171 matches found
Sun JDK Hard Coded Image in Java File (CVE-2007-2788)
Java Technology is a programming platform developed by Sun Microsystems which aims to provide a system for developing and deploying cross-platform applications. Java is widely used for web applications in numerous forms, one of which are Java Applets. The Java Development Kit JDK is a Sun...
Mozilla Firefox
The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows?remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly...
Mozilla Firefox
The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows?remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly...
Mozilla Firefox
The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows?remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly...
Mozilla Firefox
The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows?remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly...
Mozilla Firefox
The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows?remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly...
Mozilla Firefox
The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows?remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly...
Mandriva Linux Security Advisory : firefox (MDVSA-2009:290-1)
Security issues were identified and fixed in firefox 3.0.x : Security researcher Alin Rad Pop of Secunia Research reported a heap-based buffer overflow in Mozilla's string to floating point number conversion routines. Using this vulnerability an attacker could craft some malicious JavaScript code...
Ubuntu 8.04 LTS / 8.10 / 9.04 / 9.10 : firefox-3.0, firefox-3.5, xulrunner-1.9, xulrunner-1.9.1 vulnerabilities (USN-853-1)
Alin Rad Pop discovered a heap-based buffer overflow in Firefox when it converted strings to floating point numbers. If a user were tricked into viewing a malicious website, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoki...
Heap overflow
Heap-based buffer overflow in the GIF image parser in Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, allows remote attackers to execute arbitrary code via unspecified vectors...
CVE-2009-3373
Heap-based buffer overflow in the GIF image parser in Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, allows remote attackers to execute arbitrary code via unspecified vectors...
CVE-2009-3373
CVE-2009-3373 is a heap-based buffer overflow in the GIF image parser affecting Mozilla Firefox versions before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0. The issue allows remote attackers to execute arbitrary code via unspecified vectors. The connected MiracleLinux advisory lists C...
CVE-2009-3373
Heap-based buffer overflow in the GIF image parser in Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, allows remote attackers to execute arbitrary code via unspecified vectors...
SeaMonkey < 2.0 Multiple Vulnerabilities
Binary data 5219.prm...
Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit
Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit JDK before 1.5.011-b03 and 1.6.x before 1.6.001-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.214 and earlier, and SDK and JRE 1.3.120 and earlier...
BMP image parser vulnerability
The BMP image parser in Sun Java Development Kit JDK before 1.5.011-b03 and 1.6.x before 1.6.001-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.214 and earlier, and SDK and JRE 1.3.119 and earlier, when running on Unix/Linux systems,...
Debian DSA-1567-1 : blender - buffer overrun
Stefan Cornelius discovered a vulnerability in the Radiance High Dynamic Range HDR image parser in Blender, a 3D modelling application. The weakness could enable a stack-based buffer overflow and the execution of arbitrary code if a maliciously-crafted HDR file is opened, or if a directory...
[SECURITY] [DSA 1567-1] New blender packages fix arbitrary code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-1567-1 [email protected] http://www.debian.org/security/ Devin Carraway May 05, 2008 http://www.debian.org/security/faq -...
DSA-1567-1 blender - arbitrary code execution
Bulletin has no description...
Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit
Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit JDK before 1.5.011-b03 and 1.6.x before 1.6.001-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.214 and earlier, and SDK and JRE 1.3.120 and earlier...