CVE-2012-3689

WebKit in Apple Safari before 6.0 does not properly handle drag-and-drop events, which allows user-assisted remote attackers to bypass the Same Origin Policy via a crafted web site...

CVE-2012-3691

WebKit in Apple Safari before 6.0 does not properly handle Cascading Style Sheets CSS property values, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...

Design/Logic Flaw

WebKit in Apple Safari before 6.0 does not properly handle Cascading Style Sheets CSS property values, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...

Design/Logic Flaw

WebKit in Apple Safari before 6.0 does not properly handle drag-and-drop events, which allows user-assisted remote attackers to bypass the Same Origin Policy via a crafted web site...

CVE-2012-3691

WebKit in Apple Safari before 6.0 does not properly handle Cascading Style Sheets CSS property values, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...

CVE-2012-3689

WebKit in Apple Safari before 6.0 does not properly handle drag-and-drop events, which allows user-assisted remote attackers to bypass the Same Origin Policy via a crafted web site...

CVE-2012-3691

CVE-2012-3691 affects WebKit-based Safari on iOS (and Safari on macOS) where WebKit’s handling of CSS property values caused a cross-origin issue that could bypass the Same Origin Policy when visiting a crafted site. The vulnerability enables cross-origin information exposure due to improper orig...

CVE-2012-3689

CVE-2012-3689 affects WebKit in Apple Safari prior to 6.0. The issue arises from improper handling of drag-and-drop events, which can allow user‑assisted remote attackers to bypass the Same Origin Policy via a crafted web site. The available connected sources confirm the affected software (Apple ...

Firefox < 14.0 Multiple Vulnerabilities

The installed version of Firefox is earlier than 14.0 and thus, is potentially affected by the following security issues : - Several memory safety issues exist, some of which could potentially allow arbitrary code execution. CVE-2012-1948, CVE-2012-1949 - An error related to drag and drop can all...

SeaMonkey < 2.11.0 Multiple Vulnerabilities

The installed version of SeaMonkey is earlier than 2.11.0. Such versions are potentially affected by the following security issues : - Several memory safety issues exist, some of which could potentially allow arbitrary code execution. CVE-2012-1948, CVE-2012-1949 - Several memory safety issues...

Ubuntu: Security Advisory (USN-1510-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Cross site scripting

Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 do not consider the presence of same-compartment security wrappers SCSW during the cross-compartment wrapping of objects, which allows remo...

DEBIAN-CVE-2012-3371

The Nova scheduler in OpenStack Compute Nova Folsom 2012.2 and Essex 2012.1, when DifferentHostFilter or SameHostFilter is enabled, allows remote authenticated users to cause a denial of service excessive database lookup calls and server hang via a request with many repeated IDs in the...

PYSEC-2012-40

The Nova scheduler in OpenStack Compute Nova Folsom 2012.2 and Essex 2012.1, when DifferentHostFilter or SameHostFilter is enabled, allows remote authenticated users to cause a denial of service excessive database lookup calls and server hang via a request with many repeated IDs in the...

Mozilla: Same-compartment Security Wrappers can be bypassed (MFSA 2012-49)

Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 do not consider the presence of same-compartment security wrappers SCSW during the cross-compartment wrapping of objects, which allows remo...

Mozilla: Same-compartment Security Wrappers can be bypassed (MFSA 2012-49)

Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, Thunderbird 5.0 through 13.0, Thunderbird ESR 10.x before 10.0.6, and SeaMonkey before 2.11 do not consider the presence of same-compartment security wrappers SCSW during the cross-compartment wrapping of objects, which allows remo...

RedHat Update for icedtea-web RHSA-2011:1441-01

Check for the Version of icedtea-web OpenVAS Vulnerability Test RedHat Update for icedtea-web RHSA-2011:1441-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

RedHat Update for thunderbird RHSA-2012:0080-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

RedHat Update for icedtea-web RHSA-2011:1441-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Internet Explorer Same ID Property vulnerability

Added: 06/22/2012 CVE: CVE-2012-1875 BID: 53847 OSVDB: 82865 Background Internet Explorer is an HTML web browser which comes by default on Microsoft operating systems. Problem A vulnerability in Internet Explorer allows command execution when a user opens a specially crafted web page which causes...