Lucene search
K

9803 matches found

securityvulns
securityvulns
added 2011/03/03 12:0 a.m.57 views

ZDI-11-097: Apple Webkit setOuterText Memory Corruption Remote Code Execution Vulnerability

ZDI-11-097: Apple Webkit setOuterText Memory Corruption Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-097 March 2, 2011 -- CVE ID: CVE-2011-0116 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Apple -- Affected Products: Apple WebKit --...

7.6CVSS0.6AI score0.03181EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2011/03/02 12:0 a.m.25 views

Apple Safari WebKit Range Object Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari's WebKit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how WebKit...

9CVSS2.7AI score0.03181EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2011/03/02 12:0 a.m.37 views

Apple Webkit setOuterText Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the setOuterText...

9CVSS2.5AI score0.03181EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2011/02/01 12:0 a.m.34 views

Microsoft Internet Explorer 'ReleaseInterface()' Remote Code Execution Vulnerability

This host is installed with Internet Explorer and is prone to remote code execution vulnerability. This NVT has been replaced by NVT secpodms11-018.nasl OID:1.3.6.1.4.1.25623.1.0.900278. OpenVAS Vulnerability Test $Id: gbmsiereleaseinterfacecodeexecutionvuln.nasl 6526 2017-07-05 05:43:52Z cfische...

9.3CVSS0.3AI score0.31016EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2011/02/01 12:0 a.m.21 views

Microsoft Internet Explorer Incorrect GUI Display Vulnerability

This host has installed with Internet Explorer and is prone to incorrect GUI display vulnerability. OpenVAS Vulnerability Test $Id: gbmsieincorrectguidisplayvuln.nasl 6526 2017-07-05 05:43:52Z cfischer $ Microsoft Internet Explorer Incorrect GUI Display Vulnerability Authors: Sooraj KS Updated By...

9.3CVSS0.2AI score0.22292EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2011/02/01 12:0 a.m.19 views

Microsoft Internet Explorer 'ReleaseInterface()' RCE Vulnerability

Internet Explorer is prone to a remote code execution RCE vulnerability. This VT has been deprecated and replaced by the VT with the OID: 1.3.6.1.4.1.25623.1.0.900278. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright ...

9.3CVSS8.4AI score0.31016EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2011/02/01 12:0 a.m.22 views

Microsoft Internet Explorer Incorrect GUI Display Vulnerability

This host has installed with Internet Explorer and is prone to incorrect GUI display vulnerability. This VT has been deprecated and replaced by the VT with the OID: 1.3.6.1.4.1.25623.1.0.902334. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced...

9.3CVSS6.5AI score0.22292EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2011/01/21 12:0 a.m.39 views

SuSE 11.1 Security Update : Mozilla Firefox (SAT Patch Number 3693)

Mozilla Firefox 3.6 was updated to update 3.6.13 fixing several security issues. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain...

9.3CVSS8.9AI score0.08669EPSS
Exploits1References40
Tenable Nessus
Tenable Nessus
added 2011/01/21 12:0 a.m.237 views

SuSE 11.1 Security Update : Mozilla XULrunner (SAT Patch Number 3694)

Mozilla XULRunner 1.9.1 was updated to update 1.9.1.16 fixing several security issues. - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain...

9.3CVSS8.9AI score0.08669EPSS
Exploits1References40
securityvulns
securityvulns
added 2011/01/20 12:0 a.m.41 views

Уязвимости в xAjax и xajax_jquery_plugin

Здравствуйте 3APA3A! Сообщаю вам о найденных мною Cross-Site Scripting и Full path disclosure уязвимостях в xAjax и xajaxjqueryplugin. XSS WASC-08: http://site/cms/’;alertdocument.cookie;/ Это DOM Based XSS. Данная уязвимость в частности имеет место в MC Content Manager которая использует xAjax...

6.5AI score
Exploits0
Packet Storm
Packet Storm
added 2011/01/20 12:0 a.m.31 views

xAjax Cross Site Scripting / Path Disclosure

Hello list! I want to warn you about Cross-Site Scripting and Full path disclosure vulnerabilities in xAjax and xajaxjqueryplugin. ------------------------- Affected products: ------------------------- Vulnerable are potentially all versions of xAjax. Vulnerable are all versions of...

7.4AI score
Exploits0
NVD
NVD
added 2011/01/14 5:0 p.m.19 views

CVE-2011-0484

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform DOM node removal, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale rendering node."...

7.5CVSS7.3AI score0.01893EPSS
Exploits1References8
Prion
Prion
added 2011/01/14 5:0 p.m.14 views

Code injection

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform DOM node removal, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale rendering node."...

7.5CVSS7.8AI score0.01893EPSS
Exploits1References8Affected Software2
UbuntuCve
UbuntuCve
added 2011/01/14 5:0 p.m.17 views

CVE-2011-0484

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform DOM node removal, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale rendering node."...

7.5CVSS6AI score0.01893EPSS
Exploits1References1
Cvelist
Cvelist
added 2011/01/14 4:0 p.m.31 views

CVE-2011-0484

Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344 do not properly perform DOM node removal, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale rendering node."...

7.2AI score0.01893EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2011/01/14 4:0 p.m.31 views

CVE-2011-0484

Removed by vendor...

7.5CVSS6.7AI score0.01893EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2011/01/13 12:0 a.m.41 views

Google Chrome < 8.0.552.237 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is earlier than 8.0.552.237. Such versions are reportedly affected by multiple vulnerabilities : - A browser crash exists in extensions notification handling. Issue 58053 - Bad pointer handling exists in node iteration. Issue 65764 -...

10CVSS7.5AI score0.03394EPSS
Exploits9References17
NVD
NVD
added 2011/01/07 11:0 p.m.20 views

CVE-2011-0347

Microsoft Internet Explorer on Windows XP allows remote attackers to trigger an incorrect GUI display and have unspecified other impact via vectors related to the DOM implementation, as demonstrated by crossfuzz...

9.3CVSS6.9AI score0.22292EPSS
Exploits0References9
NVD
NVD
added 2011/01/07 11:0 p.m.26 views

CVE-2011-0346

Use-after-free vulnerability in the ReleaseInterface function in MSHTML.DLL in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors related to the DOM implementation and the BreakAASpecial and...

9.3CVSS7.6AI score0.31016EPSS
Exploits0References15
Prion
Prion
added 2011/01/07 11:0 p.m.14 views

Code injection

Microsoft Internet Explorer on Windows XP allows remote attackers to trigger an incorrect GUI display and have unspecified other impact via vectors related to the DOM implementation, as demonstrated by crossfuzz...

9.3CVSS7.6AI score0.22292EPSS
Exploits0References9
Rows per page
Query Builder