Mac OS X Java mediaLibImage对象处理远程代码执行漏洞

BUGTRAQ ID: 40238 CVE ID: CVE-2010-0538 Mac OS X是苹果家族机器所使用的操作系统。 Mac OS X在处理mediaLibImage对象时存在越界内存访问漏洞，用户受骗访问了包含有不可信任的Java applet的恶意网页就可能导致拒绝服务或执行任意代码。 Apple Mac OS X 10.6 Apple Mac OS X 10.5 Apple MacOS X Server 10.6 Apple MacOS X Server 10.5 厂商补丁： Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

VulnCheck KEV: CVE-2003-0111

The ByteCode Verifier component of Microsoft Virtual Machine VM build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise....

Design/Logic Flaw

Wiki Server in Apple Mac OS X 10.5.8 does not restrict the file types of uploaded files, which allows remote attackers to obtain sensitive information or possibly have unspecified other impact via a crafted file, as demonstrated by a Java applet...

CVE-2010-0523

Wiki Server in Apple Mac OS X 10.5.8 does not restrict the file types of uploaded files, which allows remote attackers to obtain sensitive information or possibly have unspecified other impact via a crafted file, as demonstrated by a Java applet...

Sun Java SE Unspecified Vulnerability In JDK/JRE/SDK (Aug 2009)

Sun Java JDK/JRE/SDK is prone to an unspecified vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-814-1: OpenJDK vulnerabilities

It was discovered that the XML HMAC signature system did not correctly check certain lengths. If an attacker sent a truncated HMAC, it could bypass authentication, leading to potential privilege escalation. CVE-2009-0217 It was discovered that JAR bundles would appear signed if only one element w...

[USN-814-1] openjdk-6 vulnerabilities

=========================================================== Ubuntu Security Notice USN-814-1 August 11, 2009 openjdk-6 vulnerabilities CVE-2009-0217, CVE-2009-2475, CVE-2009-2476, CVE-2009-2625, CVE-2009-2670, CVE-2009-2671, CVE-2009-2672, CVE-2009-2673, CVE-2009-2674, CVE-2009-2675, CVE-2009-267...

CVE-2009-2676

Unspecified vulnerability in JNLPAppletlauncher in Sun Java SE, and SE for Business, in JDK and JRE 6 Update 14 and earlier and JDK and JRE 5.0 Update 19 and earlier; and Java SE for Business in SDK and JRE 1.4.221 and earlier; allows remote attackers to create or modify arbitrary files via vecto...

CVE-2009-2676

CVE-2009-2676 describes an unspecified vulnerability in Sun Java SE/JDK/JRE (up to 6 Update 14, 5.0 Update 19, and 1.4.2_21) involving the JNLPAppletLauncher. Affected component is the JNLPAppletLauncher exposed to untrusted applets; the root cause is an issue in how an old launcher can be access...

Mozilla Firefox 'NPObject'访问远程代码执行漏洞

Bugraq ID: 35360 CVE ID：CVE-2009-1837 CNCVE ID：CNCVE-20091837 Mozilla Firefox是一款开放源代码的WEB浏览器。 Mozilla Firefox访问NPObject JS封装类对象的私有数据时存在竞争条件错误，远程攻击者可以利用漏洞以应用程序权限执行任意指令。 当访问NPObject属性一个封装的JSObject时NPObjWrapperNewResolve存在竞争条件错误，在装载Java...

CVE-2009-1837

Race condition in the NPObjWrapperNewResolve function in modules/plugin/base/src/nsJSNPRuntime.cpp in xul.dll in Mozilla Firefox 3 before 3.0.11 might allow remote attackers to execute arbitrary code via a page transition during Java applet loading, related to a use-after-free vulnerability for...

Race condition

Race condition in the NPObjWrapperNewResolve function in modules/plugin/base/src/nsJSNPRuntime.cpp in xul.dll in Mozilla Firefox 3 before 3.0.11 might allow remote attackers to execute arbitrary code via a page transition during Java applet loading, related to a use-after-free vulnerability for...

CVE-2009-1837

CVE-2009-1837 describes a race condition in Mozilla Firefox 3 before 3.0.11 within NPObjWrapper_NewResolve in nsJSNPRuntime.cpp of xul.dll. The vulnerability could allow remote code execution via a page transition during Java applet loading, related to a use-after-free involving memory tied to a ...

CVE-2009-1837

Race condition in the NPObjWrapperNewResolve function in modules/plugin/base/src/nsJSNPRuntime.cpp in xul.dll in Mozilla Firefox 3 before 3.0.11 might allow remote attackers to execute arbitrary code via a page transition during Java applet loading, related to a use-after-free vulnerability for...

CVE-2009-1837

Race condition in the NPObjWrapperNewResolve function in modules/plugin/base/src/nsJSNPRuntime.cpp in xul.dll in Mozilla Firefox 3 before 3.0.11 might allow remote attackers to execute arbitrary code via a page transition during Java applet loading, related to a use-after-free vulnerability for...

Firefox Race condition while accessing the private data of a NPObject JS wrapper class object

Race condition in the NPObjWrapperNewResolve function in modules/plugin/base/src/nsJSNPRuntime.cpp in xul.dll in Mozilla Firefox 3 before 3.0.11 might allow remote attackers to execute arbitrary code via a page transition during Java applet loading, related to a use-after-free vulnerability for...

Race condition while accessing the private data of a NPObject JS wrapper class object — Mozilla

Jakob Balle and Carsten Eiram of Secunia Research reported a race condition in NPObjWrapperNewResolve when accessing the properties of a NPObject, a wrapped JSObject. Balle and Eiram demonstrated that this condition could be reached by navigating away from a web page during the loading of a Java...

Mac OS X Java applet Remote Deserialization Remote PoC (updated)

No description provided by source. Critical Mac OS X Java Vulnerabilities Introduction Five months ago, CVE-2008-5353 and other vulnerabilities were publicly disclosed, and fixed by Sun. CVE-2008-5353 allows malicious code to escape the Java sandbox and run arbitrary commands with the permissions...

Mac OS X Java applet Remote Deserialization Remote PoC

Exploit for macOS platform in category remote exploits ====================================================== Mac OS X Java applet Remote Deserialization Remote PoC ====================================================== Critical Mac OS X Java Vulnerabilities Introduction Five months ago,...

Sun Java Runtime and Development Kit 6 Update 10 - Calendar Deserialization (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'rex' class Metasploit3 'Sun...