- Vuln: Mahara Resume Blocktype Cross Site Scripting Vulnerability
- Vuln: Mahara Admin Password Reset Security Bypass Vulnerability
- Vuln: Google Chrome prior to 3.0.195.32 Multiple Security Vulnerabilities
- Vuln: Multiple Horde Products Cross-Site Scripting Vulnerabilities and File Overwrite Vulnerability
- Vuln: Mod_Perl Path_Info Remote Denial Of Service Vulnerability
- Vuln: Apache mod_perl 'Apache::Status' and 'Apache2::Status' Cross Site Scripting Vulnerability
- Vuln: FreeBSD 'fifo_vnops.c' Resource Leak Local Denial of Service Vulnerability
- Vuln: Citrix NetScaler and Access Gateway Denial Of Service Vulnerability
- Vuln: PDFLib 'open_basedir' Restriction Bypass Vulnerability
- Vuln: Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability
Search
Search Result
-
Flock 2.5.5 addresses security issues
Category: Network Security & Hacking News/Latest Security News
The Flock developers have released version 2.5.5 of their social web browser based on Firefox 3, addressing several security issues in its browser core and included components The Flock developers have ...Thursday, 05 November 2009 -
ha.ckers: DNS Rebinding in Firefox
Category: Network Security & Hacking News/Latest Security News
ha.ckers: DNS Rebinding in Firefox ha.ckers: DNS Rebinding in Firefox Read Full Article ...Tuesday, 03 November 2009 -
Vuln: Mozilla Firefox CVE-2009-3379 Multiple Remote Memory Corruption Vulnerabilities
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox CVE-2009-3379 Multiple Remote Memory Corruption Vulnerabilities Read Full Article ...Monday, 02 November 2009 -
Tenable Network Security Podcast - Episode 10
Category: Network Security & Hacking News/Latest Security News
... Plugin For Firefox Released - Vulnerabilities in the browser can be deadly as malicious code can hide on just about any web page, its important to update your browser and query your environment to be ...Monday, 02 November 2009 -
ha.ckers: DNS Rebinding in Firefox
Category: Network Security & Hacking News/Latest Security News
ha.ckers: DNS Rebinding in Firefox ha.ckers: DNS Rebinding in Firefox Read Full Article ...Friday, 30 October 2009 -
Best of Application Security (Friday, Oct. 30)
Category: Network Security & Hacking News/Latest Security News
... Infection Library Infrastructure fingerprinting via XSS DNS Rebinding in Firefox Output Validation using the OWASP ESAPI Google Wave as a Tool for Hacking Announcing the release of the Enhanced Mitigation ...Friday, 30 October 2009 -
Vuln: Mozilla Firefox 'document.getSelect' Cross Domain Information Disclosure Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox 'document.getSelect' Cross Domain Information Disclosure Vulnerability Read Full Article ...Thursday, 29 October 2009 -
H Security: Mozilla fixes critical bugs with Firefox 3.5.4 and 3.0.15
Category: Network Security & Hacking News/Latest Security News
H Security: Mozilla fixes critical bugs with Firefox 3.5.4 and 3.0.15 H Security: Mozilla fixes critical bugs with Firefox 3.5.4 and 3.0.15 Read Full Article ...Thursday, 29 October 2009 -
Security Briefing – October 29th
Category: Network Security & Hacking News/Latest Security News
Morning all! Everybody update their Firefox? Good. I finally got around to installing Windows 7 and so far so good. I'm still happier with Ubuntu but that is just me. Also very excited about the Droid ...Thursday, 29 October 2009 -
Mozilla update repairs Firefox buffer overflow vulnerabilities
Category: Network Security & Hacking News/Latest Security News
Repairs fix several critical memory corruption errors and buffer overflow flaws that could cause the browser to crash and leave users vulnerable to attack. Mozilla issued an update to its popular Firefox ...Thursday, 29 October 2009 -
Links for 2009-10-28 [del.icio.us]
Category: Network Security & Hacking News/Latest Security News
... This was me last night, trying to futz with OpenBSD in VirtualBox while doing all my usual goofing off in Firefox on my Mac with only 1GB of RAM. Firefox was not happy. Yes, I am linking to a lolcat. ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox CVE-2009-3382 Remote Memory Corruption Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox CVE-2009-3382 Remote Memory Corruption Vulnerability Read Full Article ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox XPCOM Utility Chrome Privilege Escalation Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox XPCOM Utility Chrome Privilege Escalation Vulnerability Read Full Article ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox Form History Information Disclosure Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox Form History Information Disclosure Vulnerability Read Full Article ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox CVE-2009-3383 Multiple Remote Memory Corruption Vulnerabilities
