8303 matches found
CVE-2012-1926
CVE-2012-1926 affects the Opera web browser prior to 11.62. The issue arises when using the History API (history.pushState/history.replaceState) in conjunction with cross-domain frames, bypassing the Same Origin Policy and enabling unintended read access to history.state. The vulnerability is doc...
CVE-2011-3056
Google Chrome before 17.0.963.83 allows remote attackers to bypass the Same Origin Policy via vectors involving a "magic iframe."...
Design/Logic Flaw
Google Chrome before 17.0.963.83 allows remote attackers to bypass the Same Origin Policy via vectors involving a "magic iframe."...
CVE-2011-3056
Google Chrome before 17.0.963.83 allows remote attackers to bypass the Same Origin Policy via vectors involving a "magic iframe."...
CVE-2011-3056
Google Chrome before 17.0.963.83 allows remote attackers to bypass the Same Origin Policy via vectors involving a "magic iframe."...
CVE-2011-3056
Google Chrome before 17.0.963.83 allows remote attackers to bypass the Same Origin Policy via vectors involving a "magic iframe."...
CVE-2011-3056
CVE-2011-3056 affects Google Chrome prior to 17.0.963.83, where a cross-origin policy bypass is possible via a vector involving a “magic iframe.” The underlying issue is a Same Origin Policy bypass in the browser’s handling of iframes, enabling partial confidentiality/integrity exposure. The publ...
CVE-2011-3056
Removed by vendor...
Debian Security Advisory DSA 2420-1 (openjdk-6)
The remote host is missing an update to openjdk-6 announced via advisory DSA 2420-1. OpenVAS Vulnerability Test $Id: deb24201.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2420-1 openjdk-6 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Debian DSA-2420-1 : openjdk-6 - several vulnerabilities
Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform. - CVE-2011-3377 The IcedTea browser plugin included in the openjdk-6 package does not properly enforce the Same Origin Policy on web content served under a domain name which has a common suffix...
GLSA-201202-01 : Chromium: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201202-01 Chromium: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Chromium. Please review the CVE identifiers and release notes referenced below for details. Impact : A remote attacker could entice a us...
FreeBSD Ports: opera, linux-opera
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: opera, linux-opera
The remote host is missing an update to the system as announced in the referenced advisory. VID a4a809d8-25c8-11e1-b531-00215c6a37bb OpenVAS Vulnerability Test $ Description: Auto generated from VID a4a809d8-25c8-11e1-b531-00215c6a37bb Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
FreeBSD Ports: firefox
The remote host is missing an update to the system as announced in the referenced advisory. VID 6c8ad3e8-0a30-11e1-9580-4061862b8c22 OpenVAS Vulnerability Test $ Description: Auto generated from VID 6c8ad3e8-0a30-11e1-9580-4061862b8c22 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
CVE-2011-3956
The extension implementation in Google Chrome before 17.0.963.46 does not properly handle sandboxed origins, which might allow remote attackers to bypass the Same Origin Policy via a crafted extension...
CVE-2011-3956
The extension implementation in Google Chrome before 17.0.963.46 does not properly handle sandboxed origins, which might allow remote attackers to bypass the Same Origin Policy via a crafted extension...
Design/Logic Flaw
The extension implementation in Google Chrome before 17.0.963.46 does not properly handle sandboxed origins, which might allow remote attackers to bypass the Same Origin Policy via a crafted extension...
CVE-2011-3956
The extension implementation in Google Chrome before 17.0.963.46 does not properly handle sandboxed origins, which might allow remote attackers to bypass the Same Origin Policy via a crafted extension...
CVE-2011-3956
The connected documents confirm that CVE-2011-3956 is part of a Chromium/Chromium-derived browser vulnerability set (Chromium/Chrome family). The Gentoo GLSA entry ties CVE-2011-3956 to “Chromium: Multiple vulnerabilities” with impact including potential remote code execution, denial of service, ...
CVE-2011-3956
Removed by vendor...