Lucene search
K

19 matches found

RedHat Linux
RedHat Linux
added 2021/03/25 1:41 p.m.3 views

Mozilla: Malicious extensions could have spoofed popup information

The Mozilla Foundation Security Advisory describes this issue as: A malicious extension could have opened a popup window lacking an address bar. The title of the popup lacking an address bar should not be fully controllable, but in this situation was. This could have been used to spoof a website...

6.5CVSS7.3AI score0.01113EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/04/09 12:0 a.m.46 views

openSUSE Security Update : MozillaFirefox / MozillaThunderbird / mozilla-nspr (openSUSE-2015-290)

Mozilla Firefox and Thunderbird were updated to fix several important vulnerabilities. Mozilla Firefox was updated to 37.0.1. Mozilla Thunderbird was updated to 31.6.0. mozilla-nspr was updated to 4.10.8 as a dependency. The following vulnerabilities were fixed in Mozilla Firefox : - Miscellaneou...

7.5CVSS8.2AI score0.67465EPSS
Exploits4References28
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

ISC BIND 8 Remote Cache Poisoning Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/25459/info BIND 8 is prone to a remote cache-poisoning vulnerability because of weaknesses in its random-number generator. An attacker may leverage this issue to manipulate cache data, potentially facilitating...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2013/05/09 12:0 a.m.12 views

Microsoft Windows DNS Insufficient Socket Entropy (MS08-037) - High Confidence (CVE-2008-1447)

There exists a DNS Cache Poisoning vulnerability in Microsoft DNS servers and clients. A remote attacker can exploit this vulnerability to poison the DNS cache by sending malicious responses to DNS requests, thereby redirecting Internet traffic to illegitimate sites. In a successful attack case,...

5CVSS6.6AI score0.95182EPSS
Exploits20
Check Point Advisories
Check Point Advisories
added 2011/11/01 12:0 a.m.14 views

Microsoft Windows DNS Insufficient Socket Entropy (MS08-037; CVE-2008-1447)

There exists a DNS Cache Poisoning vulnerability in Microsoft DNS servers and clients. A remote attacker can exploit this vulnerability to poison the DNS cache by sending malicious responses to DNS requests, thereby redirecting Internet traffic to illegitimate sites. In a successful attack case,...

5CVSS6.6AI score0.95182EPSS
Exploits20
OpenVAS
OpenVAS
added 2010/09/10 12:0 a.m.19 views

Apache Traffic Server Remote DNS Cache Poisoning Vulnerability

Apache Traffic Server is prone to a remote DNS cache-poisoning vulnerability. An attacker can exploit this issue to divert data from a legitimate site to an attacker-specified site. Successful exploits will allow the attacker to manipulate cache data, potentially facilitating man-in-the-middle,...

4.3CVSS0.6AI score0.02612EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2010/09/10 12:0 a.m.36 views

Apache Traffic Server Remote DNS Cache Poisoning Vulnerability

Apache Traffic Server is prone to a remote DNS cache-poisoning vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

4.3CVSS6.7AI score0.02612EPSS
Exploits0References3
Exploit DB
Exploit DB
added 2009/06/24 12:0 a.m.23 views

Mozilla Firefox 3.5.1 - Error Page Address Bar URI Spoofing

source: https://www.securityfocus.com/bid/35803/info Mozilla Firefox is affected by a URI-spoofing vulnerability. An attacker may leverage this issue by inserting arbitrary content to spoof a URI presented to an unsuspecting user. This may lead to a false sense of trust because the victim may be...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/04/22 12:0 a.m.28 views

GLSA-200804-22 : PowerDNS Recursor: DNS Cache Poisoning

The remote host is affected by the vulnerability described in GLSA-200804-22 PowerDNS Recursor: DNS Cache Poisoning Amit Klein of Trusteer reported that insufficient randomness is used to calculate the TRXID values and the UDP source port numbers CVE-2008-1637. Thomas Biege of SUSE pointed out th...

6.8CVSS5.7AI score0.03964EPSS
Exploits1References3
Gentoo Linux
Gentoo Linux
added 2008/04/18 12:0 a.m.49 views

PowerDNS Recursor: DNS Cache Poisoning

Background The PowerDNS Recursor is an advanced recursing nameserver. Description Amit Klein of Trusteer reported that insufficient randomness is used to calculate the TRXID values and the UDP source port numbers CVE-2008-1637. Thomas Biege of SUSE pointed out that a prior fix to resolve this iss...

