26 matches found
EUVD-2004-0716
Malware in sbrugna...
EUVD-2008-1590
Malware in sbrugna...
SUSE CVE-2004-1156
Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window...
Security Bulletin: A Security Vulnerability Has Been Identified In IBM Security Secret Server (CVE-2019-4631)
Summary A security vulnerability identified on IBM Security Secret Server has been addressed in the release 10.7.000059. Vulnerability Details CVEID: CVE-2019-4631 DESCRIPTION: IBM Security Secret Server could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By...
CVE-2018-1704
IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum Symphony 7.1.2 and 7.2.0.2 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to...
Code injection
An issue was discovered in certain Apple products. Safari before 11.1 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the address bar via a crafted web site...
CVE-2017-1195
IBM Curam Social Program Management 6.0, 6.1, 6.2, and 7.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to...
Spoofing
Microsoft Internet Explorer 9 through 11 and Microsoft Edge misparse HTTP responses, which allows remote attackers to spoof web sites via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability."...
CVE-2015-7211
Mozilla Firefox before 43.0 mishandles the number sign character in a data: URI, which allows remote attackers to spoof web sites via unspecified vectors...
CVE-2015-7211
Mozilla Firefox before 43.0 mishandles the number sign character in a data: URI, which allows remote attackers to spoof web sites via unspecified vectors...
MS IE Information Disclosure and Web Site Spoofing Vulnerabilities
This host is installed with Microsoft Internet Explorer and is prone to information disclosure and web site spoofing vulnerabilities. OpenVAS Vulnerability Test $Id: gbmsieinfodiscnspoofvuln.nasl 6104 2017-05-11 09:03:48Z teissa $ MS IE Information Disclosure and Web Site Spoofing Vulnerabilities...
Microsoft Internet Explorer Information Disclosure and Web Site Spoofing Vulnerabilities
Microsoft Internet Explorer is prone to information disclosure and web site spoofing vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Internet Explorer CDF Cross Domain Scripting (MS05-014; CVE-2005-0056)
Microsoft Internet Explorer employs the concept of security zones, which enables the browser to apply different security policies based on the origin of the content that is being rendered. For instance, separate restrictions may be set for remote content and for local content. As a rule, Internet...
Design/Logic Flaw
Safari on Apple iPhone before 2.0 and iPod touch before 2.0 misinterprets a menu button press as user confirmation for visiting a web site with a 1 self-signed or 2 invalid certificate, which makes it easier for remote attackers to spoof web sites...
CVE-2004-1156
Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window...
CVE-2004-0719
Internet Explorer for Mac 5.2.3, Internet Explorer 6 on Windows XP, and possibly other versions, does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection...
CVE-2004-0718
The 1 Mozilla 1.6, 2 Firebird 0.7, 3 Firefox 0.8, and 4 Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability...
CVE-2004-0721
CVE-2004-0721 affects Konqueror 3.1.3, 3.2.2 (and possibly other versions) where a frame in one domain can inject content into a frame in another domain, enabling web site spoofing and related attacks. The vulnerability stems from insufficient cross-domain frame isolation, as described in KDE/SUS...
CVE-2004-0719
The CVE-2004-0719 frame-injection vulnerability affects Internet Explorer on Windows (IE6 on XP) and IE for Mac 5.2.3, arising from insufficient protection against framing content across domains, enabling content injection and potential site spoofing. Exploitation details are not fully provided i...
CVE-2004-0718
The CVE-2004-0718 entry covers a frame-injection vulnerability affecting multiple browsers (Mozilla 1.6, Firebird 0.7, Firefox 0.8, Netscape 7.1) where a frame from one domain injects content into a frame in another domain, facilitating web-site spoofing and related attacks. The Connected documen...