1441 matches found
Palm Pre WebOS 1.1 - Denial of Service
I. Description The Palm Pre WebOS version AAAAA..." using 50280 or more characters after the refresh. IV. About This vulnerability was discovered by Townsend Ladd Harris Vulnerability details will be posted at: http://tlhsecurity.blogspot.com/2009/10/palm-pre-webos-version-11-floating...
Safari WebKit floating point number buffer overflow
Added: 09/16/2009 CVE: CVE-2009-2195 BID: 36023 OSVDB: 56988 Background Safari is a web browser for Mac OS X and Windows. Safari is built upon the WebKit browser engine. Problem A buffer overflow vulnerability in WebKit allows command execution when a user loads a page which contains a specially...
Apple Safari Webkit Floating Point Remote Code Execution (CVE-2009-2195)
Apple Safari's Webkit is a development toolkit which allows third party developers to build applications that use Internet technologies such as HTML, HTTP, and others. A vulnerability has been reported in Apple Safari's Webkit.The vulnerability is due to a boundary error when processing very long...
Safari 4.0.2 (WebKit Parsing of Floating Point Numbers) BOF PoC
No description provided by source. Three weeks ago, I coded a nice little browser fuzzer, and started playing with various browsers: IE, Firefox, Safari, Chrome, Opera... I found an interesting Safari crash after couple of hours of fuzzing. It was a stack overflow and a smile on my face. Since...
Apple Safari 4.0.2 - WebKit Parsing of Floating Point Numbers Buffer Overflow (PoC)
Apple Safari 4.0.2 - WebKit Parsing of Floating Point Numbers Buffer Overflow PoC Three weeks ago, I coded a nice little browser fuzzer, and started playing with various browsers: IE, Firefox, Safari, Chrome, Opera... I found an interesting Safari crash after couple of hours of fuzzing. It was a...
Apple Safari buffer overflow
Buffer overflow on floating point numbers parsing...
CVE-2009-2195
Buffer overflow in WebKit in Apple Safari before 4.0.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted floating-point numbers...
Buffer overflow
Buffer overflow in WebKit in Apple Safari before 4.0.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted floating-point numbers...
CVE-2009-2195
Buffer overflow in WebKit in Apple Safari before 4.0.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted floating-point numbers...
CVE-2009-2195
Removed by vendor...
CVE-2009-2195
Buffer overflow in WebKit in Apple Safari before 4.0.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via crafted floating-point numbers...
CVE-2009-0689
Array index error in the 1 dtoa implementation in dtoa.c aka pdtoa.c and the 2 gdtoa aka new dtoa implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x...
CVE-2009-0689
Array index error in the 1 dtoa implementation in dtoa.c aka pdtoa.c and the 2 gdtoa aka new dtoa implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x...
Heap overflow
Array index error in the 1 dtoa implementation in dtoa.c aka pdtoa.c and the 2 gdtoa aka new dtoa implementation in gdtoa/misc.c in libc, as used in multiple operating systems and products including in FreeBSD 6.4 and 7.2, NetBSD 5.0, OpenBSD 4.5, Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x...
Ubuntu Update for libcairo regression USN-550-2
Ubuntu Update for Linux kernel vulnerabilities USN-550-2 OpenVAS Vulnerability Test $Id: gbubuntuUSN5502.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for libcairo regression USN-550-2 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
[SECURITY] Fedora 9 Update: libresample-0.1.3-9.fc9
A real-time library for audio sampling rate conversion providing several useful features relative to resample-1.7 on which it is based: It should build "out of the box" on more platforms, including Linux, Solaris, and Mac OS X using the included configure script. There is also a Visual C++ projec...
Adobe Reader/Acrobat Multiple Vulnerabilities (APSB08-19) - Linux
Adobe Reader/Acrobat is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobatreader";...
CVE-2008-1778
CVE-2008-1778 : The vulnerability is described as an unspecified issue in the floating point context switch implementation on Sun Solaris 9/10 for x86, potentially allowing a local user to cause a denial of service (application exit), corrupt data, or trigger incorrect calculations via unknown ve...
openSUSE 10 Security Update : MozillaThunderbird (MozillaThunderbird-2421)
This security update brings Mozilla Thunderbird to version 1.5.0.9. http://www.mozilla.org/projects/security/known-vulnerabilities.html It includes fixes to the following security problems: CVE-2006-6497/MFSA2006-68: Crashes with evidence of memory corruption were fixed in the layout engine...
Heap overflow
The chunksplit function in string.c in PHP 5.2.3 does not properly calculate the needed buffer size due to precision loss when performing integer arithmetic with floating point numbers, which has unknown attack vectors and impact, possibly resulting in a heap-based buffer overflow. NOTE: this is...