EUVD-2010-1152

Malware in sbrugna...

CVE-2010-1120

Unspecified vulnerability in Safari 4 on Apple Mac OS X 10.6 allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by Charlie Miller during a Pwn2Own competition at CanSecWest 2010...

CVE-2010-1117

Heap-based buffer overflow in Internet Explorer 8 on Microsoft Windows 7 allows remote attackers to discover the base address of a Windows .dll file, and possibly have unspecified other impact, via unknown vectors, as demonstrated by Peter Vreugdenhil during a Pwn2Own competition at CanSecWest 20...

Design/Logic Flaw

Unspecified vulnerability in Safari 4 on Apple Mac OS X 10.6 allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by Charlie Miller during a Pwn2Own competition at CanSecWest 2010...

Design/Logic Flaw

Unspecified vulnerability in Internet Explorer 8 on Microsoft Windows 7 allows remote attackers to execute arbitrary code via unknown vectors, possibly related to a use-after-free issue, as demonstrated by Peter Vreugdenhil during a Pwn2Own competition at CanSecWest 2010...

Design/Logic Flaw

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on Mac OS X 10.4, and Safari on Apple iPhone OS allows remote attackers to execute arbitrary code or cause a denial of service application crash, or read the SMS database...

Design/Logic Flaw

Mozilla Firefox 3.6.x before 3.6.3 does not properly manage the scopes of DOM nodes that are moved from one document to another, which allows remote attackers to conduct use-after-free attacks and execute arbitrary code via unspecified vectors involving improper interaction with garbage collectio...

CVE-2010-1120

CVE-2010-1120 is tied to an unchecked index issue in Apple Type Services’ handling of embedded fonts, allowing remote code execution in affected Apple OS X components. Publicly documented impact includes Safari 4 on Mac OS X 10.6 and Apple Preview (libFontParser.dylib) with a SpecialEncoding heap...

CVE-2010-1120

Unspecified vulnerability in Safari 4 on Apple Mac OS X 10.6 allows remote attackers to execute arbitrary code via unknown vectors, as demonstrated by Charlie Miller during a Pwn2Own competition at CanSecWest 2010...

CVE-2010-1117

Heap-based buffer overflow in Internet Explorer 8 on Microsoft Windows 7 allows remote attackers to discover the base address of a Windows .dll file, and possibly have unspecified other impact, via unknown vectors, as demonstrated by Peter Vreugdenhil during a Pwn2Own competition at CanSecWest 20...

CVE-2010-1118

Technical details for CVE-2010-1118 are not publicly available in the provided connected documents. The Initial Description notes an unspecified vulnerability in IE8 on Windows 7. Monitor for updates for any concrete impact, affected products, or fixes.

CVE-2010-1121

CVE-2010-1121 affects Mozilla Firefox 3.6.x prior to 3.6.3. The issue is a DOM scope handling flaw when nodes are moved across documents, enabling use-after-free conditions that can lead to remote code execution. Exploitation was demonstrated in a Pwn2Own event; no explicit exploit details are pr...

CVE-2010-1121

Mozilla Firefox 3.6.x before 3.6.3 does not properly manage the scopes of DOM nodes that are moved from one document to another, which allows remote attackers to conduct use-after-free attacks and execute arbitrary code via unspecified vectors involving improper interaction with garbage collectio...