Lucene search
K

101 matches found

Tenable Nessus
Tenable Nessus
added 2017/03/10 12:0 a.m.13 views

Google Chrome < 57.0.2987.98 Multiple Vulnerabilities

Binary data 9991.pasl...

4.3CVSS6.4AI score0.01472EPSS
Exploits1References2
OSV
OSV
added 2017/02/06 5:59 p.m.2 views

DEBIAN-CVE-2016-7446

Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317...

9.8CVSS7.9AI score0.03987EPSS
Exploits0References1
OSV
OSV
added 2017/02/06 5:59 p.m.3 views

UBUNTU-CVE-2016-7446

Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317...

9.8CVSS7.4AI score0.03987EPSS
Exploits0References3
Prion
Prion
added 2017/02/06 5:59 p.m.29 views

Buffer overflow

Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317...

7.5CVSS7.8AI score0.03987EPSS
Exploits0References6Affected Software4
OSV
OSV
added 2016/08/12 4:10 p.m.10 views

SUSE-SU-2016:2061-1 Security update for MozillaFirefox, MozillaFirefox-branding-SLED, mozilla-nspr and mozilla-nss

MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nspr and mozilla-nss were updated to fix nine security issues. MozillaFirefox was updated to version 45.3.0 ESR. mozilla-nss was updated to version 3.21.1, mozilla-nspr to version 4.12. These security issues were fixed in 45.3.0ESR: -...

9.8CVSS8AI score0.23957EPSS
Exploits10References40
OSV
OSV
added 2016/08/05 12:39 p.m.9 views

USN-3044-1 firefox vulnerabilities

Gustavo Grieco discovered an out-of-bounds read during XML parsing in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service via application crash, or obtain sensitive information. CVE-2016-0718...

9.8CVSS7.4AI score0.13335EPSS
Exploits6References23
Tenable Nessus
Tenable Nessus
added 2016/03/17 12:0 a.m.27 views

Mozilla Thunderbird < 38.4 Multiple Vulnerabilities

Binary data 9151.prm...

9.8CVSS9.7AI score0.10238EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2015/11/30 12:0 a.m.38 views

Mozilla Thunderbird < 38.4 Multiple Vulnerabilities (Mac OS X)

The version of Thunderbird installed on the remote Mac OS X host is prior to 38.4. It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption issues exist due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit these issues, vi...

9.8CVSS8.4AI score0.10238EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2015/11/05 12:0 a.m.37 views

Firefox ESR < 38.4 Multiple Vulnerabilities

The version of Firefox ESR installed on the remote Windows host is prior to 38.4. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption issues exist due to improper validation of user-supplied input. An unauthenticated, remote attacker can exploit these issues...

9.8CVSS7.6AI score0.10238EPSS
Exploits0References23
Mozilla
Mozilla
added 2015/11/03 12:0 a.m.63 views

Vulnerabilities found through code inspection — Mozilla

Security researcher Ronald Crane reported three vulnerabilities affecting released code that were found through code inspection. These included a buffer overflow in the ANGLE graphics library and two issues of missing status checks in SVG rendering and during cryptographic key manipulation. These...

7.5CVSS9.7AI score0.03218EPSS
Exploits0References6Affected Software3
OSV
OSV
added 2015/05/13 5:41 p.m.4 views

USN-2602-1 firefox vulnerabilities

Jesse Ruderman, Mats Palmgren, Byron Campen, Steve Fink, Gary Kwong, Andrew McCreight, Christian Holler, Jon Coppeard, and Milan Sreckovic discovered multiple memory safety issues in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit...

7.5CVSS7.5AI score0.07417EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2015/03/05 7:29 p.m.9 views

Mozilla: Out-of-bounds read and write while rendering SVG content (MFSA 2015-19)

Heap-based buffer overflow in the mozilla::gfx::CopyRect function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to obtain sensitive information from uninitialized process memory via a malformed SVG graphic...

4.3CVSS7.1AI score0.02887EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/03/05 2:4 p.m.8 views

Mozilla: Out-of-bounds read and write while rendering SVG content (MFSA 2015-19)

Heap-based buffer overflow in the mozilla::gfx::CopyRect function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to obtain sensitive information from uninitialized process memory via a malformed SVG graphic...

4.3CVSS7.1AI score0.02887EPSS
Exploits0References5
exploitpack
exploitpack
added 2014/11/17 12:0 a.m.28 views

Apple Mac OSX Safari 8.0 - Crash (PoC)

Apple Mac OSX Safari 8.0 - Crash PoC @w3bd3vil svg padding-top: 1337%; box-sizing: border-box; 0x7fff8ab10282: jae 0x7fff8ab1028c ; pthreadkill + 20 0x7fff8ab10284: movq %rax, %rdi 0x7fff8ab10287: jmp 0x7fff8ab0bca3 ; cerrornocancel 0x7fff8ab1028c: retq lldb register read General Purpose Register...

0.1AI score
Exploits0
Cvelist
Cvelist
added 2013/07/10 10:0 a.m.27 views

CVE-2013-2875

core/rendering/svg/SVGInlineTextBox.cpp in the SVG implementation in Blink, as used in Google Chrome before 28.0.1500.71, allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...

6AI score0.01694EPSS
Exploits0References10
NVD
NVD
added 2012/07/25 7:55 p.m.15 views

CVE-2012-3650

WebKit in Apple Safari before 6.0 accesses uninitialized memory locations during the rendering of SVG images, which allows remote attackers to obtain sensitive information from process memory via a crafted web site...

4.3CVSS5.4AI score0.00925EPSS
Exploits1References5
NVD
NVD
added 2011/03/01 11:0 p.m.23 views

CVE-2011-1112

Google Chrome before 9.0.597.107 does not properly perform SVG rendering, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via unknown vectors...

7.5CVSS7.2AI score0.01556EPSS
Exploits1References5
Prion
Prion
added 2011/03/01 11:0 p.m.21 views

Code injection

Google Chrome before 9.0.597.107 does not properly perform SVG rendering, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via unknown vectors...

7.5CVSS7.7AI score0.01556EPSS
Exploits1References5Affected Software1
UbuntuCve
UbuntuCve
added 2011/03/01 11:0 p.m.32 views

CVE-2011-1112

Google Chrome before 9.0.597.107 does not properly perform SVG rendering, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via unknown vectors...

7.5CVSS5.9AI score0.01556EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2011/03/01 10:0 p.m.34 views

CVE-2011-1112

Removed by vendor...

7.5CVSS6.7AI score0.01556EPSS
Exploits1
Rows per page
Query Builder