26 matches found
EUVD-2008-1590
Malware in sbrugna...
EUVD-2004-0716
Malware in sbrugna...
SUSE CVE-2004-1156
Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window...
Security Bulletin: A Security Vulnerability Has Been Identified In IBM Security Secret Server (CVE-2019-4631)
Summary A security vulnerability identified on IBM Security Secret Server has been addressed in the release 10.7.000059. Vulnerability Details CVEID: CVE-2019-4631 DESCRIPTION: IBM Security Secret Server could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By...
CVE-2018-1704
IBM Platform Symphony 7.1 Fix Pack 1 and 7.1.1 and IBM Spectrum Symphony 7.1.2 and 7.2.0.2 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to...
Code injection
An issue was discovered in certain Apple products. Safari before 11.1 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the address bar via a crafted web site...
CVE-2017-1195
IBM Curam Social Program Management 6.0, 6.1, 6.2, and 7.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to spoof the URL displayed to...
Spoofing
Microsoft Internet Explorer 9 through 11 and Microsoft Edge misparse HTTP responses, which allows remote attackers to spoof web sites via a crafted URL, aka "Microsoft Browser Spoofing Vulnerability."...
CVE-2015-7211
Mozilla Firefox before 43.0 mishandles the number sign character in a data: URI, which allows remote attackers to spoof web sites via unspecified vectors...
CVE-2015-7211
Mozilla Firefox before 43.0 mishandles the number sign character in a data: URI, which allows remote attackers to spoof web sites via unspecified vectors...
MS IE Information Disclosure and Web Site Spoofing Vulnerabilities
This host is installed with Microsoft Internet Explorer and is prone to information disclosure and web site spoofing vulnerabilities. OpenVAS Vulnerability Test $Id: gbmsieinfodiscnspoofvuln.nasl 6104 2017-05-11 09:03:48Z teissa $ MS IE Information Disclosure and Web Site Spoofing Vulnerabilities...
Microsoft Internet Explorer Information Disclosure and Web Site Spoofing Vulnerabilities
Microsoft Internet Explorer is prone to information disclosure and web site spoofing vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
Internet Explorer CDF Cross Domain Scripting (MS05-014; CVE-2005-0056)
Microsoft Internet Explorer employs the concept of security zones, which enables the browser to apply different security policies based on the origin of the content that is being rendered. For instance, separate restrictions may be set for remote content and for local content. As a rule, Internet...
Design/Logic Flaw
Safari on Apple iPhone before 2.0 and iPod touch before 2.0 misinterprets a menu button press as user confirmation for visiting a web site with a 1 self-signed or 2 invalid certificate, which makes it easier for remote attackers to spoof web sites...
CVE-2004-1156
Mozilla before 1.7.6, and Firefox before 1.0.1, allows remote attackers to spoof arbitrary web sites by injecting content from one window into a target window whose name is known but resides in a different domain, as demonstrated using a pop-up window on a trusted web site, aka the "window...
CVE-2004-0719
Internet Explorer for Mac 5.2.3, Internet Explorer 6 on Windows XP, and possibly other versions, does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection...
CVE-2004-0718
The 1 Mozilla 1.6, 2 Firebird 0.7, 3 Firefox 0.8, and 4 Netscape 7.1 web browsers do not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability...
CVE-2004-0720
CVE-2004-0720 affects Safari 1.2.2, where a frame in one domain can inject content into a frame belonging to another domain, enabling web-site spoofing. This is a cross-domain frame-injection vulnerability. The provided connected documents specify the issue but do not include exploit code or reme...
CVE-2004-0720
Safari 1.2.2 does not properly prevent a frame in one domain from injecting content into a frame that belongs to another domain, which facilitates web site spoofing and other attacks, aka the frame injection vulnerability...
CVE-2004-0717
CVE-2004-0717 affects Opera 7.51 for Windows and 7.50 for Linux. The vulnerability arises from Opera not properly preventing a frame in one domain from injecting content into a frame in another domain, enabling frame-injection that can facilitate site spoofing and related attacks. The connected d...