Attachment #90724 for bug #127941

View | Details | Raw Unified | Return to bug 127941 | Differences between
Collapse All | Expand All





-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
  <vuln vid="fb84d5dd-9528-11dd-9a00-001999392805">
    <topic>opera -- multiple vulnerabilities</topic>
    <affects>
      <package>
	<name>opera</name>
	<range><lt>9.60.20081004</lt></range>
      </package>
    </affects>
    <description>
      <body xmlns="http://www.w3.org/1999/xhtml">
	<p>Opera reports:</p>
	<blockquote cite="http://www.opera.com/support/search/view/901/">
	  <p>If a malicious page redirects Opera to a specially crafted 
             address (URL), it can cause Opera to crash. Given sufficient 
             address content, the crash could cause execution of code 
             controlled by the attacking page.</p>
	</blockquote>
        <blockquote cite="http://www.opera.com/support/search/view/902/">
          <p>Once a Java applet has been cached, if a page can predict the 
             cache path for that applet, it can load the applet from the 
             cache, causing it to run in the context of the local machine. 
             This allows it to read other cache files on the computer or 
             perform other normally more restrictive actions. These files 
             could contain sensitive information, which could then be sent 
             to the attacker.</p>
        </blockquote>
      </body>
    </description>
    <references>
      <url>http://www.opera.com/support/search/view/901/</url>
      <url>http://www.opera.com/support/search/view/902/</url>
    </references>
    <dates>
      <discovery>2008-10-04</discovery>
      <entry>2008-10-08</entry>
    </dates>
  </vuln>

  <vuln vid="4775c807-8f30-11dd-821f-001cc0377035">
    <topic>mysql -- command line client input validation vulnerability</topic>
    <affects>

Return to bug 127941

Lines 34-39 Link Here

(-)vuxml/vuln.xml (+38 lines)
34		34
35	-->	35	-->
36	<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">	36	<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
		37	<vuln vid="fb84d5dd-9528-11dd-9a00-001999392805">
		38	<topic>opera -- multiple vulnerabilities</topic>
		39	<affects>
		40	<package>
		41	<name>opera</name>
		42	<range><lt>9.60.20081004</lt></range>
		43	</package>
		44	</affects>
		45	<description>
		46	<body xmlns="http://www.w3.org/1999/xhtml">
		47	<p>Opera reports:</p>
		48	<blockquote cite="http://www.opera.com/support/search/view/901/">
		49	<p>If a malicious page redirects Opera to a specially crafted
		50	address (URL), it can cause Opera to crash. Given sufficient
		51	address content, the crash could cause execution of code
		52	controlled by the attacking page.</p>
		53	</blockquote>
		54	<blockquote cite="http://www.opera.com/support/search/view/902/">
		55	<p>Once a Java applet has been cached, if a page can predict the
		56	cache path for that applet, it can load the applet from the
		57	cache, causing it to run in the context of the local machine.
		58	This allows it to read other cache files on the computer or
		59	perform other normally more restrictive actions. These files
		60	could contain sensitive information, which could then be sent
		61	to the attacker.</p>
		62	</blockquote>
		63	</body>
		64	</description>
		65	<references>
		66	<url>http://www.opera.com/support/search/view/901/</url>
		67	<url>http://www.opera.com/support/search/view/902/</url>
		68	</references>
		69	<dates>
		70	<discovery>2008-10-04</discovery>
		71	<entry>2008-10-08</entry>
		72	</dates>
		73	</vuln>
		74
37	<vuln vid="4775c807-8f30-11dd-821f-001cc0377035">	75	<vuln vid="4775c807-8f30-11dd-821f-001cc0377035">
38	<topic>mysql -- command line client input validation vulnerability</topic>	76	<topic>mysql -- command line client input validation vulnerability</topic>
39	<affects>	77	<affects>