navigator software vulnerabilities
vulnerabilities.aspcode.net
Searching navigator software vulnerabilities
A configuration in a web browser such as Intern
configuration
|
Javascript
|
Navigator
|
execution
|
Netscape
|
Explorer
|
Internet
|
content
|
ActiveX
|
browser
|
allows
|
active
|
Java
|
such
|
etc
|
web
|
A configuration in a web browser such as Internet Explorer or Netscape Navigator allows execution of active content such as ActiveX, Java, Javascript, etc.
Lotus Domino Web Server 5.x allows remote attac
$defaultNav
|
information
|
navigator
|
attackers
|
sensitive
|
accessing
|
default
|
Server
|
Domino
|
remote
|
allows
|
Lotus
|
gain
|
via
|
Web
|
Lotus Domino Web Server 5.x allows remote attackers to gain sensitive information by accessing the default navigator $defaultNav via (1) URL encoding the request, or (2) directly requesting the ReplicaID.
Netscape Navigator 7.1 allows remote attackers
facilitates
|
legitimate
|
"phishing"
|
attackers
|
Navigator
|
malicious
|
modified
|
combined
|
Netscape
|
points
|
values
|
remote
|
status
|
attack
|
allows
|
spoof
|
whose
|
image
|
which
|
"alt"
|
point
|
tags
|
HREF
|
site
|
via
|
bar
|
URL
|
map
|
Netscape Navigator 7.1 allows remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map whose href points to the malicious site, which facilitates a "phishing" attack.
Heap-based buffer overflow in Apple Quicktime b
Heap-based
|
Quicktime
|
overflow
|
before
|
buffer
|
Apple
|
Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a GIF image file with a crafted Netscape Navigator Application Extension Block that modifies the heap in the Picture Modifier block.
Mozilla Firefox 1.5, Thunderbird 1.5 if Javascr
QueryInterface
|
Thunderbird
|
Javascript
|
corruption
|
SeaMonkey
|
arbitrary
|
attackers
|
Navigator
|
Location
|
built-in
|
objects
|
execute
|
Firefox
|
enabled
|
Mozilla
|
before
|
memory
|
method
|
remote
|
leads
|
which
|
might
|
allow
|
mail
|
code
|
via
|
Mozilla Firefox 1.5, Thunderbird 1.5 if Javascript is enabled in mail, and SeaMonkey before 1.0 might allow remote attackers to execute arbitrary code via the QueryInterface method of the built-in Location and Navigator objects, which leads to memory corruption.
Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonke
Firefox
|
Mozilla
|
before
|
Mozilla Firefox 1.5 before 1.5.0.5 and SeaMonkey before 1.0.3 allows remote attackers to execute arbitrary code by changing certain properties of the window navigator object (window.navigator) that are accessed when Java starts up, which causes a crash that leads to code execution.
Directory traversal vulnerability in pn-menu.ph
vulnerability
|
directories
|
pn-menuphp
|
Navigator
|
attackers
|
arbitrary
|
traversal
|
Directory
|
remote
|
allows
|
J-Web
|
Pics
|
list
|
via
|
Directory traversal vulnerability in pn-menu.php in J-Web Pics Navigator 1.0 allows remote attackers to list arbitrary directories via a .. (dot dot) in the dir parameter.
Directory traversal vulnerability in jwpn-photo
jwpn-photosphp
|
vulnerability
|
directories
|
Navigator
|
attackers
|
arbitrary
|
traversal
|
Directory
|
remote
|
allows
|
J-Web
|
Pics
|
list
|
via
|
Directory traversal vulnerability in jwpn-photos.php in J-Web Pics Navigator 2.0 allows remote attackers to list arbitrary directories via a .. (dot dot) in the dir parameter.
Directory traversal vulnerability in navigator/
navigator/navigator_okphp
|
vulnerability
|
Directory
|
traversal
|
Pagode
|
Directory traversal vulnerability in navigator/navigator_ok.php in Pagode 0.5.8 allows remote attackers to read and possibly delete arbitrary files via a .. (dot dot) in the asolute parameter.
Multiple argument injection vulnerabilities in
vulnerabilities
|
Navigator
|
injection
|
attackers
|
arbitrary
|
commands
|
Multiple
|
argument
|
Netscape
|
execute
|
remote
|
allow
|
NULL
|
byte
|
via
|
Multiple argument injection vulnerabilities in Netscape Navigator 9 allow remote attackers to execute arbitrary commands via a NULL byte (%00) and shell metacharacters in a (1) mailto, (2) nntp, (3) news, (4) snews, or (5) telnet URI, a similar issue to CVE-2007-3670.
Software vulnerabilities results 1 to 11 of 11
Page:
1