5409 matches found
Ubuntu 8.04 LTS / 8.10 / 9.04 : firefox-3.0, xulrunner-1.9 vulnerabilities (USN-779-1)
Several flaws were discovered in the browser and JavaScript engines of Firefox. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program. CVE-2009-1392,...
Mozilla Foundation Security Advisory 2009-25
Mozilla Foundation Security Advisory 2009-25 Title: URL spoofing with invalid unicode characters Impact: Low Announced: June 11, 2009 Reporter: Pavel Cvrcek Products: Firefox, SeaMonkey Fixed in: Firefox 3.0.11 SeaMonkey 1.1.17 Description Mozilla add-on developer Pavel Cvrcek reported that certa...
CVE-2009-1834
Visual truncation vulnerability in netwerk/dns/src/nsIDNService.cpp in Mozilla Firefox before 3.0.11 and SeaMonkey before 1.1.17 allows remote attackers to spoof the location bar via an IDN with invalid Unicode characters that are displayed as whitespace, as demonstrated by the \u115A through...
Design/Logic Flaw
Visual truncation vulnerability in netwerk/dns/src/nsIDNService.cpp in Mozilla Firefox before 3.0.11 and SeaMonkey before 1.1.17 allows remote attackers to spoof the location bar via an IDN with invalid Unicode characters that are displayed as whitespace, as demonstrated by the \u115A through...
CVE-2009-1834
CVE-2009-1834 describes a visual truncation vulnerability in Mozilla Firefox (nsIDNService.cpp) affecting Firefox < 3.0.11 and SeaMonkey
CVE-2009-1392
The browser engine in Mozilla Firefox 3 before 3.0.11, Thunderbird before 2.0.0.22, and SeaMonkey before 1.1.17 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to 1...
CVE-2009-1834
Visual truncation vulnerability in netwerk/dns/src/nsIDNService.cpp in Mozilla Firefox before 3.0.11 and SeaMonkey before 1.1.17 allows remote attackers to spoof the location bar via an IDN with invalid Unicode characters that are displayed as whitespace, as demonstrated by the \u115A through...
Firefox URL spoofing with invalid unicode characters
Visual truncation vulnerability in netwerk/dns/src/nsIDNService.cpp in Mozilla Firefox before 3.0.11 and SeaMonkey before 1.1.17 allows remote attackers to spoof the location bar via an IDN with invalid Unicode characters that are displayed as whitespace, as demonstrated by the \u115A through...
URL spoofing with invalid unicode characters — Mozilla
Mozilla add-on developer Pavel Cvrcek reported that certain invalid unicode characters, when used as part of an IDN, are displayed as whitespace in the location bar. This whitespace could be used to force part of the URL out of view in the location bar. An attacker could use this vulnerability to...
Microsoft IIS Security Bypass Vulnerability (970483)
This host is missing a critical security update according to Microsoft Bulletin MS09-020. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Safari < 4.0 Multiple Vulnerabilities
The version of Safari installed on the remote Windows host is earlier than 4.0. It therefore is potentially affected by numerous issues in the following components : - CFNetwork - CoreGraphics - ImageIO - International Components for Unicode - libxml - Safari - Safari Windows Installer - WebKit C...
Computer Associates SiteMinder - Unicode Cross-Site Scripting Protection Security Bypass
Computer Associates SiteMinder - Unicode Cross-Site Scripting Protection Security Bypass source: https://www.securityfocus.com/bid/36088/info Computer Associates SiteMinder is prone to a security-bypass vulnerability because it fails to properly validate user-supplied input. An attacker can explo...
Ubuntu USN-764-1 (xulrunner-1.9)
The remote host is missing an update to xulrunner-1.9 announced via advisory USN-764-1. OpenVAS Vulnerability Test $Id: ubuntu7641.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7641.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-764-1 xulrunner-1.9 Author...
Ubuntu: Security Advisory (USN-720-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Solaris Update for International Components for Unicode 119810-05
Check for the Version of International Components for Unicode OpenVAS Vulnerability Test Solaris Update for International Components for Unicode 119810-05 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...
Solaris Update for International Components for Unicode 114678-15
Check for the Version of International Components for Unicode OpenVAS Vulnerability Test Solaris Update for International Components for Unicode 114678-15 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...
Solaris Update for International Components for Unicode 119811-05
Check for the Version of International Components for Unicode OpenVAS Vulnerability Test Solaris Update for International Components for Unicode 119811-05 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...
Solaris Update for International Components for Unicode 114677-15
Check for the Version of International Components for Unicode OpenVAS Vulnerability Test Solaris Update for International Components for Unicode 114677-15 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...
Solaris Update for International Components for Unicode 119810-05
Check for the Version of International Components for Unicode OpenVAS Vulnerability Test Solaris Update for International Components for Unicode 119810-05 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...
Solaris Update for International Components for Unicode 119811-05
Check for the Version of International Components for Unicode OpenVAS Vulnerability Test Solaris Update for International Components for Unicode 119811-05 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; y...