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox CVE-2009-3383 Multiple Remote Memory Corruption Vulnerabilities Read Full Article ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox CVE-2009-3380 Multiple Remote Memory Corruption Vulnerabilities
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox CVE-2009-3380 Multiple Remote Memory Corruption Vulnerabilities Read Full Article ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox and SeaMonkey 'libpr0n' GIF Parser Heap Based Buffer Overflow Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox and SeaMonkey 'libpr0n' GIF Parser Heap Based Buffer Overflow Vulnerability Read Full Article ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox CVE-2009-3378 Remote Memory Corruption Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox CVE-2009-3378 Remote Memory Corruption Vulnerability Read Full Article ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox CVE-2009-3377 Remote Memory Corruption Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox CVE-2009-3377 Remote Memory Corruption Vulnerability Read Full Article ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox CVE-2009-3381 Multiple Remote Memory Corruption Vulnerabilities
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox CVE-2009-3381 Multiple Remote Memory Corruption Vulnerabilities Read Full Article ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox and SeaMonkey Download Filename Spoofing Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox and SeaMonkey Download Filename Spoofing Vulnerability Read Full Article ...Wednesday, 28 October 2009 -
Vuln: Mozilla Firefox and SeaMonkey Proxy Auto-Configuration File Remote Code Execution Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox and SeaMonkey Proxy Auto-Configuration File Remote Code Execution Vulnerability Read Full Article ...Wednesday, 28 October 2009 -
Firefox hit by multiple drive-by download flaws
Category: Network Security & Hacking News/Latest Security News
Mozilla's flagship Firefox browser is vulnerable to at least 11 "critical" vulnerabilities that expose users to drive-by download attacks that require no user interaction beyond normal browsing. Mozilla's ...Wednesday, 28 October 2009 -
Firefox 3.5.4 fixes critical security issues
Category: Network Security & Hacking News/Latest Security News
Mozilla released Firefox 3.5.4 that fixes several security issues. Crashes with evidence of memory corruption Mozilla developers and community members identified and fixed several stability bugs... Mozilla ...Tuesday, 27 October 2009 -
Mozilla fixes critical bugs with Firefox 3.5.4 and 3.0.15
Category: Network Security & Hacking News/Latest Security News
Six critical holes in Firefox 3.5 and five critical holes in Firefox 3.0 have been closed by Mozilla. Six critical holes in Firefox 3.5 and five critical holes in Firefox 3.0 have been closed by Mozilla. ...Tuesday, 27 October 2009 -
Interesting Information Security Bits RSA Catch-up Part 2
Category: Network Security & Hacking News/Latest Security News
Here is part 2 of my catch-up posts. Argument For Anonymity Secure Computing: Sec-C Tags: ( anonymity ) RaDaJo (RAul, DAvid and JOrge) Security Blog: Samurai Web Testing Framework (WTF) Firefox Add-ons ...Tuesday, 27 October 2009 -
Vuln: Mozilla Firefox Floating Point Conversion Heap Overflow Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox Floating Point Conversion Heap Overflow Vulnerability Read Full Article ...Tuesday, 27 October 2009 -
Vuln: Mozilla FireFox Download Manager World Writtable File Local Privilege Escalation Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla FireFox Download Manager World Writtable File Local Privilege Escalation Vulnerability Read Full Article ...Tuesday, 27 October 2009 -
Vuln: Mozilla Firefox JavaScript Web-Workers Remote Code Execution Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox JavaScript Web-Workers Remote Code Execution Vulnerability Read Full Article ...Tuesday, 27 October 2009 -
Vuln: Mozilla Firefox and SeaMonkey MFSA 2009-52 through -64 Multiple Vulnerabilities
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox and SeaMonkey MFSA 2009-52 through -64 Multiple Vulnerabilities Read Full Article ...Monday, 26 October 2009 -
Enterprise Open Source Intelligence Gathering – Part 1 Social Networks
Category: Network Security & Hacking News/Latest Security News
... Username Check http://knowem.com/ Firefox Super Search Add-On https://addons.mozilla.org/en-US/firefox/addon/13308 (over 160 search engines built in) Don’t forget about photo/video social networks ...Monday, 26 October 2009 -
Mozilla confirms Firefox updates and beta delayed
Category: Network Security & Hacking News/Latest Security News
Mozilla has confirmed that Firefox 3.0.15, 3.5.4 and the first beta for Firefox 3.6 have all been delayed. The fifth beta of Mozilla's Fennec mobile web browser has a release date and the final version ...Thursday, 22 October 2009 -
c|net: Firefox's crossroads - Cutting-edge or mainstream?
