Lucene search
K

744 matches found

RedHat Linux
RedHat Linux
added 2010/07/21 1:0 a.m.4 views

firefox: cross-domain information disclosure

Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, Thunderbird 3.0.x before 3.0.6 and 3.1.x before 3.1.1, and SeaMonkey before 2.0.6 permit cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which...

4.3CVSS7.4AI score0.01867EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2010/06/22 10:29 p.m.10 views

Mozilla Integer Overflow in XSLT Node Sorting

Integer overflow in the XSLT node sorting implementation in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a large text value for a node...

9.3CVSS7.8AI score0.11418EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2010/06/22 9:32 p.m.8 views

Mozilla Integer Overflow in XSLT Node Sorting

Integer overflow in the XSLT node sorting implementation in Mozilla Firefox 3.5.x before 3.5.10 and 3.6.x before 3.6.4, Thunderbird before 3.0.5, and SeaMonkey before 2.0.5 allows remote attackers to execute arbitrary code via a large text value for a node...

9.3CVSS7.8AI score0.11418EPSS
Exploits5References4
Zero Day Initiative
Zero Day Initiative
added 2010/06/08 12:0 a.m.57 views

Microsoft Internet Explorer Stylesheet Array Removal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required in that a target must visit a malicious page. The specific flaw exists within IE's support for the CStyleSheet object. When a style sheet...

10CVSS5.4AI score0.33056EPSS
Exploits2References1
seebug.org
seebug.org
added 2010/03/26 12:0 a.m.31 views

Mozilla Firefox缓存XUL样式表更改浏览器UI漏洞

BUGTRAQ ID: 38922 CVECAN ID: CVE-2010-0169 Firefox是一款流行的开源WEB浏览器。 远程XUL文档所使用的样式表可能会污染用户的XUL缓存,而浏览器Chrome之后会使用这个缓存确定用户界面的样式。恶意网站可以利用这个漏洞更改浏览器的样式属性,如字体大小和颜色。 Mozilla Firefox 3.6 Mozilla Firefox 3.5.x Mozilla Firefox 3.0.x Mozilla Thunderbird 3.0 Mozilla SeaMonkey 2.0 厂商补丁: Mozilla -------...

5CVSS0.4AI score0.01689EPSS
Exploits1
NVD
NVD
added 2010/03/25 9:0 p.m.19 views

CVE-2010-0169

The CSSLoaderImpl::DoSheetComplete function in layout/style/nsCSSLoader.cpp in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 changes the case of certain strings in a stylesheet before adding this stylesheet to...

5CVSS6.3AI score0.01689EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2010/03/25 9:0 p.m.30 views

CVE-2010-0169

The CSSLoaderImpl::DoSheetComplete function in layout/style/nsCSSLoader.cpp in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 changes the case of certain strings in a stylesheet before adding this stylesheet to...

5CVSS7.2AI score0.01689EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2010/03/23 12:0 a.m.32 views

Apple Saferi multiple vulnerabilities (Mar10)

The host is running Apple Saferi and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodapplesafarimultvuln.nasl 5394 2017-02-22 09:22:42Z teissa $ Apple Safari multiple vulnerabilities Mar10 Authors: Madhuri D Updated By: Antu Sanadi on 2010-18-2010 Added the CVE and...

7.6CVSS0.5AI score0.14708EPSS
Exploits6References6
Opera Security Advisories
Opera Security Advisories
added 2010/03/18 12:0 a.m.12 views

XSLT can be used to retrieve random contents of unrelated documents – Opera Security Advisories

XSLT can be used to retrieve random contents of unrelated documents – Opera Security Advisories OPCOM Team | March 18, 2010 Affected versions This vulnerability affects Opera 10.50. Severity Highly severe Description XSLT is normally subject to strict controls, preventing documents from separate...

