CVE-2011-3182

PHP before 5.3.7 does not properly check the return values of the malloc, calloc, and realloc library functions, which allows context-dependent attackers to cause a denial of service NULL pointer dereference and application crash or trigger a buffer overflow by leveraging the ability to provide a...

CVE-2011-3182

PHP before 5.3.7 does not properly check the return values of the malloc, calloc, and realloc library functions, which allows context-dependent attackers to cause a denial of service NULL pointer dereference and application crash or trigger a buffer overflow by leveraging the ability to provide a...

CVE-2010-1383

CFNetwork in Apple Safari before 5.0.6 on Windows allows remote web servers to execute arbitrary code by replaying the NTLM credentials of a client user, related to a "credential reflection" issue...

Design/Logic Flaw

CFNetwork in Apple Safari before 5.0.6 on Windows allows remote web servers to execute arbitrary code by replaying the NTLM credentials of a client user, related to a "credential reflection" issue...

CVE-2010-1383

CVE-2010-1383 affects CFNetwork in Apple Safari prior to 5.0.6 on Windows. The vulnerability arises from a credential reflection (NTLM replay) flaw that could allow a remote attacker to execute arbitrary code by replaying NTLM credentials to a malicious website. Multiple vulnerability trackers co...

Attachmate Reflection for Secure IT Windows Server Installed

Attachmate Reflection for Secure IT Windows server, a SSH server, is installed on the remote host. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid55284; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/10";...

Attachmate Reflection for Secure IT Windows Server < 7.0 SP1 Multiple Unspecified Vulnerabilities

The version of Attachmate Reflection for Secure IT Windows server installed on the remote Windows host is less than 7.0 SP1 and thus is reportedly affected by multiple unspecified vulnerabilities. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid55285;...

OpenJDK Swing unsafe reflection usage (6622002)

Unspecified vulnerability in the Swing component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.227, and 1.3.128 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Octobe...

openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2010:0957-1)

Icedtea included in java-160-openjdk was updated to version 1.7.5/1.8.2/1.9.1 to fix several security issues : - S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation - S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition - S6891766, CVE-2010-3554: OpenJDK corba reflecti...

openSUSE Security Update : java-1_6_0-openjdk (openSUSE-SU-2010:0957-1)

Icedtea included in java-160-openjdk was updated to version 1.7.5/1.8.2/1.9.1 to fix several security issues : - S6914943, CVE-2009-3555: TLS: MITM attacks via session renegotiation - S6559775, CVE-2010-3568: OpenJDK Deserialization Race condition - S6891766, CVE-2010-3554: OpenJDK corba reflecti...

Mono/Moonlight Generic Type Argument Local Privilege Escalation

No description provided by source. using System; using System.Reflection; public class FakeString public int length; public char startchar; public class TestCase private static FakeString UnsafeConversionTT thing where T : FakeString return thing; public static void Main var a = "foo"; var b =...

OpenJDK Swing unsafe reflection usage (6622002)

Unspecified vulnerability in the Swing component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.227, and 1.3.128 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Octobe...

Mono/Moonlight Local Privilege Escalation

Mono and Moonlight is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to execute arbitrary code with elevated privileges. Successful exploits will compromise the affected application and possibly the underlying computer. PoC: using System; using...

Attachmate Reflection FTP Client LIST Command Remote Heap Buffer Overflow Vulnerability

Attachmate Reflection FTP Client is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Attachmate Reflection FTP Client LIST Command Remote Heap Buffer Overflow Vulnerability

This host is installed with Attachmate Reflection FTP Client and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbattachmatereflectionftpclientbofvuln.nasl 5367 2017-02-20 14:16:52Z cfi $ Attachmate Reflection FTP Client LIST Command Remote Heap Buffer Overflow...

OpenJDK Swing unsafe reflection usage (6622002)

Unspecified vulnerability in the Swing component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.227, and 1.3.128 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Octobe...

OpenJDK Swing unsafe reflection usage (6622002)

Unspecified vulnerability in the Swing component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.227, and 1.3.128 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Octobe...

OpenJDK Swing unsafe reflection usage (6622002)

Unspecified vulnerability in the Swing component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update 25, 1.4.227, and 1.3.128 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Octobe...

OpenJDK corba reflection vulnerabilities (6891766,6925672)

Unspecified vulnerability in the CORBA component in Oracle Java SE and Java for Business 6 Update 21 and 5.0 Update 25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU. Oracle...

CVE-2010-4146

Cross-site scripting XSS vulnerability in Attachmate Reflection for the Web 2008 R2 builds 10.1.569 and earlier, 2008 R1, and 9.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...