Category: Network Security & Hacking News/Latest Security News
c|net: Firefox's crossroads - Cutting-edge or mainstream? c|net: Firefox's crossroads - Cutting-edge or mainstream? Read Full Article ...Wednesday, 21 October 2009 -
Firefox Web Browser Weaponization Redux
Category: Network Security & Hacking News/Latest Security News
I've written about the Samurai Web Testing Framework (WTF) LiveCD project and some of the Firefox Add-Ons that can be used to transform Firefox into a highly capable Web application penetration testing ...Wednesday, 21 October 2009 -
Vuln: Mozilla Firefox Error Page Address Bar URI Spoofing Vulnerability
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox Error Page Address Bar URI Spoofing Vulnerability Read Full Article ...Monday, 19 October 2009 -
Vuln: Mozilla Firefox 3.5.1/3.0.12 Multiple Memory Corruption Vulnerabilities
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox 3.5.1/3.0.12 Multiple Memory Corruption Vulnerabilities Read Full Article ...Monday, 19 October 2009 -
Vulnerabilities in several PDF applications
Category: Network Security & Hacking News/Latest Security News
Security holes in numerous PDF applications allow attackers to infect systems with malware. Affected applications include Xpdf and the Foxit plug-in for Mozilla's Firefox web browser Security holes in ...Monday, 19 October 2009 -
Microsoft's Firefox add-ons blocked
Category: Network Security & Hacking News/Latest Security News
Although Mozilla uses itaposs blocking list infrequently, it judged Microsoftaposs new .NET Framework Assistant add-on and the Windows Presentation Foundation plug-in for Firefox dangerous enough to resort ...Monday, 19 October 2009 -
Mozilla blocks (then unblocks) dangerous MS .NET Firefox add-on
Category: Network Security & Hacking News/Latest Security News
The move comes in the wake of an admission from Microsoft that the add-on was exposing users to drive-by malware downloads via a remote code execution vulnerability. The move comes in the wake of an ...Monday, 19 October 2009 -
Firefox blocks, then unblocks, Microsoft add-on
Category: Network Security & Hacking News/Latest Security News
Firefox 3.5 started to block a Microsoft plug-in that can be used to exploit a security hole in .NET Framework 3.51. But now Mozilla is unblocking it after confusion over the vulnerability Firefox 3.5 ...Sunday, 18 October 2009 -
Best of Application Security (Friday, Oct. 16)
Category: Network Security & Hacking News/Latest Security News
... of X-FRAME-OPTIONS header Integrating WAFs And Vulnerability Scanners Regular Expressions – the secure developers best friend Sneaky Microsoft plug-in puts Firefox users at risk The Month of Facebook ...Sunday, 18 October 2009 -
Drive By: Mozilla Blocks Microsoft’s Buggy Firefox Plugin
Category: Network Security & Hacking News/Latest Security News
From PC World: Mozilla developers have blocked a Firefox plugin that was quietly pushed out by Microsoft, saying that it presents a security risk. Microsoft shipped the Firefox add-on as part of a .Net ...Saturday, 17 October 2009 -
Mozilla Disables Microsoft's Insecure Firefox Add-on
Category: Network Security & Hacking News/Latest Security News
Mozilla is disabling a pair of components stealthily installed by Microsoft earlier this year for Windows users of the Firefox Web browser, warning that the plug-in suffers from a serious security vulnerability. ...Saturday, 17 October 2009 -
Hacking Crazy Taxi
Category: Network Security & Hacking News/Latest Security News
... the Tamper Data plugin for Firefox (to catch the obvious ones). The Crazy Taxi Flash does actually submit your score using HTTP in clear text (IIRC they have a reflected XSS there as well), but the GET-param ...Saturday, 17 October 2009 -
Computer World: Sneaky Microsoft plug-in puts Firefox users at risk "Patches critical bug, exploitable because of add-on silently slipped into Firefox last February"
Category: Network Security & Hacking News/Latest Security News
Computer World: Sneaky Microsoft plug-in puts Firefox users at risk Patches critical bug, exploitable because of add-on silently slipped into Firefox last February Computer World: Sneaky Microsoft plug-in ...Friday, 16 October 2009 -
Microsoft exposes Firefox users to drive-by malware downloads
Category: Network Security & Hacking News/Latest Security News
The Microsoft .NET Framework Assistant add-on that Microsoft sneaked into Firefox without permission from end users is vulnerable to a serious code execution vulnerability. The Microsoft .NET Framework ...Friday, 16 October 2009 -
Vuln: Mozilla Firefox MFSA 2009-47, -48, -49, -50, -51 Multiple Vulnerabilities
Category: Network Security & Hacking News/Security Exploits and Security Patches
Mozilla Firefox MFSA 2009-47, -48, -49, -50, -51 Multiple Vulnerabilities Read Full Article ...Wednesday, 14 October 2009 -
Mozilla: Firefox Users, Check Your Plug-ins
Category: Network Security & Hacking News/Latest Security News
Mozilla is now offering Firefox users a simple way to tell whether the browser's various plug-ins are up-to-date with the latest security patches. Plug-ins are components installed by third-party software ...Wednesday, 14 October 2009 -
Update: WhoAmI? Version 0.1.3
Category: Network Security & Hacking News/Latest Security News
I’ve updated my WhoAmI? Firefox add-on for Firefox version 3.5. You can download it here or get it from the Mozilla site. I’ve nominated it to leave the Sandbox. If you use it, please post a review on ...Wednesday, 14 October 2009
