92 matches found
CVE-2013-1997
Multiple buffer overflows in X.org libX11 1.5.99.901 1.6 RC1 and earlier allow X servers to cause a denial of service crash and possibly execute arbitrary code via crafted length or index values to the 1 XAllocColorCells, 2 XkbReadGetDeviceInfoReply, 3 XkbReadGeomShapes, 4 XkbReadGetGeometryReply...
CVE-2012-1998
Unspecified vulnerability in HP Systems Insight Manager SIM before 7.0 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, a different vulnerability than CVE-2012-1997...
CVE-2012-1997
Technical details for CVE-2012-1997 are not publicly provided in the supplied documents. No concrete vulnerable component, impact, or remediation is described here. Monitor for updates in official advisories and vendor notices to obtain specific information.
iDefense Security Advisory 10.11.11: Microsoft Internet Explorer Object Handling Memory Corruption Vulnerability
iDefense Security Advisory 10.11.11 http://labs.idefense.com/intelligence/vulnerabilities/ Oct 11, 2011 I. BACKGROUND Internet Explorer is a graphical web browser developed by Microsoft Corp. that has been included with Microsoft Windows since 1995. For more information about Internet Explorer,...
CVE-2011-1997
CVE-2011-1997 corresponds to a memory corruption vulnerability in Microsoft Internet Explorer where an OnLoad event handler mishandles references to deleted objects, allowing remote code execution via a crafted webpage. The issue affects Internet Explorer versions discussed in the connected advis...
Microsoft Internet Explorer Multiple Vulnerabilities (2586448)
This host is missing a critical security update according to Microsoft Bulletin MS11-081. OpenVAS Vulnerability Test $Id: secpodms11-081.nasl 6526 2017-07-05 05:43:52Z cfischer $ Microsoft Internet Explorer Multiple Vulnerabilities 2586448 Authors: Veerendra G.G Copyright: Copyright c 2011 SecPod...
Internet Explorer OnLoad Event Memory Corruption (MS11-081; CVE-2011-1997)
A memory corruption vulnerability has been reported in Internet Explorer. The vulnerability is due to an error in the way IE accesses objects that have been deleted. A remote attacker may exploit this vulnerability by enticing a user to open a malicious web-page. Successful exploitation may cause...
Microsoft Internet Explorer OnLoad Event CVE-2011-1997 Memory Corruption Vulnerability
Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks may cause denial-of-service conditions. Technologies Affected Avaya Aur...
CVE-2010-1997
Cross-site scripting XSS vulnerability in admin/edit.php in Saurus CMS 4.7.0 allows remote authenticated users, with "Article list" edit privileges, to inject arbitrary web script or HTML via the pealkiri parameter...
CVE-2010-1997
The CVE refers to a Cross-site Scripting (XSS) vulnerability in Saurus CMS 4.7.0, specifically in admin/edit.php. The issue is triggered by the HTTP POST parameter pealkiri, allowing remote authenticated users who have "Article list" edit privileges to inject arbitrary web script or HTML that exe...
CVE-2010-1997
creationtimestamp| type| source ---|---|--- 2010-05-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33976...
openSUSE Security Update : gmime (gmime-1997)
This update of gmime fixes a buffer overflow in the GMIMEUUENCODELEN macro which allowed possible code execution while processing uuencoded data. CVE-2010-0409: CVSS v2 Base Score: 5.8 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
CVE-2009-1997
CVE-2009-1997 concerns Oracle Database 10.2.0.3 and 11.1.0.7, with an unspecified vulnerability in the Authentication component (Oracle Net). It is remotely exploitable and can affect confidentiality via unknown vectors. The Oracle Database risk matrix lists this under the “Authentication” catego...
CVE-2009-1997
Unspecified vulnerability in the Authentication component in Oracle Database 10.2.0.3 and 11.1.0.7 allows remote attackers to affect confidentiality via unknown vectors...
SLES9: Security update for clamav
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: clamav For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5019327 within the SuSE...
SLES9: Security update for clamav
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: clamav For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5019327 within the SuSE...
Gentoo Security Advisory GLSA 200704-21 (ClamAV)
The remote host is missing updates announced in advisory GLSA 200704-21. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200704-21 (ClamAV)
The remote host is missing updates announced in advisory GLSA 200704-21. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2008-1997
The CVE refers to an issue in IBM DB2’s SYSPROC.ADMIN_SP_C/ADMIN_SP_C2 procedures. Affects IBM DB2 UDB when running versions 8.0–8.0 FP15 (prior to FP16 on 8.x), 9.1 (prior to FP4a), and 9.5 (prior to FP1). Remote authenticated users may execute arbitrary code via unknown vectors due to the ADMIN...
SuSE 10 Security Update : clamav (ZYPP Patch Number 3081)
The version update to 0.90.2 fixes among other things two security problems. CVE-2007-1745 / CVE-2007-1997 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29400...