9803 matches found
Memory corruption
Google Chrome before 10.0.648.127 does not properly handle attributes, which allows remote attackers to cause a denial of service DOM tree corruption or possibly have unspecified other impact via a crafted document...
CVE-2011-1191
Google Chrome is affected by CVE-2011-1191 (use-after-free in the handling of DOM URLs) prior to version 10.0.648.127. The issue can allow remote denial of service or possibly other impact. The connected documents specify the vulnerable component as Chrome (DOM URL handling) and the affected rang...
CVE-2011-1204
Google Chrome before 10.0.648.127 does not properly handle attributes, which allows remote attackers to cause a denial of service DOM tree corruption or possibly have unspecified other impact via a crafted document...
CVE-2011-1191
Use-after-free vulnerability in Google Chrome before 10.0.648.127 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of DOM URLs...
CVE-2011-1204
Removed by vendor...
CVE-2011-1191
Removed by vendor...
Google Chrome < 10.0.648.127 Multiple Vulnerabilities
Binary data 5812.pasl...
Mozilla Firefox document.write And DOM Insertions Memory Corruption (CVE-2010-3765)
Mozilla Firefox is a web browser developed by Mozilla Foundation. A memory corruption vulnerability has been reported in Mozilla Firefox. The vulnerability is due to a buffer overflow in Mozilla Firefox while executing specially crafted JavaScript call document.write combined with DOM insertions....
CVE-2011-0116
Use-after-free vulnerability in the setOuterText method in the htmlelement library in WebKit, as used in Apple iTunes before 10.2 on Windows, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via vectors related to DO...
CVE-2011-0115
The DOM level 2 implementation in WebKit, as used in Apple iTunes before 10.2 on Windows and Apple Safari, does not properly handle DOM manipulations associated with event listeners during processing of range objects, which allows man-in-the-middle attackers to execute arbitrary code or cause a...
Memory corruption
The DOM level 2 implementation in WebKit, as used in Apple iTunes before 10.2 on Windows and Apple Safari, does not properly handle DOM manipulations associated with event listeners during processing of range objects, which allows man-in-the-middle attackers to execute arbitrary code or cause a...
CVE-2011-0116
Use-after-free vulnerability in the setOuterText method in the htmlelement library in WebKit, as used in Apple iTunes before 10.2 on Windows, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via vectors related to DO...
Design/Logic Flaw
Use-after-free vulnerability in the setOuterText method in the htmlelement library in WebKit, as used in Apple iTunes before 10.2 on Windows, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via vectors related to DO...
CVE-2011-0115
The DOM level 2 implementation in WebKit, as used in Apple iTunes before 10.2 on Windows and Apple Safari, does not properly handle DOM manipulations associated with event listeners during processing of range objects, which allows man-in-the-middle attackers to execute arbitrary code or cause a...
UBUNTU-CVE-2011-0116
Use-after-free vulnerability in the setOuterText method in the htmlelement library in WebKit, as used in Apple iTunes before 10.2 on Windows, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via vectors related to DO...
UBUNTU-CVE-2011-0115
The DOM level 2 implementation in WebKit, as used in Apple iTunes before 10.2 on Windows and Apple Safari, does not properly handle DOM manipulations associated with event listeners during processing of range objects, which allows man-in-the-middle attackers to execute arbitrary code or cause a...
CVE-2011-0115
CVE-2011-0115 concerns the WebKit DOM Level 2 implementation as used by Apple Safari and iTunes before 10.2 on Windows. The vulnerability stems from improper handling of DOM manipulations tied to event listeners while processing range objects, enabling a remote attacker to trigger arbitrary code ...
CVE-2011-0115
The DOM level 2 implementation in WebKit, as used in Apple iTunes before 10.2 on Windows and Apple Safari, does not properly handle DOM manipulations associated with event listeners during processing of range objects, which allows man-in-the-middle attackers to execute arbitrary code or cause a...
ZDI-11-096: Apple Safari WebKit Range Object Remote Code Execution Vulnerability
ZDI-11-096: Apple Safari WebKit Range Object Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-096 March 2, 2011 -- CVE ID: CVE-2011-0115 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Apple -- Affected Products: Apple WebKit -- TippingPointTM IPS...
ZDI-11-095: Apple Webkit Error Message Mutation Remote Code Execution Vulnerability
ZDI-11-095: Apple Webkit Error Message Mutation Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-095 March 2, 2011 -- CVE ID: CVE-2010-1824 -- CVSS: 9.7, AV:N/AC:L/Au:N/C:C/I:P/A:C -- Affected Vendors: Apple -- Affected Products: Apple WebKit -- TippingPointT...