144 matches found
CVE-2016-1978
Use-after-free vulnerability in the ssl3HandleECDHServerKeyExchange function in Mozilla Network Security Services NSS before 3.21, as used in Mozilla Firefox before 44.0, allows remote attackers to cause a denial of service or possibly have unspecified other impact by making an SSL 1 DHE or 2 ECD...
CVE-2016-1978
Summary: CVE-2016-1978 is a use-after-free flaw in NSS related to ECDH/DHE TLS handshakes. The issue occurs in ssl3_HandleECDHServerKeyExchange and can allow a remote attacker to cause a denial of service or other impact during high memory consumption. It affects NSS before 3.21 as used in Mozill...
CVE-2016-1978
Use-after-free vulnerability in the ssl3HandleECDHServerKeyExchange function in Mozilla Network Security Services NSS before 3.21, as used in Mozilla Firefox before 44.0, allows remote attackers to cause a denial of service or possibly have unspecified other impact by making an SSL 1 DHE or 2 ECD...
Mozilla Firefox Multiple Vulnerabilities (Jan 2016) - Windows
Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...
Oracle: Security Advisory (ELSA-2015-1978)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RedHat Update for kernel RHSA-2015:1978-01
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Linux 7 : kernel (ELSA-2015-1978)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-1978 advisory. - netdrv virtio-net: drop NETIFFFRAGLIST Jason Wang 1247839 1247840 CVE-2015-5156 - fs dcache: dwalk might skip too much Denys Vlasenko 1173812 1173813...
CVE-2015-1978
CVE-2015-1978 affects IBM Tivoli Directory Server / ISDS: cross-site scripting due to improper validation of user-supplied input. A remote attacker can inject arbitrary script/HTML via unspecified vectors, potentially stealing cookie-based credentials when a crafted URL is visited. Affected produ...
CVE-2012-1978
CVE-2012-1978 refers to CSRF vulnerabilities in Simple PHP Agenda 2.2.8 and earlier. The flaws let an attacker remotely hijack administrator authentication to perform privileged actions via crafted requests to: (1) add an administrator (auth/process.php), (2) delete an administrator (auth/admin/a...
Simple PHP Agenda <= 2.2.8 CSRF (Add Admin - Add Event)
No description provided by source. +--------------------------------------------------------------------------------------------------------------------------------+ Exploit Title : Simple PHP Agenda = 2.2.8 CSRF Add Admin - Add Event Date : 29-03-2012 Author : Ivano Binetti http://ivanobinetti.c...
CVE-2014-1978
The CVE-2014-1978 issue concerns the NTT DOCOMO sp mode mail application for Android (versions 6100–6300 on Android 4.0.x and 6130–6700 on Android 4.1–4.4). The vulnerability arises from the application link interface, which writes message content to the device’s SD card during email composition....
SuSE 11.3 Security Update : gimp (SAT Patch Number 8856)
This update fixes the following security issues with gimp : - XWD plugin gnew integer overflow. CVE-2013-1913. bnc853423 - XWD plugin color map heap-based buffer overflow. CVE-2013-1978. bnc853425 - memory corruption via XWD files CVE-2012-5576. bnc791372 %NASLMINLEVEL 70300 C Tenable Network...
GIMP XWD File Handling Heap Buffer Overflow (CVE-2013-1978)
A heap buffer overflow vulnerability leading to code execution has been reported in GNU Image Manipulation Program GIMP. The vulnerability is due to insufficient validation of certain fields while parsing XWD files. Remote attackers can exploit this vulnerability by enticing the target user to op...
Ubuntu Update for gimp USN-2051-1
Check for the Version of gimp OpenVAS Vulnerability Test $Id: gbubuntuUSN20511.nasl 8456 2018-01-18 06:58:40Z teissa $ Ubuntu Update for gimp USN-2051-1 Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...
Fedora 19 : gimp-2.8.10-4.fc19 (2013-22776)
This update fixes buffer overflows in the XWD loader. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora Update for gimp FEDORA-2013-22771
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2013-1978
CVE-2013-1978 is a heap-based buffer overflow in the GIMP XWD plugin (read_xwd_cols) affecting GIMP 2.6.9 and earlier. An XWD image dump with more colors than the color map entries can cause a crash and may allow arbitrary code execution. The vulnerability is tied to the X Window Dump (XWD) plugi...
CVE-2013-1978
Heap-based buffer overflow in the readxwdcols function in file-xwd.c in the X Window Dump XWD plug-in in GIMP 2.6.9 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via an X Window System XWD image dump with more colors than color map...
[SECURITY] [DSA 2813-1] gimp security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2813-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 09, 2013 http://www.debian.org/security/faq -...
[USN-2051-1] GIMP vulnerability
========================================================================== Ubuntu Security Notice USN-2051-1 December 09, 2013 gimp vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...