exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

Zero Day Initiative Advisory 10-176
Posted Sep 14, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-176 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the normalizeDocument function defined within nsDocument.cpp. When handling children nodes the code does not account for a varying number of children during normalization. An attacker can abuse this problem along with the fact that the code does not validate the child index is within bounds to access an invalid object and execute arbitrary code under the context of the browser.

tags | advisory, remote, arbitrary
advisories | CVE-2010-2766
MD5 | 977961a3accf02ac66807d1a06570475
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
NASA's JPL Seems To Be Having A Hard Time With Security
Posted Jun 19, 2019

tags | headline, government, usa, space, flaw, nasa
Iran Claims To Have Thwarted A US Cyber Espionage Operation
Posted Jun 19, 2019

tags | headline, government, usa, cyberwar, spyware, iran
Oracle Patches Another Actively Exploited WebLogic 0-Day
Posted Jun 19, 2019

tags | headline, hacker, flaw, oracle
John Deere's Promotional USB Drive Hijacks Your Keyboard
Posted Jun 19, 2019

tags | headline, malware
Venmo Transaction Scraped In Privacy Warning To Consumers
Posted Jun 18, 2019

tags | headline, privacy, bank, cybercrime, data loss, fraud, flaw, paypal
Facebook Launches Cryptocurrency To Shake Up Global Finance
Posted Jun 18, 2019

tags | headline, bank, facebook, cryptography
US And Russia Clash Over Power Grid Hack Attacks
Posted Jun 18, 2019

tags | headline, government, usa, russia, cyberwar, scada
Smash GandCrab Tool Released To Decrypt Ransomware
Posted Jun 18, 2019

tags | headline, malware, cybercrime, fraud, cryptography
Hacker Conference Speaker Axed Over Abortion Views
Posted Jun 17, 2019

tags | headline, government, usa, conference
Exposed Database Dumps PII Of 1.6 Million Job Seekers
Posted Jun 17, 2019

tags | headline, privacy, database, data loss
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close