4208 matches found
CVE-2010-1868
The 1 sqlitesinglequery and 2 sqlitearrayquery functions in ext/sqlite/sqlite.c in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to execute arbitrary code by calling these functions with an empty SQL query, which triggers access of uninitialized memory...
xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a free of uninitialized memory...
xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a free of uninitialized memory...
Code injection
Opera before 10.53 on Windows and Mac OS X does not properly handle a series of document modifications that occur asynchronously, which allows remote attackers to execute arbitrary code or cause a denial of service application crash via JavaScript that writes sequences in an infinite loop, leadin...
Opera < 10.53 Asynchronous Content Modification Uninitialized Memory Access
Binary data 5527.prm...
Opera < 10.53 Asynchronous Content Modification Uninitialized Memory Access
Binary data 800846.prm...
VulnCheck KEV: CVE-2009-2477
js/src/jstracer.cpp in the Just-in-time JIT JavaScript compiler aka TraceMonkey in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape function that triggers access to uninitialized memory locations, as originally demonstrated by...
Opera < 10.53 Asynchronous Content Modification Uninitialized Memory Access
The version of Opera installed on the remote host is earlier than 10.53. Such versions are potentially affected by the following issue : - Multiple asynchronous calls to a script that modifies document contents can be abused to reference an uninitialized value, leading to an application crash or...
Apple iTunes < 9.1 Multiple Vulnerabilities (uncredentialed check)
The version of Apple iTunes on the remote host is prior to version 9.1. It is, therefore, affected by multiple vulnerabilities : - A buffer underflow in ImageIO's handling of TIFF images can lead to a denial of service or arbitrary code execution. CVE-2009-2285 - An integer overflow in the...
Safari < 4.0.5 Multiple Vulnerabilities
Binary data 5361.prm...
CVE-2010-0806
Use-after-free vulnerability in the Peer Objects component aka iepeers.dll in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, a...
Memory corruption
Use-after-free vulnerability in the Peer Objects component aka iepeers.dll in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, a...
CVE-2010-0806
CVE-2010-0806 is a use-after-free in Internet Explorer’s iepeers.dll (affecting IE 6/6 SP1/7). The vulnerability arises from access to an invalid pointer after object deletion, enabling remote code execution. It was exploited in the wild around March 2010. Public fixes include Microsoft Security ...
CVE-2010-0806
Use-after-free vulnerability in the Peer Objects component aka iepeers.dll in Microsoft Internet Explorer 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via vectors involving access to an invalid pointer after the deletion of an object, as exploited in the wild in March 2010, a...
CVE-2010-0262
Microsoft Office Excel 2007 SP1 and SP2 and Office 2004 for Mac do not properly parse the Excel file format, which allows remote attackers to execute arbitrary code via a crafted spreadsheet that triggers access of an uninitialized stack variable, aka "Microsoft Office Excel FNGROUPNAME Record...
Microsoft Excel FNGROUPNAME记录未初始化内存漏洞(MS10-017)
BUGTRAQ ID: 38553 CVE ID: CVE-2010-0262 Excel是微软Office套件中的电子表格工具。 Excel在解析XSL文件中畸形FnGroupName、BuiltInFnGroupCount和FnGrp12记录时存在未初始化内存漏洞,成功利用此漏洞的攻击者可以完全控制受影响的系统。 Microsoft Excel 2007 SP2 Microsoft Excel 2007 SP1 Microsoft Office 2004 for Mac 临时解决方法: 使用Microsoft Office文件阻断策略以防止打开未知或不可信任来源的Office...
Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists in the decompression of XLSX files. The XL...
Memory corruption
Microsoft Internet Explorer 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that 1 was not properly initialized or 2 is deleted, leading to memory corruption, aka "Uninitialized Memory Corruption Vulnerability," a...
CVE-2010-0244
CVE-2010-0244 : IE6/6 SP1/7/8 memory corruption via uninitialized/deleted objects leading to remote code execution. According to MS MS09-054, the fix is a cumulative IE security update; install the most current IE update(s) to mitigate. The connected KB entry describes the update path and mention...
kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7
The tcffillnode function in net/sched/clsapi.c in the netlink subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6 and earlier, does not initialize a certain tcmpad2 structure member, which might allow local users to obtain sensitive information from kernel memory via unspecified...