Download
| Alert*
oval:org.secpod.oval:def:36833
The host is installed with Google Chrome before 4.1.249.1059 and is prone to a cross-site request forgery (CSRF) vulnerability. A flaw is present in the application, which fails to handle a crafted (1) image or (2) canvas. Successful exploitation allows remote attackers to hijack the authentication ... oval:org.secpod.oval:def:36832 The host is installed with Google Chrome before 4.1.249.1059 and is prone to a cross-site request forgery (CSRF) vulnerability vulnerability. A flaw is present in the application, which fails to handle a crafted image or canvas. Successful exploitation allows remote attackers to hijack the authentic ... oval:org.mitre.oval:def:11140 Cross-site request forgery (CSRF) vulnerability in loader/DocumentThreadableLoader.cpp in WebCore in WebKit before r57041, as used in Google Chrome before 4.1.249.1059, allows remote attackers to hijack the authentication of unspecified victims via a crafted synchronous preflight XMLHttpRequest oper ... oval:org.secpod.oval:def:101192 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. oval:org.secpod.oval:def:300417 Multiple cross-site scripting, denial of service and arbitrary code execution security flaws were discovered in webkit. Please consult the CVE web links for further information. The updated packages have been upgraded to the latest version to correct these issues. oval:org.secpod.oval:def:100630 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. oval:org.secpod.oval:def:100273 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. oval:org.secpod.oval:def:100700 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. oval:org.secpod.oval:def:101238 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. oval:org.secpod.oval:def:100790 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. |