6.8CVSS6.3AI score0.03964EPSS
Exploits1
exploitpack
exploitpack
added 2007/08/27 12:0 a.m.13 views

ISC BIND 8 - Remote Cache Poisoning (2)

ISC BIND 8 - Remote Cache Poisoning 2 source: https://www.securityfocus.com/bid/25459/info BIND 8 is prone to a remote cache-poisoning vulnerability because of weaknesses in its random-number generator. An attacker may leverage this issue to manipulate cache data, potentially facilitating...

7.5AI score
Exploits0
exploitpack
exploitpack
added 2007/08/27 12:0 a.m.25 views

ISC BIND 8 - Remote Cache Poisoning (1)

ISC BIND 8 - Remote Cache Poisoning 1 source: https://www.securityfocus.com/bid/25459/info BIND 8 is prone to a remote cache-poisoning vulnerability because of weaknesses in its random-number generator. An attacker may leverage this issue to manipulate cache data, potentially facilitating...

7.5AI score
Exploits0
Exploit DB
Exploit DB
added 2007/08/27 12:0 a.m.36 views

ISC BIND 8 - Remote Cache Poisoning (1)

source: https://www.securityfocus.com/bid/25459/info BIND 8 is prone to a remote cache-poisoning vulnerability because of weaknesses in its random-number generator. An attacker may leverage this issue to manipulate cache data, potentially facilitating man-in-the-middle, site-impersonation, or...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/04/06 12:0 a.m.20 views

GLSA-200504-03 : Dnsmasq: Poisoning and Denial of Service vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200504-03 Dnsmasq: Poisoning and Denial of Service vulnerabilities Dnsmasq does not properly detect that DNS replies received do not correspond to any DNS query that was sent. Rob Holland of the Gentoo Linux Security Audit team al...

5.9AI score
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2005/04/04 12:0 a.m.17 views

Dnsmasq: Poisoning and Denial of Service vulnerabilities

Background Dnsmasq is a lightweight and easily-configurable DNS forwarder and DHCP server. Description Dnsmasq does not properly detect that DNS replies received do not correspond to any DNS query that was sent. Rob Holland of the Gentoo Linux Security Audit team also discovered two off-by-one...

1.6AI score
Exploits0
exploitpack
exploitpack
added 2004/06/15 12:0 a.m.11 views

Symantec Enterprise Firewall 7.08.0 - DNSD DNS Cache Poisoning

Symantec Enterprise Firewall 7.08.0 - DNSD DNS Cache Poisoning source: https://www.securityfocus.com/bid/10557/info It is reported that dnsd is prone to a cache poisoning vulnerability. Dnsd does not ensure that the data returned from a remote DNS server contains related information about the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/06/15 12:0 a.m.27 views

Symantec Enterprise Firewall 7.0/8.0 - DNSD DNS Cache Poisoning

source: https://www.securityfocus.com/bid/10557/info It is reported that dnsd is prone to a cache poisoning vulnerability. Dnsd does not ensure that the data returned from a remote DNS server contains related information about the requested records. An attacker could exploit this vulnerability to...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2004/06/10 12:0 a.m.13 views

Microsoft Internet Explorer 5.0.1 Opera 7.51 - URI Obfuscation

Microsoft Internet Explorer 5.0.1 Opera 7.51 - URI Obfuscation source: https://www.securityfocus.com/bid/10517/info A weakness is reported in Microsoft Internet Explorer and Opera allowing an attacker to obfuscate the URI of a link. This could facilitate the impersonation of legitimate web sites ...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/06/10 12:0 a.m.21 views

Microsoft Internet Explorer 5.0.1 / Opera 7.51 - URI Obfuscation

source: https://www.securityfocus.com/bid/10517/info A weakness is reported in Microsoft Internet Explorer and Opera allowing an attacker to obfuscate the URI of a link. This could facilitate the impersonation of legitimate web sites in order to steal sensitive information from unsuspecting users...

7.4AI score
Exploits0
Rows per page
Query Builder