Search

Find a vulnerability

Search criteria

    3 vulnerabilities found for Yahoo! Browser by Yahoo Japan Corporation

    JVNDB-2013-000045

    Vulnerability from jvndb - Published: 2013-05-27 15:04 - Updated:2013-05-27 15:04
    Severity
    N/A (UNKNOWN) - -
    Summary
    Yahoo! Browser vulnerable to address bar spoofing
    Details
    Yahoo! Browser contains an issue in displaying URL, which may result in the address bar being spoofed. Note that this vulnerability is different from JVN#55074201. Keita Haga of keitahaga.com reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000045.html",
      "dc:date": "2013-05-27T15:04+09:00",
      "dcterms:issued": "2013-05-27T15:04+09:00",
      "dcterms:modified": "2013-05-27T15:04+09:00",
      "description": "Yahoo! Browser contains an issue in displaying URL, which may result in the address bar being spoofed.\r\nNote that this vulnerability is different from JVN#55074201.\r\n\r\nKeita Haga of keitahaga.com reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000045.html",
      "sec:cpe": {
        "#text": "cpe:/a:misc:yahoo_japan_yahoo_browser",
        "@product": "Yahoo! Browser",
        "@vendor": "Yahoo Japan Corporation",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "4.3",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
        "@version": "2.0"
      },
      "sec:identifier": "JVNDB-2013-000045",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN31817913/index.html",
          "@id": "JVN#31817913",
          "@source": "JVN"
        },
        {
          "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2316",
          "@id": "CVE-2013-2316",
          "@source": "CVE"
        },
        {
          "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2316",
          "@id": "CVE-2013-2316",
          "@source": "NVD"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "Yahoo! Browser vulnerable to address bar spoofing"
    }

    JVNDB-2013-000037

    Vulnerability from jvndb - Published: 2013-04-26 15:50 - Updated:2013-04-26 15:50
    Severity
    N/A (UNKNOWN) - -
    Summary
    Yahoo! Browser vulnerable to address bar spoofing
    Details
    Yahoo! Browser contains an issue when opening a new window, which may result in the address bar being spoofed. Keita Haga of keitahaga.com reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000037.html",
      "dc:date": "2013-04-26T15:50+09:00",
      "dcterms:issued": "2013-04-26T15:50+09:00",
      "dcterms:modified": "2013-04-26T15:50+09:00",
      "description": "Yahoo! Browser contains an issue when opening a new window, which may result in the address bar being spoofed.\r\n\r\nKeita Haga of keitahaga.com reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2013/JVNDB-2013-000037.html",
      "sec:cpe": {
        "#text": "cpe:/a:misc:yahoo_japan_yahoo_browser",
        "@product": "Yahoo! Browser",
        "@vendor": "Yahoo Japan Corporation",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "4.3",
        "@severity": "Medium",
        "@type": "Base",
        "@vector": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
        "@version": "2.0"
      },
      "sec:identifier": "JVNDB-2013-000037",
      "sec:references": [
        {
          "#text": "https://jvn.jp/en/jp/JVN55074201/",
          "@id": "JVN#55074201",
          "@source": "JVN"
        },
        {
          "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2307",
          "@id": "CVE-2013-2307",
          "@source": "CVE"
        },
        {
          "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-2307",
          "@id": "CVE-2013-2307",
          "@source": "NVD"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "Yahoo! Browser vulnerable to address bar spoofing"
    }

    JVNDB-2012-000070

    Vulnerability from jvndb - Published: 2012-07-13 15:00 - Updated:2012-07-20 12:12
    Severity
    N/A (UNKNOWN) - -
    Summary
    Yahoo! Browser vulnerable in the WebView class
    Details
    Yahoo! Browser contains a vulnerability in the WebView class. Yahoo! Browser is a web browser for Android devices. Yahoo! Browser contains a vulnerability in the WebView class. Gaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
    Impacted products
    Show details on JVN DB website

    {
      "@rdf:about": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000070.html",
      "dc:date": "2012-07-20T12:12+09:00",
      "dcterms:issued": "2012-07-13T15:00+09:00",
      "dcterms:modified": "2012-07-20T12:12+09:00",
      "description": "Yahoo! Browser contains a vulnerability in the WebView class.\r\n\r\nYahoo! Browser is a web browser for Android devices. Yahoo! Browser contains a vulnerability in the WebView class.\r\n\r\nGaku Mochizuki of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
      "link": "https://jvndb.jvn.jp/en/contents/2012/JVNDB-2012-000070.html",
      "sec:cpe": {
        "#text": "cpe:/a:misc:yahoo_japan_yahoo_browser",
        "@product": "Yahoo! Browser",
        "@vendor": "Yahoo Japan Corporation",
        "@version": "2.2"
      },
      "sec:cvss": {
        "@score": "2.6",
        "@severity": "Low",
        "@type": "Base",
        "@vector": "AV:N/AC:H/Au:N/C:P/I:N/A:N",
        "@version": "2.0"
      },
      "sec:identifier": "JVNDB-2012-000070",
      "sec:references": [
        {
          "#text": "http://jvn.jp/en/jp/JVN46088915/index.html",
          "@id": "JVN#46088915",
          "@source": "JVN"
        },
        {
          "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2645",
          "@id": "CVE-2012-2645",
          "@source": "CVE"
        },
        {
          "#text": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-2645",
          "@id": "CVE-2012-2645",
          "@source": "NVD"
        },
        {
          "#text": "https://www.ipa.go.jp/en/security/vulnerabilities/cwe.html",
          "@id": "CWE-Other",
          "@title": "No Mapping(CWE-Other)"
        }
      ],
      "title": "Yahoo! Browser vulnerable in the WebView class"
    }