7972 matches found
Mozilla/Firefox user interface spoofing
The remote host is using Mozilla and/or Firefox, an alternative web browser. This web browser supports the XUL XML User Interface Language, a language designed to manipulate the user interface of the browser itself. Since XUL gives the full control of the browser GUI to the visited websites, an...
Symantec Veritas NetBackup network backup system buffer overflow
Java User Interface bpjava-msvc daemon TCP/13722 buffer overflow on COMMANDLOGONTOMSERVER request...
Immunity Canvas: NETBACKUP_JAVAUI
Name| netbackupjavaui ---|--- CVE| CVE-2005-2715 Exploit Pack| CANVAS Description| VERITAS NetBackup Java User Interface Format String Notes| CVE Name: CVE-2005-2715 VENDOR: Symantec VersionsAffected: Repeatability: References: http://www.zerodayinitiative.com/advisories/ZDI-05-001.html CVE Url:...
security flaw
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks...
security flaw
Firefox before 1.0.7 and Mozilla Suite before 1.7.12 allows remote attackers to spawn windows without user interface components such as the address and status bar, which could be used to conduct spoofing or phishing attacks...
CVE-2005-2260
The browser user interface in Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 does not properly distinguish between user-generated events and untrusted synthetic events, which makes it easier for remote attackers to perform dangerous actions that normally could only be...
CVE-2005-2260
The browser user interface in Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 does not properly distinguish between user-generated events and untrusted synthetic events, which makes it easier for remote attackers to perform dangerous actions that normally could only be...
FreeBSD : Mozilla / Firefox user interface spoofing vulnerability (730db824-e216-11d8-9b0a-000347a4fa7d)
The Mozilla project's family of browsers contain a design flaw that can allow a website to spoof almost perfectly any part of the Mozilla user interface, including spoofing websites for phishing or internal elements such as the 'Master Password' dialog box. This achieved by manipulating 'chrome'...
Moderate: Red Hat Security Advisory: lesstif security update
Updated lesstif packages that fix flaws in the Xpm library are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having Moderate security impact by the Red Hat Security Response Team. LessTif provides libraries which implement the Motif industry standard graphical user...
Moderate: Red Hat Security Advisory: openmotif security update
Updated openmotif packages that fix a flaw in the Xpm image library are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. OpenMotif provides libraries which implement the Motif industry standard graphical user interface. An integer...
-==phpBB 2.0.14 Multiple Vulnerabilities==-
/ -------------------------------------------------------- Neo Security Team NST® - Advisory 14 - 17/04/05 -------------------------------------------------------- Program: phpBB 2.0.14 Homepage: http://www.phpbb.com Vulnerable Versions: phpBB 2.0.14 & Lower versions Risk: Low Risk!! Impact:...
Multiple browsers tab vulnerabilities
Multiple browsers allow tab spoofing...
RHEL 3 : gaim (RHSA-2004:604)
An updated gaim package that fixes security issues, fixes various bugs, and includes various enhancements for Red Hat Enterprise Linux 3 is now available. The gaim application is a multi-protocol instant messaging client. A buffer overflow has been discovered in the MSN protocol handler. When...
Debian DSA-477-1 : xine-ui - insecure temporary file creation
Shaun Colley discovered a problem in xine-ui, the xine video player user interface. A script contained in the package to possibly remedy a problem or report a bug does not create temporary files in a secure fashion. This could allow a local attacker to overwrite files with the privileges of the...
Microsoft Internet Explorer window.createPopup() method creates chromeless windows
Overview The Internet Explorer IE window.createPopup method creates chromeless popup windows. These windows can be used to spoof the user interface in Internet Explorer, any Windows application, or the Windows desktop. Description The visible area of a web browser window can be categorized into t...
CVE-2004-0764
Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, allow remote web sites to hijack the user interface via the "chrome" flag and XML User Interface Language XUL files...
Firefox < 1.0 Multiple Spoofing Vulnerabilities
The remote host is using Mozilla and/or Firefox, an alternative web browser. This web browser supports the XUL XML User Interface Language, a language designed to manipulate the user interface of the browser itself. Since XUL gives the full control of the browser GUI to the visited websites, an...
Mozilla / Firefox user interface spoofing vulnerability
The Mozilla project's family of browsers contain a design flaw that can allow a website to spoof almost perfectly any part of the Mozilla user interface, including spoofing web sites for phishing or internal elements such as the "Master Password" dialog box. This achieved by manipulating "chrome"...
HijackClick 3
Note: This vulnerability as well as several more can be found at http://www.greyhats.cjb.net HijackClick 3!!! Took the name from Liu Die Yu : Tested IEXPLORE.EXE file version 6.0.2800.1106 MSHTML.DLL file version 6.00.2800.1400 Microsoft Windows XP sp2 Discussion The HijackClick series have been...
RHEL 2.1 : vnc (RHSA-2003:068)
Updated VNC packages are available to fix a weak cookie vulnerability. VNC is a tool for providing a remote graphical user interface. The VNC server acts as an X server, but the script for starting it generates an MIT X cookie which is used for X authentication without using a strong enough rando...