Threat Encyclopedia

Browse the Fortiguard Labs extensive encyclopedia of threats. Click any title to view more details of the threat. Can't find what you are looking for? Try using the search bar above to find a specific threat description.

Security researcher Stuart Larsen reported two issues with HTTP/2 resulting in integer underflows that lead to intentional aborts...

Jun 22, 2016
Security researcher Johnathan Kuskos reported that Firefox is sending data in the body of XMLHttpRequest (XHR) HEAD requests,...

Jun 22, 2016
Mozilla developer Boris Zbarsky discovered that the debugger will work with some objects while bypassing XrayWrappers. This could...

Jun 22, 2016
Brian Smith reported that delegated Online Certificate Status Protocol (OCSP) responder certificates fail to recognize the id-pkix-ocsp-nocheck...

Jun 22, 2016
Add-on authors Jason Hamilton and Peter Arremann with AMO editor Sylvain Giroux reported a vulnerability when a panel is created...

Jun 22, 2016
Security researcher Abdulrahman Alqabandi reported an issue where an attacker can load an arbitrary web page but the addressbar's...

Jun 22, 2016
Mozilla security researcher moz_bug_r_a4 reported that through an interaction of frames and browser history it was possible to...

Jun 22, 2016
Security researcher Abhishek Arya (Inferno) of the Google Chrome Security Team and Mozilla security developer Gary Kwong used...

Jun 22, 2016
Security researcher Mario Gomes reported that when a previously loaded image on a page is drag and dropped into content after...

Jun 22, 2016
Mozilla community member Watson Ladd reported that the implementation of Elliptical Curve Cryptography (ECC) multiplication for...

Jun 22, 2016
Security researcher Muneaki Nishimura (nishimunea) of Recruit Technologies Co., Ltd. reported that the chrome.tabs.update API...

Jun 22, 2016
Security researcher sushi Anton Larsson reported that when paired fullscreen and pointerlock requests are done in combination...

Jun 22, 2016
Security researcher Hanno B ck reported that calculations with mp_div and mp_exptmod in Network Security Services (NSS) can produce...

Jun 22, 2016
Mozilla developer Ehsan Akhgari reported two issues with Cross-origin resource sharing (CORS) 'preflight' requests.

Jun 22, 2016
Mozilla security researcher Jesse Ruderman reported that events in the plugin handler can be manipulated by web content to bypass...

Jun 22, 2016
Security researcher Nils reported that specially crafted web content using the onreadystatechange event and reloading of pages...

Jun 22, 2016
Developer Patrick Cozzi reported a crash in some circumstances when using the Cesium JavaScript library to generate WebGL content....

Jun 22, 2016
Security researcher Masato Kinugawa reported that opening a target page using a POST to the url prefixed with the feed: protocol...

Jun 22, 2016
Mozilla security researcher moz_bug_r_a4 reported a mechanism to exploit the control when set to the file type in order to get...

Jun 22, 2016
Security researcher Fr d ric Hoguin reported a mechanism where the Mozilla Windows updater could be used to overwrite arbitrary...

Jun 22, 2016