419 matches found
Adobe Acrobat and Reader U3D Texture Parsing Buffer Overflow (APSB12-16) - Ver2 (CVE-2012-2049)
A stack buffer overflow vulnerability has been reported in Adobe Reader. The vulnerability is due to lack of bounds checking when handling PDF files containing specially crafted strings. A remote attacker can exploit this issue by enticing a target user to open a specially crafted PDF file...
UBUNTU-CVE-2015-0805
The Off Main Thread Compositing OMTC implementation in Mozilla Firefox before 37.0 makes an incorrect memset call during interaction with the mozilla::layers::BufferTextureClient::AllocateForSurface function, which allows remote attackers to execute arbitrary code or cause a denial of service...
UBUNTU-CVE-2015-0824
The mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox before 36.0 allows remote attackers to cause a denial of service out-of-bounds write of zero values, and application crash via vectors that trigger use of DrawTarget and the Cairo library for image drawing...
CVE-2013-3662
Timbre SketchUp formerly Google SketchUp before 8 Maintenance 2 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers a stack-based buffer overflow...
Out-of-bounds
Trimble SketchUp formerly Google SketchUp before 2013 13.0.3689 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662...
CVE-2013-3664
Trimble SketchUp formerly Google SketchUp before 2013 13.0.3689 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-3662...
CVE-2013-3662
CVE-2013-3662 affects Timbre SketchUp/Google SketchUp prior to 8 Maintenance 2. A crafted color palette table in a MAC Pict texture can trigger a stack-based buffer overflow, allowing remote arbitrary code execution. Impact is consistent with a high-severity, network-accessible vulnerability (as ...
CVE-2013-3664
CVE-2013-3664 affects Trimble SketchUp (formerly Google SketchUp) before version 13.0.3689. It permits remote code execution via a crafted color palette table in a MAC Pict texture, causing an out-of-bounds stack write. This CVE exists due to an incomplete fix for CVE-2013-3662 and was split from...
CVE-2013-3662
Timbre SketchUp formerly Google SketchUp before 8 Maintenance 2 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers a stack-based buffer overflow...
CVE-2013-6665
Heap-based buffer overflow in the ResourceProvider::InitializeSoftware function in cc/resources/resourceprovider.cc in Google Chrome before 33.0.1750.146 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large texture size that triggers improper...
Adobe Acrobat Reader U3D Texture External File Buffer Overflow (APSB11-03; CVE-2011-0590; CVE-2011-0591; CVE-2011-0592; CVE-2011-0593; CVE-2011-0596; CVE-2011-0599)
A buffer overflow vulnerability has been reported in Adobe Reader and Acrobat...
CVE-2013-3663 - SketchUp BMP RLE8 Heap Overflow
If you are still using a not so old version of SketchUp8M3 you should upgrade it... Title: SketchUp BMP RLE8 Heap Overflow Product: Google SketchUp Advisory ID: BINA-20120523 CVE ID: CVE-2013-3663 Class: Boundary Error Condition Buffer Overflow Vulnerability class: Client side/ file format...
Google Chrome < 23.0.1271.64 Multiple Vulnerabilities
Binary data 800919.prm...
Google Chrome Multiple Vulnerabilities - Nov2012 (Linux)
This host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnnov12lin.nasl 5999 2017-04-21 09:02:32Z teissa $ Google Chrome Multiple Vulnerabilities - Nov2012 Linux Authors: Antu Sanadi Copyright: Copyright c 2012...
Google Chrome Multiple Vulnerabilities - Nov2012 (Windows)
This host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gbgooglechromemultvulnnov12win.nasl 5931 2017-04-11 09:02:04Z teissa $ Google Chrome Multiple Vulnerabilities - Nov2012 Windows Authors: Antu Sanadi Copyright: Copyright c 2012...
Google Chrome Multiple Vulnerabilities (Nov 2012) - Windows
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2012-5124
Google Chrome before 23.0.1271.64 does not properly handle textures, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors...
CVE-2012-5124
Google Chrome before 23.0.1271.64 does not properly handle textures, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors...
CVE-2012-5124
Google Chrome before 23.0.1271.64 does not properly handle textures, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via unknown vectors...
CVE-2012-5124
Removed by vendor...