Lucene search
+L

9591 matches found

Tenable Nessus
Tenable Nessus
added 2011/12/15 12:0 a.m.26 views

SeaMonkey < 2.1 CSS Browser History Disclosure Vulnerability

The installed version of SeaMonkey is earlier than 2.1.0 and is affected by an information disclosure vulnerability. The JavaScript function 'getComputedStyle', and functions like it, can be used in a timing attack to determine if a browser has visited links on the page. C Tenable Network Securit...

4.3CVSS5.8AI score0.00702EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2011/12/15 12:0 a.m.35 views

Firefox < 4 CSS Browser History Disclosure Vulnerability

The installed version of Firefox 3 is potentially affected by an information disclosure vulnerability. The JavaScript function 'getComputedStyle', and functions like it, can be used in a timing attack to determine if a browser has visited links on the page. C Tenable Network Security, Inc...

4.3CVSS5.8AI score0.00702EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2011/12/13 12:0 a.m.30 views

SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 7550)

This update of openssl fixes a timing attack. This attack can be used to obtain the private key of a TLS server whenever ECDSA signatures are used. CVE-2011-1945: CVSS v2 Base Score: 4.3 important AV:N/AC:M/Au:N/C:P/I:N/A:N: Cryptographic Issues. CWE-310 %NASLMINLEVEL 70300 C Tenable Network...

2.6CVSS7.6AI score0.0343EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2011/12/09 12:0 a.m.22 views

Mozilla Firefox Cache Objects History Enumeration Weakness Vulnerability (Windows)

The host is installed with Mozilla Firefox and is prone to cache objects history enumeration weakness vulnerability. OpenVAS Vulnerability Test $Id: gbmozillafirefoxcacheobjenumweaknessvulnwin.nasl 7019 2017-08-29 11:51:27Z teissa $ Mozilla Firefox Cache Objects History Enumeration Weakness...

5CVSS9.5AI score0.01924EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2011/12/09 12:0 a.m.32 views

Mozilla Firefox Cache Objects History Enumeration Weakness Vulnerability - Mac OS X

Mozilla Firefox is prone to cache objects history enumeration weakness vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

5CVSS9.5AI score0.01924EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2011/12/09 12:0 a.m.26 views

Mozilla Firefox Cache Objects History Enumeration Weakness Vulnerability - Windows

Mozilla Firefox is prone to cache objects history enumeration weakness vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

5CVSS9.5AI score0.01924EPSS
Exploits1References2
NVD
NVD
added 2011/12/07 7:55 p.m.26 views

CVE-2010-5074

The layout engine in Mozilla Firefox before 4.0, Thunderbird before 3.3, and SeaMonkey before 2.1 executes different code for visited and unvisited links during the processing of Cascading Style Sheets CSS token sequences, which makes it easier for remote attackers to obtain sensitive information...

4.3CVSS6AI score0.00702EPSS
Exploits0References2
Prion
Prion
added 2011/12/07 7:55 p.m.18 views

Code injection

The layout engine in Mozilla Firefox before 4.0, Thunderbird before 3.3, and SeaMonkey before 2.1 executes different code for visited and unvisited links during the processing of Cascading Style Sheets CSS token sequences, which makes it easier for remote attackers to obtain sensitive information...

4.3CVSS6.6AI score0.00702EPSS
Exploits0References2Affected Software3
UbuntuCve
UbuntuCve
added 2011/12/07 7:55 p.m.25 views

CVE-2010-5074

The layout engine in Mozilla Firefox before 4.0, Thunderbird before 3.3, and SeaMonkey before 2.1 executes different code for visited and unvisited links during the processing of Cascading Style Sheets CSS token sequences, which makes it easier for remote attackers to obtain sensitive information...

4.3CVSS6AI score0.00702EPSS
Exploits0References1
CVE
CVE
added 2011/12/07 7:0 p.m.68 views

CVE-2010-5074

CVE-2010-5074 affects Mozilla Firefox (before 4.0), Thunderbird (before 3.3), and SeaMonkey (before 2.1). The vulnerability stems from the layout engine comparing visited vs. unvisited links while processing CSS token sequences, causing a timing-based information disclosure. An attacker could rem...

4.3CVSS8.9AI score0.00702EPSS
Exploits0References2Affected Software1
Debian
Debian
added 2011/11/14 4:20 a.m.37 views

[BSA-060] Security Update for openssl

Andres Salomon uploaded new packages for openssl which fixed the following security problems: CVE-2011-3210 Unsafe thread handling in ECDH ciphersuite allow denial of service attack. CVE-2011-1945 Timing attacks against ECDHEECDSA private keys. CVE-2011-0014 Remote denial of service attacks...

5CVSS6.9AI score0.09854EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2011/10/26 12:0 a.m.42 views

Google Chrome < 15.0.874.102 Multiple Vulnerabilities

Binary data 800887.prm...

7.5CVSS6.7AI score0.02097EPSS
Exploits0References18
NVD
NVD
added 2011/10/25 7:55 p.m.19 views

CVE-2011-3884

Google Chrome before 15.0.874.102 does not properly address timing issues during DOM traversal, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document...

6.8CVSS7.1AI score0.01227EPSS
Exploits0References4
Prion
Prion
added 2011/10/25 7:55 p.m.16 views

Design/Logic Flaw

Google Chrome before 15.0.874.102 does not properly address timing issues during DOM traversal, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document...

6.8CVSS7.6AI score0.01227EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2011/10/25 7:55 p.m.20 views

CVE-2011-3884

Google Chrome before 15.0.874.102 does not properly address timing issues during DOM traversal, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document...

6.8CVSS6AI score0.01227EPSS
Exploits0References1
CVE
CVE
added 2011/10/25 7:0 p.m.63 views

CVE-2011-3884

CVE-2011-3884 affects Google Chrome up to version before 15.0.874.102. The vulnerability stems from timing issues during DOM traversal, allowing a remote attacker to cause a denial of service or potentially invoke unspecified other impact via a crafted document. The connected documents do not pro...

6.8CVSS7.1AI score0.01227EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2011/10/25 7:0 p.m.41 views

CVE-2011-3884

Removed by vendor...

6.8CVSS6.7AI score0.01227EPSS
Exploits0
OpenVAS
OpenVAS
added 2011/09/30 12:0 a.m.39 views

Mandriva Update for openssl MDVSA-2011:137 (openssl)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS7.6AI score0.05012EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2011/09/29 12:0 a.m.36 views

Mandriva Linux Security Advisory : openssl (MDVSA-2011:136)

A vulnerability was discovered and corrected in openssl : The elliptic curve cryptography ECC subsystem in OpenSSL 1.0.0d and earlier, when the Elliptic Curve Digital Signature Algorithm ECDSA is used for the ECDHEECDSA cipher suite, does not properly implement curves over binary fields, which...

2.6CVSS7.5AI score0.0343EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2011/09/29 12:0 a.m.45 views

Mandriva Linux Security Advisory : openssl (MDVSA-2011:137)

Multiple vulnerabilities has been discovered and corrected in openssl : The elliptic curve cryptography ECC subsystem in OpenSSL 1.0.0d and earlier, when the Elliptic Curve Digital Signature Algorithm ECDSA is used for the ECDHEECDSA cipher suite, does not properly implement curves over binary...

5CVSS7.6AI score0.05012EPSS
Exploits1References3
Rows per page
Query Builder