90 matches found
Adobe Flash Player Heap Buffer Overflow (APSB17-04: CVE-2017-2986)
A heap buffer overflow vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...
CVE-2016-2986
IBM CVE-2016-2986 affects IBM Jazz-based products in CLM/RQM/RTC/RDNG/RELM/Rhapsody DM (versions 6.0.x prior to fixed 6.0.1 iFix6). The vulnerability is an XSS that lets remote authenticated users inject arbitrary JavaScript/HTML via unspecified vectors, potentially impacting credentials in a tru...
Ubuntu 14.04 LTS / 16.04 LTS : dosfstools vulnerabilities (USN-2986-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2986-1 advisory. Hanno Bck discovered that dosfstools incorrectly handled certain malformed filesystems. A local attacker could use this issue to cause...
CVE-2015-2986
The CVE pertains to rakuto.net hitSuji (rktSNS2) 0.2.2b, described as a cross‑site scripting (XSS) vulnerability that could allow remote attackers to inject arbitrary script or HTML via unspecified vectors. The NVD/NIST entries report a base CVSSv2 score of 4.3 (Medium), with impact limited to pa...
Debian: Security Advisory (DSA-2986-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2014-2986
The CVE-2014-2986 issue affects Xen 4.4.x running on ARM, where the vgic_distr_mmio_write function in the GIC distributor (arch/arm/vgic.c) can dereference an invalid pointer via unspecified vectors, enabling a local guest to trigger a denial of service and host crash. Multiple sources (including...
CVE-2012-2986
Affected software/variant: HP SAN/iQ Virtual SAN Appliance (9.5 released prior) with the lhn/public/network/ping component. Vulnerability details: Remote authenticated users can execute arbitrary commands via shell metacharacters in specific parameters (the first, third, or fourth parameter as ci...
CVE-2012-2986
creationtimestamp| type| source ---|---|--- 2012-02-17 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18893 2012-05-21 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18901...
CVE-2011-3649
Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D aka D2D API is used on Windows in conjunction with the Azure graphics back-end, allow remote attackers to bypass the Same Origin Policy, and obtain sensitive image data from a different domain, by inserting this data into a canvas. NOTE:...
Design/Logic Flaw
Mozilla Firefox 7.0 and Thunderbird 7.0, when the Direct2D aka D2D API is used on Windows in conjunction with the Azure graphics back-end, allow remote attackers to bypass the Same Origin Policy, and obtain sensitive image data from a different domain, by inserting this data into a canvas. NOTE:...
CVE-2011-3649
CVE-2011-3649 affects Mozilla Firefox 7.0 and Thunderbird 7.0 on Windows when using Direct2D with the Azure graphics backend, allowing cross-origin image data to be read via a manipulated canvas (Same Origin Policy bypass). The issue stems from a regression introduced by CVE-2011-2986. According ...
Mozilla Products Multiple Vulnerabilities (Sep 2011) - Windows
Mozilla Firefox/Thunderbird/Seamonkey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mozilla Products Multiple Vulnerabilities - Sep 11 (Windows)
The host is installed with Mozilla firefox/thunderbird/seamonkey and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbmozillaprdtsmultvulnsep11win02.nasl 7024 2017-08-30 11:51:43Z teissa $ Mozilla Products Multiple Vulnerabilities - Sep 11 Windows Authors: Madhuri D...
SUSE: Security Advisory for MozillaFirefox, MozillaThunderbird, seamonkey (SUSE-SA:2011:037)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for mozvoikko FEDORA-2011-11106
Check for the Version of mozvoikko OpenVAS Vulnerability Test Fedora Update for mozvoikko FEDORA-2011-11106 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Fedora Update for perl-Gtk2-MozEmbed FEDORA-2011-11106
Check for the Version of perl-Gtk2-MozEmbed OpenVAS Vulnerability Test Fedora Update for perl-Gtk2-MozEmbed FEDORA-2011-11106 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
Fedora Update for xulrunner FEDORA-2011-11106
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for firefox FEDORA-2011-11106
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for gnome-python2-extras FEDORA-2011-11106
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for mozvoikko FEDORA-2011-11106
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...