:blank URL and data: URLs, aka "Microsoft Edge Elevation of Privilege Vulnerability."...

CVE-2017-0002

Microsoft Edge: CVE-2017-0002 is a Same Origin Policy bypass in Edge involving about:blank and data: URLs. A remote attacker could entice a user to a malicious page to bypass origin checks and disclose information across domains, effectively elevating access within affected Edge versions. Multipl...

CVE-2017-0002

Microsoft Edge allows remote attackers to bypass the Same Origin Policy via vectors involving the about:blank URL and data: URLs, aka "Microsoft Edge Elevation of Privilege Vulnerability."...

KLA10940 Privilege escalation vulnerability in Microsoft Edge

An elevation of privilege vulnerability was found in Microsoft Edge. By exploiting this vulnerability malicious users can bypass the Same Origin Policy and gain privileges. This vulnerability can be exploited remotely via vectors involving data: URLs and about:blank URL. Original advisories...

Authentication Bypass

cipher.googlepam is vulnerable to authentication bypass because it uses the same cache key for all users. When one user logs in successfully, others could not log in using their own passwords. But the first user could now use his password to log in as anyone else...

Dell SonicWALL Global Management System GMS 8.1 Adobe Flex SOP Bypass Vulnerability

Dell SonicWALL GMS versions 8.1 and below are compiled with a vulnerable version of Adobe Flex SDK allowing for same-origin request forgery and cross-site content hijacking i? Dell SonicWALL Global Management System GMS 8.1 Adobe Flex SOP Bypass Vendor: Dell Inc. Product web page:...

CVE-2016-7599

An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain...

UBUNTU-CVE-2016-7599

An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain...

Dell SonicWALL Global Management System (GMS) 8.1 Adobe Flex SOP Bypass

Summary Provide your organization, distributed enterprise or managed service offering with an intuitive, powerful way to rapidly deploy and centrally manage SonicWall solutions, with SonicWall GMS. Get more value from your firewall, secure remote access, anti-spam, and backup and recovery solutio...

CVE-2016-7281

The Web Workers implementation in Microsoft Internet Explorer 10 and 11 and Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Microsoft Browser Security Feature Bypass Vulnerability."...

CVE-2016-7281

The Web Workers implementation in Microsoft Internet Explorer 10 and 11 and Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Microsoft Browser Security Feature Bypass Vulnerability."...

Security feature bypass

The Web Workers implementation in Microsoft Internet Explorer 10 and 11 and Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Microsoft Browser Security Feature Bypass Vulnerability."...

CVE-2016-7281

The Web Workers implementation in Microsoft Internet Explorer 10 and 11 and Microsoft Edge allows remote attackers to bypass the Same Origin Policy via unspecified vectors, aka "Microsoft Browser Security Feature Bypass Vulnerability."...

CVE-2016-7281

CVE-2016-7281 affects Microsoft Internet Explorer (IE10/IE11) and Microsoft Edge. The Web Workers implementation allows remote attackers to bypass the Same Origin Policy via unspecified vectors, enabling cross-origin access that should be restricted. Root cause per the description is a security f...

Debian DLA-752-1 : icedove security update

Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail client: Multiple memory safety errors, same-origin policy bypass issues, integer overflows, buffer overflows and use-after-frees may lead to the execution of arbitrary code or denial of service...