[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248038

 
 

909

 
 

194772

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 15162 Download | Alert*

Mozilla Firefox 69, Mozilla Firefox ESR 68.1 : Given a compromised sandboxed content process due to a separate vulnerability, it is possible to escape that sandbox by loading <code>accounts.firefox.com</code> in that process and forcing a log-in to a malicious Firefox Sync account. Preference settings that disable the sandbox are then synchronized to the local machine and the compromised browser w ...

The host is installed with Python 2.x through 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9 or 3.7.x through 3.7.4 and is prone to a security bypass vulnerability. The flaw is present in the application, which fails to properly handle an issue in parsing email addresses. Successful exploitation allows attackers to trick the application into accepting an email address that should be denied.

The host is installed with Python 2.x through 2.7.16, 3.x through 3.6.9 or 3.7.x through 3.7.4 and is prone to a cross-site scripting vulnerability. A flaw is present in the application, which fails to properly handle untrusted input with set_server_title. Successful exploitation allows attackers to execute arbitrary JavaScript.

The host is installed with Python and is prone to information disclosure vulnerability. A flaw is present in the application which is caused when specially crafted HTTP 302 redirect to cause the connected application to load a 'file://' resource to access a file or consume excessive resource. Successful exploitation allows remote attacker to cause denial-of-service condition.

The host is installed with Google Chrome before 28.0.1500.95 and is prone to remote code execution vulnerability. The flaw is present in the application, which does not properly handle vectors that leverage "type confusion". Successful exploitation allows remote attackers to cause a denial of service or possibly have unspecified other impact.

The host is installed with Google Chrome before 31.0.1650.63 and is prone to out-of-bounds write vulnerability. The flaws are present in the application, which fails to handle the DehoistArrayIndex function. Successful exploitation allows the remote attacker to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact.

The host is installed with Google Chrome before 31.0.1650.63 and is prone to out-of-bounds read vulnerability. The flaws are present in the application, which fails to handle the DehoistArrayIndex function. Successful exploitation allows the remote attacker to cause a denial of service (out-of-bounds read).

The host is installed with Google Chrome before 33.0.1750.146 and is prone to multiple unspecified vulnerabilities. The flaws are present in the application, which fails to handle certain vectors related to V8 engine. Successful exploitation allows attackers to cause a denial of service or possibly have other impact via unknown vectors.

The host is installed with Python 2.5.2 and earlier and is prone to integer signedness error vulnerability. The flaw is present in the zlib extension module, which triggers insufficient memory allocation and a buffer overflow. Successful exploitation allows remote attackers to execute arbitrary code via a negative signed integer.

The host is installed with Python 2.5.2 and earlier and is prone to multiple integer overflows vulnerabilities. The flaws are present in the application, which fails to properly handle vectors related to the (1) stringobject, (2) unicodeobject, (3) bufferobject, (4) longobject, (5) tupleobject, (6) stropmodule, (7) gcmodule, and (8) mmapmodule modules. Successful exploitation allow context-depende ...


Pages:      Start    1    2    3    4    5    6    7    8    9    10    11    12    13    14    ..   1516

© SecPod Technologies