5.7AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2010/03/17 12:38 p.m.4 views

firefox/thunderbird/seamonkey: browser chrome defacement via cached XUL stylesheets (MFSA 2010-14)

The CSSLoaderImpl::DoSheetComplete function in layout/style/nsCSSLoader.cpp in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 changes the case of certain strings in a stylesheet before adding this stylesheet to...

5CVSS7.4AI score0.01689EPSS
Exploits1References4
CVE
CVE
added 2010/03/12 9:0 p.m.69 views

CVE-2010-0051

Technical details about CVE-2010-0051 are not publicly provided in the supplied documents; monitor for updates.

4.3CVSS7.3AI score0.02796EPSS
Exploits0References23Affected Software1
Check Point Advisories
Check Point Advisories
added 2010/03/11 12:0 a.m.6 views

GNOME Project libxslt Library RC4 Key String Buffer Overflow (CVE-2008-2935)

XSLT is an XML language to define transformation for XML. XSLT is designed for use as part of XSL, which is a stylesheet language for XML. In addition to XSLT, XSL includes an XML vocabulary for specifying formatting. There exists a heap based buffer overflow vulnerability in RC4 libxslt...

7.5CVSS7.9AI score0.12789EPSS
Exploits2
OpenVAS
OpenVAS
added 2010/02/26 12:0 a.m.27 views

Microsoft Internet Explorer Information Disclosure Vulnerability (Feb 2010)

Microsoft Internet Explorer is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS5.1AI score0.04949EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2010/02/22 12:0 a.m.47 views

Firefox Multiple Vulnerabilities (Feb 2010) - Windows

Firefox Browser is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS8.6AI score0.01867EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2010/02/22 12:0 a.m.240 views

Firefox Multiple Vulnerabilities Feb-10 (Linux)

The host is installed with Firefox Browser and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodfirefoxmultvulnfeb10lin.nasl 5394 2017-02-22 09:22:42Z teissa $ Firefox Multiple Vulnerabilities Feb-10 Linux Authors: Rachana Shetty Copyright: Copyright c 2010 SecPod,...

4.3CVSS8.6AI score0.01867EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2010/02/22 12:0 a.m.250 views

Firefox Multiple Vulnerabilities Feb-10 (Windows)

The host is installed with Firefox Browser and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodfirefoxmultvulnfeb10win.nasl 5394 2017-02-22 09:22:42Z teissa $ Firefox Multiple Vulnerabilities Feb-10 Windows Authors: Rachana Shetty Copyright: Copyright c 2010 SecPod,...

4.3CVSS8.6AI score0.01867EPSS
Exploits3References2
Prion
Prion
added 2010/02/18 6:0 p.m.21 views

Design/Logic Flaw

Microsoft Internet Explorer permits cross-origin loading of CSS stylesheets even when the stylesheet download has an incorrect MIME type and the stylesheet document is malformed, which allows remote HTTP servers to obtain sensitive information via a crafted document...

4.3CVSS6.4AI score0.04949EPSS
Exploits1References1
NVD
NVD
added 2010/02/18 6:0 p.m.16 views

CVE-2010-0648

Mozilla Firefox, possibly before 3.6, allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets0.href property value, relate...

4.3CVSS6.6AI score0.01245EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2010/02/18 6:0 p.m.30 views

CVE-2010-0648

Mozilla Firefox, possibly before 3.6, allows remote attackers to discover a redirect's target URL, for the session of a specific user of a web site, by placing the site's URL in the HREF attribute of a stylesheet LINK element, and then reading the document.styleSheets0.href property value, relate...

4.3CVSS5.9AI score0.01245EPSS
Exploits1References2
CVE
CVE
added 2010/02/18 5:19 p.m.69 views

CVE-2010-0648

CVE-2010-0648 affects Mozilla Firefox (possibly before 3.6). The vulnerability allows a remote attacker to cause a user’s session to reveal a redirect’s target URL by placing the site’s URL in the HREF of a LINK element for a stylesheet and reading document.styleSheets[0].href, related to an IFRA...

4.3CVSS7.2AI score0.01245EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder