Lucene search
K

9803 matches found

Prion
Prion
added 2011/01/07 11:0 p.m.22 views

Memory corruption

Use-after-free vulnerability in the ReleaseInterface function in MSHTML.DLL in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors related to the DOM implementation and the BreakAASpecial and...

9.3CVSS8.2AI score0.31016EPSS
Exploits0References15Affected Software1
CVE
CVE
added 2011/01/07 10:0 p.m.51 views

CVE-2011-0347

This CVE (CVE-2011-0347) corresponds to a high-severity vulnerability in Microsoft Internet Explorer on Windows XP, involving an incorrect GUI display triggered via DOM-related vectors (cross_fuzz). The OpenVAS entries group this under a Windows Shell/IE flaw (MS11-006) with a CVSS v2 base score ...

9.3CVSS7.1AI score0.22292EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2011/01/07 10:0 p.m.33 views

CVE-2011-0346

Use-after-free vulnerability in the ReleaseInterface function in MSHTML.DLL in Microsoft Internet Explorer 6, 7, and 8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors related to the DOM implementation and the BreakAASpecial and...

7.5AI score0.31016EPSS
Exploits0References15
Cvelist
Cvelist
added 2011/01/07 10:0 p.m.23 views

CVE-2011-0347

Microsoft Internet Explorer on Windows XP allows remote attackers to trigger an incorrect GUI display and have unspecified other impact via vectors related to the DOM implementation, as demonstrated by crossfuzz...

6.9AI score0.22292EPSS
Exploits0References9
CVE
CVE
added 2011/01/07 10:0 p.m.68 views

CVE-2011-0346

CVE-2011-0346 corresponds to a family of memory‑corruption issues in Microsoft Internet Explorer’s MSHTML.DLL, specifically in the ReleaseInterface() path. The connected sources identify the affected component as IE versions 6–8 and describe a use‑after‑free vulnerability that can trigger via DOM...

9.3CVSS7.7AI score0.31016EPSS
Exploits0References15Affected Software1
The Hacker News
The Hacker News
added 2011/01/07 1:29 a.m.6 views

Fuzzing tool discovers over 100 vulnerabilities in popular browsers !

The public release of crossfuzz - a cross-document DOM binding fuzzer that is able to detect vulnerabilities in all browsers by examining how they interact with various elements while they render web pages - by the Google-employed security researcher Michal Zalewski has unveiled some worrying...

6.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2011/01/07 12:0 a.m.5 views

PT-2011-2285 · Microsoft · Internet Explorer

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer versions 6 through 8 Description: The issue allows remote attackers to execute arbitrary code or cause a denial of service via vectors related to the DOM implementation. An attacker could exploit this by constructi...

9.3CVSS8AI score0.31016EPSS
Exploits0References20
Opera Security Advisories
Opera Security Advisories
added 2011/01/04 12:0 a.m.489 views

Certain DOM manipulations can allow execution of arbitrary code

Various unexpected DOM manipulations can cause Opera to crash. In some cases, these crashes can occur in a way that allows execution of arbitrary code. To inject code, additional techniques may have to be employed...

2.8AI score
Exploits0Affected Software1
Opera Security Advisories
Opera Security Advisories
added 2011/01/04 12:0 a.m.9 views

Certain DOM manipulations can allow execution of arbitrary code – Opera Security Advisories

Certain DOM manipulations can allow execution of arbitrary code – Opera Security Advisories OPCOM Team | January 4, 2011 Severity High Description Various unexpected DOM manipulations can cause Opera to crash. In some cases, these crashes can occur in a way that allows execution of arbitrary code...

6.1AI score
Exploits0References1
securityvulns
securityvulns
added 2011/01/03 12:0 a.m.39 views

Announcing cross_fuzz, a potential 0-day in circulation, and more

Hi list, == SUMMARY == I am happy to announce the availability of crossfuzz - an amazingly effective but notoriously annoying cross-document DOM binding fuzzer that helped identify about one hundred bugs in all browsers on the market - many of said bugs exploitable - and is still finding more. Th...

