537 matches found
Design/Logic Flaw
Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allow attackers to execute arbitrary code via unspecified vectors, related to a "prefix protocol handler vulnerability."...
CVE-2010-0191
Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allow attackers to execute arbitrary code via unspecified vectors, related to a "prefix protocol handler vulnerability."...
CVE-2010-0191
Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allow attackers to execute arbitrary code via unspecified vectors, related to a "prefix protocol handler vulnerability."...
Acroread: Multiple code execution flaws (APSB10-09)
Adobe Reader and Acrobat 9.x before 9.3.2, and 8.x before 8.2.2 on Windows and Mac OS X, allow attackers to execute arbitrary code via unspecified vectors, related to a "prefix protocol handler vulnerability."...
Adobe Acrobat < 9.3.2 / 8.2.2 Multiple Vulnerabilities (APSB10-09)
The version of Adobe Acrobat installed on the remote host is earlier than 9.3.2 / 8.2.2. Such versions are reportedly affected by multiple vulnerabilities : - A cross-site scripting issue could lead to code execution. CVE-2010-0190 - A prefix protocol handler vulnerability could lead to code...
Adobe Reader < 9.3.2 / 8.2.2 Multiple Vulnerabilities (APSB10-09)
The version of Adobe Reader installed on the remote host is earlier than 9.3.2 / 8.2.2. Such versions are reportedly affected by multiple vulnerabilities : - A cross-site scripting issue could lead to code execution. CVE-2010-0190 - A prefix protocol handler vulnerability could lead to code...
ZDI-10-027: Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability
ZDI-10-027: Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-027 March 11, 2010 -- Affected Vendors: Skype -- Affected Products: Skype -- TippingPointTM IPS Customer Protection: TippingPoint IPS customers hav...
Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Skype. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists with how the OS web-browser passes command line arguments ...
Apple iTunes Protocol Handler Stack Buffer Overflow (CVE-2009-0950)
Apple iTunes is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying picture files. When iTunes is installed, it registers itself with the host Operating System as a protocol handler for several application URL schemes. A buffer overflow...
Zen Cart extras/curltest.php Information Disclosure
The installed version of Zen Cart includes a test script, 'extras/curltest.php', intended for testing that the curl PHP library is installed and working properly. It fails, though, to restrict access and can be abused to access arbitrary URLs, including local files via the 'file' protocol handler...
Design/Logic Flaw
Mozilla Firefox 3.5.2 on Windows XP, in some situations possibly involving an incompletely configured protocol handler, does not properly implement setting the document.location property to a value specifying a protocol associated with an external application, which allows remote attackers to cau...
CVE-2009-2975
Mozilla Firefox 3.5.2 on Windows XP, in some situations possibly involving an incompletely configured protocol handler, does not properly implement setting the document.location property to a value specifying a protocol associated with an external application, which allows remote attackers to cau...
CVE-2009-2975
CVE-2009-2975 concerns Mozilla Firefox 3.5.2 on Windows XP where, in situations involving an incompletely configured protocol handler, the browser does not properly enforce document.location values for protocols linked to external applications. This can enable a remote attacker to trigger a denia...
CVE-2009-2975
Mozilla Firefox 3.5.2 on Windows XP, in some situations possibly involving an incompletely configured protocol handler, does not properly implement setting the document.location property to a value specifying a protocol associated with an external application, which allows remote attackers to cau...
CentOS 3 / 5 : pidgin (CESA-2009:1218)
Updated pidgin packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on multip...
RHEL 3 / 4 / 5 : pidgin (RHSA-2009:1218)
Updated pidgin packages that fix a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. Pidgin is an instant messaging program which can log in to multiple accounts on multip...
Wireshark 1.2.0多个安全漏洞
Bugraq ID: 35748 Wireshark是一款开放源代码的协议处理程序。 Wireshark存在多个安全问题,远程攻击者可以利用漏洞使应用程序崩溃。 -IPMI解析器存在数组索引错误,发送特殊构建的网络报文可导致应用程序崩溃。 -蓝牙L2CAP, RADIUS, MIOP和sFlow解析器存在错误,通过发送特殊构建的网络报文可导致应用程序崩溃或挂起。 -AFS解析器存在错误可导致应用程序崩溃。 -Infiniband解析器存在错误,发送特殊构建的网络报文可导致部分平台上的应用程序崩溃。 Wireshark Wireshark 1.2 Wireshark Wireshark...
CVE-2009-2420
Technical details about CVE-2009-2420 are not publicly provided in the supplied documents. No concrete information on affected products, root cause, or remediation is included here; monitor for updates.
Mandrake Security Advisory MDVSA-2009:147 (pidgin)
The remote host is missing an update to pidgin announced via advisory MDVSA-2009:147. OpenVAS Vulnerability Test $Id: mdksa2009147.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:147 pidgin Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft In...
Mandrake Security Advisory MDVSA-2009:140 (gaim)
The remote host is missing an update to gaim announced via advisory MDVSA-2009:140. OpenVAS Vulnerability Test $Id: mdksa2009140.nasl 6587 2017-07-07 06:35:35Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:140 gaim Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...