2433 matches found
CVE-2014-1497
The mozilla::WaveReader::DecodeAudioData function in Mozilla Firefox before 28.0, Firefox ESR 24.x before 24.4, Thunderbird before 24.4, and SeaMonkey before 2.25 allows remote attackers to obtain sensitive information from process heap memory, cause a denial of service out-of-bounds read and...
Apple QuickTime远程内存破坏漏洞
BUGTRAQ ID: 65784 CVECAN ID: CVE-2014-1243 QuickTime是由苹果电脑所开发的一种多媒体架构,能够处理许多的数字视频、媒体段落、音效、文字、动画、音乐格式,以及交互式全景影像的数项类型。 Windows 7, Vista, XP SP2平台上QuickTime 7.7.5之前版本处理跟踪列表时存在未初始化指针问题,恶意制作的视频文件可导致应用意外终止或执行任意代码。 0 Apple Quicktime 7.7.5 厂商补丁: Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Adobe Shockwave Player内存破坏漏洞(CVE-2014-0501)
BUGTRAQ ID: 65490 CVECAN ID: CVE-2014-0500 Adobe Shockwave Player是播放使用Macromedia和Adobe Director制作的网页内容的软件。 Adobe Shockwave Player 12.0.7.148及之前版本在实现上存在远程内存破坏漏洞,攻击者可利用此漏洞在受影响应用用户上下文中执行任意代码。 0 Adobe Shockwave Player 12.0.7.148 厂商补丁: Adobe ----- Adobe已经为此发布了一个安全公告(apsb14-06)以及相应补丁: apsb14-06:Adobe...
Adobe Shockwave Player内存破坏漏洞(CVE-2014-0500)
BUGTRAQ ID: 65490 CVECAN ID: CVE-2014-0500 Adobe Shockwave Player是播放使用Macromedia和Adobe Director制作的网页内容的软件。 Adobe Shockwave Player 12.0.7.148及之前版本在实现上存在远程内存破坏漏洞,攻击者可利用此漏洞在受影响应用用户上下文中执行任意代码。 0 Adobe Shockwave Player 12.0.7.148 厂商补丁: Adobe ----- Adobe已经为此发布了一个安全公告(apsb14-06)以及相应补丁: apsb14-06:Adobe...
OpenSSH 6.2 / 6.3 Remote Memory Corruption Vulnerability
Binary data 8050.prm...
Microsoft Office WPD File CVE-2013-0082 Remote Memory Corruption Vulnerability
Description Microsoft Office is prone to a remote memory-corruption vulnerability because it fails to properly handle objects in memory. Successful exploits will allow attackers to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in...
Microsoft Office WPD File CVE-2013-1324 Remote Memory Corruption Vulnerability
Description Microsoft Office is prone to a remote memory-corruption vulnerability because it fails to properly handle objects in memory. Successful exploits will allow attackers to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in...
Microsoft Word CVE-2013-3891 Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
UBUNTU-CVE-2013-2223
GNU ZRTPCPP before 3.2.0 allows remote attackers to obtain sensitive information uninitialized heap memory or cause a denial of service out-of-bounds read via a crafted packet, as demonstrated by a truncated Ping packet that is not properly handled by the getEpHash function...
libvirt: invalid free in remoteDispatchDomainMemoryStats
The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated users to cause a denial of service uninitialized pointer dereference and crash via a crafted RPC ca...
Microsoft Word CVE-2013-3850 Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Microsoft Word CVE-2013-3853 Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Microsoft Word CVE-2013-3849 Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Microsoft Word CVE-2013-3852 Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Microsoft Word CVE-2013-3854 Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Microsoft Word CVE-2013-3856 Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Microsoft Word CVE-2013-3848 Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Microsoft Word CVE-2013-3851 Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Microsoft Word CVE-2013-3855 Remote Memory Corruption Vulnerability
Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Oracle Linux 5 : kernel (ELSA-2008-0612)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2008-0612 advisory. - tty add NULL pointer checks Aristeu Rozanski 453425 453154 CVE-2008-2812 - net sctp: make sure sctpaddr does not overflow David S. Miller 452482 4524...