7.4AI score
Exploits0
OpenVAS
OpenVAS
added 2010/12/28 12:0 a.m.10 views

Fedora Update for seamonkey FEDORA-2010-18920

Check for the Version of seamonkey OpenVAS Vulnerability Test Fedora Update for seamonkey FEDORA-2010-18920 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

0.3AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/28 12:0 a.m.8 views

Fedora Update for seamonkey FEDORA-2010-18890

Check for the Version of seamonkey OpenVAS Vulnerability Test Fedora Update for seamonkey FEDORA-2010-18890 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

0.3AI score
Exploits0References2
OpenVAS
OpenVAS
added 2010/12/23 12:0 a.m.38 views

Mandriva Update for firefox MDVSA-2010:251 (firefox)

Check for the Version of firefox OpenVAS Vulnerability Test Mandriva Update for firefox MDVSA-2010:251 firefox Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...

9.3CVSS0.6AI score0.08669EPSS
Exploits1References2
Fedora
Fedora
added 2010/12/22 7:50 p.m.11 views

[SECURITY] Fedora 14 Update: seamonkey-2.0.11-1.fc14

SeaMonkey is an all-in-one Internet application suite. It includes a browser, mail/news client, IRC client, JavaScript debugger, and a tool to inspect the DOM for web pages. It is derived from the application formerly known as Mozilla Application Suite...

2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/12/14 12:0 a.m.10 views

Google Chrome < 8.0.552.237 Multiple Vulnerabilities

Binary data 5742.pasl...

5CVSS7.3AI score0.01854EPSS
Exploits1References2
securityvulns
securityvulns
added 2010/12/10 12:0 a.m.76 views

Mozilla Foundation Security Advisory 2010-80

Mozilla Foundation Security Advisory 2010-80 Title: Use-after-free error with nsDOMAttribute MutationObserver Impact: Critical Announced: December 9, 2010 Reporter: regenrecht Products: Firefox, SeaMonkey Fixed in: Firefox 3.6.13 Firefox 3.5.16 SeaMonkey 2.0.11 Description Security researcher...

9.3CVSS0.1AI score0.06997EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2010/12/10 12:0 a.m.31 views

Mandriva Linux Security Advisory : firefox (MDVSA-2010:251-2)

Security issues were identified and fixed in firefox : Security researchers Yosuke Hasegawa and Masatoshi Kimura reported that the x-mac-arabic, x-mac-farsi and x-mac-hebrew character encodings are vulnerable to XSS attacks due to some characters being converted to angle brackets when displayed b...

9.3CVSS9AI score0.08669EPSS
Exploits1References14
Mozilla
Mozilla
added 2010/12/09 12:0 a.m.24 views

Use-after-free error with nsDOMAttribute MutationObserver — Mozilla

Security researcher regenrecht reported via TippingPoint's Zero Day Initiative that a nsDOMAttribute node can be modified without informing the iterator object responsible for various DOM traversals. This flaw could lead to a inconsistent state where the iterator points to an object it believes i...

9.3CVSS1.9AI score0.06997EPSS
Exploits0References2Affected Software2
OpenVAS
OpenVAS
added 2010/12/02 12:0 a.m.16 views

Fedora Update for seamonkey FEDORA-2010-17105

Check for the Version of seamonkey OpenVAS Vulnerability Test Fedora Update for seamonkey FEDORA-2010-17105 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

0.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/12/02 12:0 a.m.46 views

SuSE 11 / 11.1 Security Update : Mozilla Firefox (SAT Patch Numbers 2780 / 2781)

This update brings Mozilla Firefox to the 3.5.11 security release. It fixes following security issues : - Several memory safety bugs in habe been identified in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs show evidence of memory corruption under certain...

9.8CVSS8.6AI score0.43382EPSS
Exploits24References25
Rows per page
Query Builder