Threat Encyclopedia

Browse the Fortiguard Labs extensive encyclopedia of threats. Click any title to view more details of the threat. Can't find what you are looking for? Try using the search bar above to find a specific threat description.

Security researcher Abhishek Arya (Inferno) of the Google Chrome Security Team used the Address Sanitizer tool to discover an...

Jun 22, 2016
Mozilla developer Boris Zbarsky reported that a malicious app could use the AlarmAPI to read the values of cross-origin references,...

Jun 22, 2016
Security researcher Armin Razmdjou discovered that a man-in-the-middle (MITM) attacker spoofing a Mozilla sub-domain could bypass...

Jun 22, 2016
Security researcher Bas Venis reported a mechanism where add-ons could be installed from a different source than user expectations....

Jun 22, 2016
Mozilla security researcher Jesse Ruderman discovered that using the toString function of XBL objects can lead to inappropriate...

Jun 22, 2016
Security researcher Jordi Chancel reported two issues involving addressbar spoofing.

Jun 22, 2016
Security researcher Tsubasa Iinuma reported a mechanism where the displayed addressbar can be spoofed to users. This issue involves...

Jun 22, 2016
Security researcher Jordi Chancel reported a method to spoof the contents of the addressbar. This uses a persistent menu within...

Jun 22, 2016
Security researcher Muneaki Nishimura reported that when certificate pinning is set to 'strict' mode, a period ('.') appended...

Jun 22, 2016
Mozilla developer Myk Melez reported that with specifically timed page navigation, the doorhanger notification for Web App installation...

Jun 22, 2016
Mozilla developer Fran ois Marier reported that the Firefox was unable to reach the Application Reputation service due to a bug...

Jun 22, 2016
Security researcher Mariusz Mlynski reported that when a user examines the profiler output on a malicious website containing specially...

Jun 22, 2016
Security researcher Holger Fuhrmannek reported that when the Mozilla updater is run, the updater can be manipulated to load the...

Jun 22, 2016
Security researcher James Forshaw, security researcher with Google Project Zero, reported that the Mozilla Maintenance Service...

Jun 22, 2016
Mozilla developer Olli Pettay discovered that the AutoWrapperChanger class fails to keep some javascript objects alive during...

Jun 22, 2016
Security researchers Byoungyoung Lee, Chengyu Song, and Taesoo Kim at the Georgia Tech Information Security Center (GTISC) reported...

Jun 22, 2016
Security researcher miaubiz used the Address Sanitizer tool to discover a buffer overflow in Canvas when specific bad height and...

Jun 22, 2016
Security researcher laf.intel reported a buffer overflow and out-of-bounds read in the libstagefright library while parsing invalid...

Jun 22, 2016
Security researcher Francis Gabriel of Quarkslab reported a heap-based buffer overflow in the way the Network Security Services...

Jun 22, 2016
Using the Address Sanitizer tool, security researcher Atte Kettunen from OUSPG discovered a buffer overflow when making capitalization...

Jun 22, 2016