Search:Vulnerability:15.07.2007 - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

eSoft InstaGate EX2 UTM crossite forgery
Published: 15.07.2007
Source: BUGTRAQ
SecurityVulns ID: 7936
Type: remote
Level: 5/10
Description: It's possible to submit the form with configuration data.

Affected: ESOFT : InstaGate EX2

Original document Calyptix Advisories, Calyptix Security Advisory CX-2007-05 - eSoft InstaGate EX2 Cross-Site Request Forgery Attack (15.07.2007)

Discuss: Read or add your comments to this news (0 comments)

Opera/Konqueror URL spoofing
Published: 15.07.2007
Source: BUGTRAQ
SecurityVulns ID: 7939
Type: client
Level: 4/10
Description: By using data: URL it's possible to spoof page location.

Affected: KDE : Konqueror 3.5
OPERA : Opera 9.21

Original document Robert Święcki, Opera/Konqueror: data: URL scheme address bar spoofing (15.07.2007)

Discuss: Read or add your comments to this news (0 comments)

Microsoft Internet Explorer content spoofing
Published: 15.07.2007
Source: BUGTRAQ
SecurityVulns ID: 7938
Type: client
Level: 5/10
Description: It's possiblt to emulate navigation to different site by using document.open(), actually stayin in context of previous page.

Affected: MICROSOFT : Windows XP
MICROSOFT : Windows 2003 Server
MICROSOFT : Windows Vista

Original document Michal Zalewski, MSIE7 entrapment again (+ FF tidbit) (15.07.2007)

Discuss: Read or add your comments to this news (0 comments)