what you don't know can hurt you

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 1 of 1

Files

Zero Day Initiative Advisory 10-171: Posted Sep 14, 2010; Authored by Tipping Point | Site zerodayinitiative.com; Zero Day Initiative Advisory 10-171 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the implementation of a particular element within the XUL namespace. Due to a method for the element having the side effect of executing javascript, an attacker can provide their own javascript code which can be used to remove an object out from underneath the element's child hierarchy. This can force the application to make an invalid reference when traversing it's internal objects, thus using an illegitimate pointer. This can be leveraged by an attacker to execute arbitrary code under the context of the application.; tags | advisory, remote, arbitrary, javascript; advisories | CVE-2010-3167; SHA-256 | ff8ed79c701144a5d5bab06486fd8c341cec8d2693e081cae42d9badecfd9ef3; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 222 files
Ubuntu 58 files
Debian 28 files
LiquidWorm 11 files
Valentin Lobstein 10 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 6 files
Milad Karimi 5 files
E1.Coders 4 files

Recent News

Nation-State Hackers Exploit Cisco Firewall Zero Days To Backdoor Government Networks: Posted Apr 25, 2024; tags | headline, hacker, government, cyberwar, cisco, backdoor; Favorite | View

FTC Sending $5.6 Million To Ring Customers Over Security Failures: Posted Apr 25, 2024; tags | headline, government, privacy, usa, amazon, flaw; Favorite | View

Palo Alto Networks Shares Remediation Advice: Posted Apr 25, 2024; tags | headline, flaw; Favorite | View

Russia, Iran Pose Most Aggressive Threat To 2024 Election: Posted Apr 25, 2024; tags | headline, government, usa, russia, fraud, cyberwar, iran; Favorite | View

Google Patches Critical Chrome Vulnerability: Posted Apr 24, 2024; tags | headline, flaw, google, patch, chrome; Favorite | View

Hackers Are Using Developing Countries For Ransomware Practice: Posted Apr 24, 2024; tags | headline, hacker, malware, cybercrime, fraud, cryptography; Favorite | View

North Korean Hackers Hijack Antivirus Updates For Malware Delivery: Posted Apr 24, 2024; tags | headline, hacker, government, malware, flaw, cyberwar, military, north korea; Favorite | View

CISA Warns Of Windows Print Spooler Flaw After Microsoft Sees Russian Exploitation: Posted Apr 24, 2024; tags | headline, government, microsoft, usa, russia, flaw, cyberwar; Favorite | View

US Charges Iranians With Cyber Snooping On Government, Companies: Posted Apr 24, 2024; tags | headline, hacker, government, privacy, usa, cyberwar, spyware, iran; Favorite | View

TensorFlow AI Models At Risk Due To Keras API Flaw: Posted Apr 24, 2024; tags | headline, flaw; Favorite | View

View More News →

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec