Lucene search
K

4207 matches found

NVD
NVD
added 2009/06/10 6:30 p.m.23 views

CVE-2009-1529

Microsoft Internet Explorer 7 for Windows XP SP2 and SP3; 7 for Server 2003 SP2; 7 for Vista Gold, SP1, and SP2; and 7 for Server 2008 SP2 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by calling the setCapture method on a collection of crafte...

9.3CVSS7.5AI score0.28745EPSS
Exploits1References9
Prion
Prion
added 2009/06/10 6:30 p.m.16 views

Memory corruption

Microsoft Internet Explorer 7 for Windows XP SP2 and SP3; 7 for Server 2003 SP2; 7 for Vista Gold, SP1, and SP2; and 7 for Server 2008 SP2 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by calling the setCapture method on a collection of crafte...

9.3CVSS8.1AI score0.28745EPSS
Exploits1References9Affected Software1
Check Point Advisories
Check Point Advisories
added 2009/06/09 12:0 a.m.30 views

Internet Explorer Multiple Events Improper Reference Counting (MS09-019; CVE-2009-1530)

Microsoft Internet Explorer is the most widely used Internet browser. A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to the way Internet Explorer accesses an object that has not been correctly initialized or has been deleted. To...

9.3CVSS7.4AI score0.33941EPSS
Exploits1
Symantec
Symantec
added 2009/06/09 12:0 a.m.36 views

Microsoft Internet Explorer (CVE-2009-1141) Uninitialized Memory Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Successful exploits will compromise the application and possibly the computer. Failed attacks m...

9.3CVSS7.2AI score0.27614EPSS
Exploits1References1Affected Software4
RedHat Linux
RedHat Linux
added 2009/06/03 3:48 p.m.5 views

cups: IPP_TAG_UNSUPPORTED handling NULL pointer dereference DoS

The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via a scheduler request with two consecutive IPPTAGUNSUPPORTED tags...

7.5CVSS6.7AI score0.19633EPSS
Exploits3References4
RedHat Linux
RedHat Linux
added 2009/06/02 4:5 p.m.5 views

kernel: nfsv4 client can be crashed by stating a long filename

fs/nfs/client.c in the Linux kernel before 2.6.23 does not properly initialize a certain structure member that stores the maximum NFS filename length, which allows local users to cause a denial of service OOPS via a long filename, related to the encodelookup function...

4.9CVSS6.1AI score0.00411EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/05/13 2:32 p.m.4 views

xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a free of uninitialized memory...

4.3CVSS5.8AI score0.02318EPSS
Exploits1References4
OSV
OSV
added 2009/05/06 12:0 a.m.73 views

DSA-1794-1 linux-2.6 - multiple vulnerabilities

Bulletin has no description...

10CVSS6.2AI score0.1673EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2009/05/06 12:0 a.m.41 views

Debian DSA-1790-1 : xpdf - multiple vulnerabilities

Several vulnerabilities have been identified in xpdf, a suite of tools for viewing and converting Portable Document Format PDF files. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2009-0146 Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2...

10CVSS6.1AI score0.07347EPSS
Exploits1References24
RedHat Linux
RedHat Linux
added 2009/04/30 9:22 p.m.5 views

kernel: memory disclosure in SO_BSDCOMPAT gsopt

The sockgetsockopt function in net/core/sock.c in the Linux kernel before 2.6.28.6 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel memory via an SOBSDCOMPAT getsockopt request...

2.1CVSS6.1AI score0.00701EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2009/04/30 8:55 p.m.9 views

xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a free of uninitialized memory...

4.3CVSS5.8AI score0.02318EPSS
Exploits1References4
seebug.org
seebug.org
added 2009/04/28 12:0 a.m.29 views

libvirt_proxy <= 0.5.1 Local Privilege Escalation Exploit

No description provided by source. / cve-2009-0036.c libvirtproxy = 0.5.1 Local Privilege Escalation Exploit Jon Oberheide [email protected] http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0036 Buffer overflow in the proxyReadClientSocket function in...

4.4CVSS0.1AI score0.01172EPSS
Exploits7
NVD
NVD
added 2009/04/27 6:0 p.m.23 views

CVE-2009-1436

The db interface in libc in FreeBSD 6.3, 6.4, 7.0, 7.1, and 7.2-PRERELEASE does not properly initialize memory for Berkeley DB 1.85 database structures, which allows local users to obtain sensitive information by reading a database file...

4.9CVSS5.7AI score0.00892EPSS
Exploits1References6
exploitpack
exploitpack
added 2009/04/27 12:0 a.m.65 views

libvirt_proxy 0.5.1 - Local Privilege Escalation

libvirtproxy 0.5.1 - Local Privilege Escalation / cve-2009-0036.c libvirtproxy http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0036 Buffer overflow in the proxyReadClientSocket function in proxy/libvirtproxy.c in libvirtproxy 0.5.1 might allow local...

4.4CVSS0.6AI score0.01172EPSS
Exploits7
Exploit DB
Exploit DB
added 2009/04/27 12:0 a.m.40 views

libvirt_proxy 0.5.1 - Local Privilege Escalation

/ cve-2009-0036.c libvirtproxy http://jon.oberheide.org Information: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0036 Buffer overflow in the proxyReadClientSocket function in proxy/libvirtproxy.c in libvirtproxy 0.5.1 might allow local users to gain privileges by sending a portion of t...

4.4CVSS6.4AI score0.01172EPSS
Exploits7
seebug.org
seebug.org
added 2009/04/25 12:0 a.m.20 views

FreeBSD libc Berkley DB接口未初始化内存本地信息泄露漏洞

BUGTRAQ ID: 34666 FreeBSD就是一种运行在Intel平台上、可以自由使用的开放源码Unix类系统。 FreeBSD的C库(libc)包含有用于创建和访问Berkeley DB 1.85数据库文件的代码。由于Berkeley DB向数据库文件中写入了从malloc3获得的未初始化内存,使用db3接口创建Berkeley数据库文件的程序可能向数据库文件泄露敏感信息。如果其他用户可以读取这些文件,就会导致泄漏敏感信息,如登录凭据。 FreeBSD FreeBSD 7.1 FreeBSD FreeBSD 7.0 FreeBSD FreeBSD 6.4 FreeBSD...

6.8AI score
Exploits0
OSV
OSV
added 2009/04/23 5:30 p.m.2 views

DEBIAN-CVE-2009-0166

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a free of uninitialized memory...

4.3CVSS6.8AI score0.02318EPSS
Exploits1References1
OSV
OSV
added 2009/04/23 5:30 p.m.8 views

CVE-2009-0166

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a free of uninitialized memory...

6.4AI score
Exploits0References41
Prion
Prion
added 2009/04/23 5:30 p.m.19 views

Design/Logic Flaw

The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a free of uninitialized memory...

4.3CVSS7AI score0.02318EPSS
Exploits1References40Affected Software4
seebug.org
seebug.org
added 2009/04/23 12:0 a.m.19 views

FreeBSD libc Berkley DB接口未初始化内存本地信息泄漏漏洞

BUGTRAQ ID: 34666 CNCAN ID:CNCAN-2009042302 FreeBSD是一款开放源代码的BSD操作系统。 FreeBSD libc Berkeley DB接口写malloc3中获得的未初始化内存到数据库文件,本地攻击者可以利用漏洞获得敏感信息。 FreeBSD FreeBSD 7.1-STABLE FreeBSD FreeBSD 7.1-RELEASE-p4 FreeBSD FreeBSD 7.1 -RELEASE-p2 FreeBSD FreeBSD 7.1 -RELEASE-p1 FreeBSD FreeBSD 7.1 -PRE-RELEASE...

6.9AI score
Exploits0
Rows per page
Query Builder