78 matches found
Adobe Shockwave Player <= 11.6.3.633 Multiple Code Execution Vulnerabilities (APSB12-02) (Mac OS X)
The remote Mac OS X host contains a version of Adobe Shockwave Player that is 11.6.3.633 or earlier. It is, therefore, affected by multiple code execution vulnerabilities. - Multiple memory corruption issues exist related to the Shockwave 3D Asset that allow code execution. CVE-2012-0757,...
CVE-2014-0761
The CVE-2014-0761 vulnerability affects CG Automation’s ePAQ-9410 Substation Gateway DNP3 driver. The issue is improper input validation in the DNP3 driver, where a crafted TCP packet can cause an infinite loop or process crash, leading to a denial of service. Affects all versions of the ePAQ-941...
CG Automation Improper Input Validation
OVERVIEW Researchers Adam Crain of Automatak and Chris Sistrunk of Mandiant have identified an improper input validation vulnerability in the CG Automation ePAQ-9410 Substation Gateway DNP3 protocol components. CG Automation has produced an updated software that mitigates this vulnerability. CG...
openSUSE: Security Advisory for Mozilla (openSUSE-SU-2013:0149-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
CVE-2013-0761
CVE-2013-0761 is a use-after-free vulnerability in Firefox’s mozilla::TrackUnionStream::EndTrack that could allow remote code execution or a denial of service via heap memory corruption. Affected products include Firefox before 18.0 (and ESR 17.x before 17.0.1), Thunderbird before 17.0.2 (and ESR...
Ubuntu Update for thunderbird USN-1681-2
Check for the Version of thunderbird OpenVAS Vulnerability Test $Id: gbubuntuUSN16812.nasl 8456 2018-01-18 06:58:40Z teissa $ Ubuntu Update for thunderbird USN-1681-2 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free...
Mozilla Firefox mozilla::TrackUnionStream::EndTrack堆释放后重用漏洞
BUGTRAQ ID: 57196 CVECAN ID: CVE-2013-0761 Firefox是一款非常流行的开源WEB浏览器。SeaMonkey是开源的Web浏览器、邮件和新闻组客户端、IRC会话客户端和HTML编辑器。Thunderbird是一个邮件客户端,支持IMAP、POP邮件协议以及HTML邮件格式。 Mozilla Firefox 18, ESR 17.0.1的mozilla::TrackUnionStream::EndTrack内存在堆释放后重用漏洞,可导致远程代码执行。 0 Mozilla Firefox 18.0 Mozilla Firefox ESR 17.0....
Security update available for Adobe Shockwave Player
Security update available for Adobe Shockwave Player Release date: February 14, 2012 Vulnerability identifier: APSB12-02 CVE number: CVE-2012-0757, CVE-2012-0758, CVE-2012-0759, CVE-2012-0760, CVE-2012-0761, CVE-2012-0762, CVE-2012-0763, CVE-2012-0764, CVE-2012-0766 Platform: Windows and Macintos...
CVE-2012-0761
The Shockwave 3D Asset component in Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2012-0757, CVE-2012-0760, CVE-2012-0762, CVE-2012-0763, CVE-2012-0764,...
CVE-2012-0761
Adobe Shockwave Player before 11.6.4.634 is affected by a vulnerability in the Shockwave 3D Asset component (CVE-2012-0761) that can lead to arbitrary code execution or a denial of service due to memory corruption via unspecified vectors. The Red Hat advisories reference the same family of vulner...
Shockwave Player <= 11.6.3.633 Multiple Code Execution Vulnerabilities (APSB12-02)
The remote Windows host contains a version of Adobe's Shockwave Player that is 11.6.3.633 or earlier. As such, it is potentially affected by multiple code execution vulnerabilities. - Multiple memory corruption issues exist related to the Shockwave 3D Asset that could lead to code execution...
CVE-2011-0761
CVE-2011-0761 affects Perl 5.10.x, where an attacker could cause a denial-of-service (NULL pointer dereference and crash) by injecting arguments into several I/O/dir-related calls (getpeername, readdir, closedir, getsockname, rewinddir, tell, telldir). The OpenVAS/Nessus/Gentoo entries confirm Pe...
CVE-2011-0761
creationtimestamp| type| source ---|---|--- 2011-05-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/35725...
CVE-2010-0761
CVE-2010-0761 affects CommodityRentals Books/eBooks Rentals Script; vulnerability is SQL injection in index.php, exploitable via the cat_id parameter in the gamecatalog action. Multiple sources corroborate the issue, including NVD entries describing arbitrary SQL execution with partial confidenti...
CVE-2010-0761
creationtimestamp| type| source ---|---|--- 2010-02-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/11402...
CVE-2009-0761
Cross-site scripting XSS vulnerability in online.asp in Team Board 1.x allows remote attackers to inject arbitrary web script or HTML via the lookname parameter...
CVE-2009-0761
CVE-2009-0761 describes a cross-site scripting (XSS) vulnerability in the age-old Team Board 1.x product, specifically in the online.asp component. The issue allows remote attackers to inject arbitrary web script or HTML via the lookname parameter. According to the sources, the CVSS base score is...
CVE-2009-0761
creationtimestamp| type| source ---|---|--- 2009-02-04 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/7982...
FreeBSD Ports: firefox
The remote host is missing an update to the system as announced in the referenced advisory. VID e9f9d232-0cb2-11d9-8a8a-000c41e2cdad OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
CVE-2008-0761
CVE-2008-0761 affects the Prince Clan Chess Club (com_pcchess) Joomla! extension (0.8 and earlier). The vulnerability is an SQL injection in index.php, exploitable via the user_id parameter in a players action, allowing remote attackers to execute arbitrary SQL commands. Documents consistently re...