SJOW creates scope chains ending in outer object — Mozilla

Mozilla developer Blake Kaplan reported that the wrapper class XPCSafeJSObjectWrapper SJOW, a security wrapper that allows content-defined objects to be safely accessed by privileged code, creates scope chains ending in outer objects. Users of SJOWs which expect the scope chain to end on an inner...

Nmap NSE: FTP Brute

This script attempts to get FTP login credentials by guessing usernames and passwords. This is a wrapper on the Nmap Security Scanner's http://nmap.org ftp-brute.nse OpenVAS Vulnerability Test $Id: gbnmapftpbrute.nasl 7006 2017-08-25 11:51:20Z teissa $ Wrapper for Nmap FTP Brute NSE script...

Nmap NSE: SMB OS Discovery

This script attempts to determine the operating system, computer name, domain, and current time over the SMB protocol. This is a wrapper on the Nmap Security Scanner's http://nmap.org smb-os-discovery.nse OpenVAS Vulnerability Test $Id: gbnmapsmbosdiscovery.nasl 7006 2017-08-25 11:51:20Z teissa $...

Nmap NSE: Banner Grabber

This script attempts to connect to the target port and returns the banner of the remote service. This is a wrapper on the Nmap Security Scanner's http://nmap.org banner.nse OpenVAS Vulnerability Test $Id: gbnmapbannergrabber.nasl 8233 2017-12-22 09:37:31Z cfischer $ Wrapper for Nmap Banner Grabbe...

CVE-2010-1422

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, does not properly handle changes to keyboard focus that occur during processing of key press events, which allows remote attackers to force arbitrary key presses via a crafted HTML docume...

wapiti (NASL wrapper)

This plugin uses wapiti to find web security issues. Make sure to have wapiti 2.x as wapiti 1.x is not supported. See the preferences section for wapiti options. Note that OpenVAS is using limited set of wapiti options. Therefore, for more complete web assessment, you should use standalone wapiti...

Oracle Database DBMS_JVM_EXP_PERMS IMPORT_JVM_PERMS privilege elevation

Added: 02/26/2010 BID: 38115 OSVDB: 62184 Background Oracle Database embeds a Java runtime environment called OracleJVM. The DBMSJVMEXPPERMS package is included in Oracle Database and is used for importing and exporting Java permissions between database servers. Problem A privilege elevation...

CVE-2010-0656

WebKit before r51295, as used in Google Chrome before 4.0.249.78, presents a directory-listing page in response to an XMLHttpRequest for a file:/// URL that corresponds to a directory, which allows attackers to obtain sensitive information or possibly have unspecified other impact via a crafted...

Qihoo 360 Security Guard 6.1.5.1009 - breg device drivers Privilege Escalation

/ Software Link: http://sd.360.cn/sddownload1.html?src=360home Version: 6.1.5.1009 Tested on: Windows xp Vendor : Qihoo 360 Affected Software : 360 Security Guard 6.1.5.1009 Description: Qihoo 360 Security Guard is very famous in China. Some vulnerabilities have been reported in Qihoo 360 Securit...

[SECURITY] Fedora 11 Update: php-pear-Net-Ping-2.4.5-1.fc11

OS independent wrapper class for executing ping calls...

[SECURITY] Fedora 12 Update: php-pear-Net-Traceroute-0.21.2-1.fc12

OS independent wrapper class for executing traceroute calls...

[SECURITY] Fedora 10 Update: slim-1.3.1-9.fc10

SLiM Simple Login Manager is a graphical login manager for X11. It aims to be simple, fast and independent from the various desktop environments. SLiM is based on latest stable release of Login.app by Per Lid=C3=A9n. In the distribution, slim may be called through a wrapper, slim-dynwm, which...

w3af (NASL wrapper)

This VT is deprecated. Copyright C 2009 Vlatko Kosturjak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it unde...

CVE-2009-2697

The Red Hat build script for the GNOME Display Manager GDM before 2.16.0-56 on Red Hat Enterprise Linux RHEL 5 omits TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions via XDMCP connections, a different vulnerability than CVE-2007-5079...

Design/Logic Flaw

The Red Hat build script for the GNOME Display Manager GDM before 2.16.0-56 on Red Hat Enterprise Linux RHEL 5 omits TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions via XDMCP connections, a different vulnerability than CVE-2007-5079...

CVE-2009-2697

The Red Hat build script for the GNOME Display Manager GDM before 2.16.0-56 on Red Hat Enterprise Linux RHEL 5 omits TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions via XDMCP connections, a different vulnerability than CVE-2007-5079...

Adobe Flex 3.3 Cross Site Scripting

================================================== Adobe Flex 3.3 SDK DOM-Based XSS Public Release Date: 8/19/2009 Adam Bixby - Gotham Digital Science Affected Software: Adobe Flex 3.3 SDK and earlier ================================================== 1. Summary...

MDVA-2009:144 : libv4l

This update addresses the issue of urpmi preventing installation of both i586/x8664 versions of libv4l wrappers Mandriva bug 45316. Updated packages are provided to fix this issue. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security...

Mozilla Foundation Security Advisory 2009-46

Mozilla Foundation Security Advisory 2009-46 Title: Chrome privilege escalation due to incorrectly cached wrapper Impact: Critical Announced: August 3, 2009 Reporter: Wladimir Palant, mozbugra4 Products: Firefox 3.5 Fixed in: Firefox 3.5.2 Description Mozilla add-on developer and community member...

Mozilla Firefox Chrome Privilege Escalation Vulnerability Aug-09 (Linux)

This host is installed with Mozilla Firefox and is prone to Chrome Privilege Escalation vulnerability. OpenVAS Vulnerability Test $Id: gbfirefoxchromeprivescvulnaug09lin.nasl 4865 2016-12-28 16:16:43Z teissa $ Mozilla Firefox Chrome Privilege Escalation Vulnerability Aug-09 Linux Authors: Sharath...