85 matches found
Debian DSA-2553-1 : iceweasel - several vulnerabilities
Several vulnerabilities have been discovered in Iceweasel, a web browser based on Firefox. The included XULRunner library provides rendering services for several other applications included in Debian. The reported vulnerabilities could lead to the execution of arbitrary code or the bypass of...
MozillaFirefox: Update to version 15 (critical)
Mozilla Firefox, Thunderbird, xulrunner, seamonkey 15.0 update bnc777588 MFSA 2012-57/CVE-2012-1970 Miscellaneous memory safety hazards MFSA 2012-58/CVE-2012-1972/CVE-2012-1973/CVE-2012-1974/CVE-2012-1 975 CVE-2012-1976/CVE-2012-3956/CVE-2012-3957/CVE-2012-3958/CVE- 2012-3959...
CVE-2012-3969
Integer overflow in the nsSVGFEMorphologyElement::Filter function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code via a crafted SVG filter that...
CVE-2012-3969
Integer overflow in the nsSVGFEMorphologyElement::Filter function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code via a crafted SVG filter that...
CVE-2012-3969
CVE-2012-3969 is an integer overflow in the nsSVGFEMorphologyElement::Filter function of Mozilla Firefox (and related Mozilla apps) prior to version 15.0, Firefox ESR 10.x prior to 10.0.7, and corresponding Thunderbird/SeaMonkey builds. Assigned impact is a heap-based buffer overflow that enables...
CVE-2012-3969
Integer overflow in the nsSVGFEMorphologyElement::Filter function in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, Thunderbird ESR 10.x before 10.0.7, and SeaMonkey before 2.12 allows remote attackers to execute arbitrary code via a crafted SVG filter that...
Google Chrome Multiple Vulnerabilities - February 12 (MAC OS X)
The host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnfeb12macosx.nasl 6521 2017-07-04 14:51:10Z cfischer $ Google Chrome Multiple Vulnerabilities - February 12 MAC OS X Authors: Madhuri D Copyright: Copyright c 20...
FreeBSD : chromium -- multiple vulnerabilities (fe1976c2-5317-11e1-9e99-00262d5ed8ee)
Google Chrome Releases reports : 73478 Low CVE-2011-3953: Avoid clipboard monitoring after paste event. Credit to Daniel Cheng of the Chromium development community. 92550 Low CVE-2011-3954: Crash with excessive database usage. Credit to Collin Payne. 93106 High CVE-2011-3955: Crash aborting an...
CVE-2011-3969
Technical details for CVE-2011-3969 are not provided in the connected documents. The initial description notes a use-after-free in Chrome before 17.0.963.46, but no product/version specifics or remediation are present in the supplied sources. Monitor for updates.
Panda Antivirus Buffer Overflow
Buffer overflow in Panda Antivirus before 20-07-2007 allows remote attackers to execute arbitrary code via a crafted EXE file, resulting from an Integer Cast Around. OpenVAS Vulnerability Test Panda Antivirus Buffer Overflow LSS-NVT-2010-041 Developed by LSS Security Team Copyright C 2010 LSS Thi...
CVE-2009-3969
CVE-2009-3969 affects Faslo Player 7.0 via a stack-based buffer overflow in the .m3u playlist processing function. The vulnerability allows remote attackers to trigger a denial of service (application crash) or potentially execute arbitrary code by supplying a long string inside an .m3u playlist....
CVE-2009-3969
creationtimestamp| type| source ---|---|--- 2009-08-24 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/9487...
Fedora Update for bitlbee FEDORA-2008-7761
Check for the Version of bitlbee OpenVAS Vulnerability Test Fedora Update for bitlbee FEDORA-2008-7761 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for bitlbee FEDORA-2008-7761
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
FreeBSD Ports: bitlbee
The remote host is missing an update to the system as announced in the referenced advisory. VID 24ec781b-8c11-11dd-9923-0016d325a0ed OpenVAS Vulnerability Test $ Description: Auto generated from VID 24ec781b-8c11-11dd-9923-0016d325a0ed Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: bitlbee
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Gentoo Security Advisory GLSA 200809-14 (bitlbee)
The remote host is missing updates announced in advisory GLSA 200809-14. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200809-14 (bitlbee)
The remote host is missing updates announced in advisory GLSA 200809-14. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2008-3969
CVE-2008-3969 affects BitlBee (pre-1.2.3). Root cause tied to an incomplete fix for CVE-2008-3920, with multiple sources noting the issue as a remote login/account hijack/overwrite risk stemming from inconsistent handling of the USTATUS_IDENTIFIED state. OpenVAS/Fedora advisories document remedia...
CVE-2008-3969
Multiple unspecified vulnerabilities in BitlBee before 1.2.3 allow remote attackers to "overwrite" and "hijack" existing accounts via unknown vectors related to "inconsistent handling of the USTATUSIDENTIFIED state." NOTE: this issue exists because of an incomplete fix for CVE-2008-3920...