Lucene search
K

4202 matches found

Prion
Prion
added 2008/07/07 11:41 p.m.21 views

Design/Logic Flaw

Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not properly handle an invalid .properties file for an add-on, which allows remote attackers to read uninitialized memory, as demonstrated by use of ISO 8859 encoding instead of UTF-8 encoding in a French .properties file...

5CVSS6.4AI score0.0156EPSS
Exploits1References55Affected Software2
securityvulns
securityvulns
added 2008/07/03 12:0 a.m.58 views

Mozilla Foundation Security Advisory 2008-29

Mozilla Foundation Security Advisory 2008-29 Title: Faulty .properties file results in uninitialized memory being used Impact: Low Announced: July 1, 2008 Reporter: Daniel Glazman Products: Firefox, SeaMonkey Fixed in: Firefox 2.0.0.15 SeaMonkey 1.1.10 Description Mozilla developer Daniel Glazman...

5CVSS0.1AI score0.0156EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2008/07/02 12:37 p.m.7 views

Firefox .properties memory leak

Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not properly handle an invalid .properties file for an add-on, which allows remote attackers to read uninitialized memory, as demonstrated by use of ISO 8859 encoding instead of UTF-8 encoding in a French .properties file...

5CVSS5.8AI score0.0156EPSS
Exploits1References4
Mozilla
Mozilla
added 2008/07/01 12:0 a.m.29 views

Faulty .properties file results in uninitialized memory being used — Mozilla

Mozilla developer Daniel Glazman demonstrated that an improperly encoded .properties file in an add-on can result in uninitialized memory being used. This could potentially result in small chunks of data formerly used by other programs being exposed to the add-on code. If the localized string wer...

5CVSS1.8AI score0.0156EPSS
Exploits1References2Affected Software3
UbuntuCve
UbuntuCve
added 2008/06/30 10:41 p.m.31 views

CVE-2008-0598

Unspecified vulnerability in the 32-bit and 64-bit emulation in the Linux kernel 2.6.9, 2.6.18, and probably other versions allows local users to read uninitialized memory via unknown vectors involving a crafted binary...

4.9CVSS7.1AI score0.0037EPSS
Exploits1References2
NVD
NVD
added 2008/06/30 10:41 p.m.19 views

CVE-2008-0598

Unspecified vulnerability in the 32-bit and 64-bit emulation in the Linux kernel 2.6.9, 2.6.18, and probably other versions allows local users to read uninitialized memory via unknown vectors involving a crafted binary...

4.9CVSS5.6AI score0.0037EPSS
Exploits1References24
Cvelist
Cvelist
added 2008/06/30 10:0 p.m.20 views

CVE-2008-0598

Unspecified vulnerability in the 32-bit and 64-bit emulation in the Linux kernel 2.6.9, 2.6.18, and probably other versions allows local users to read uninitialized memory via unknown vectors involving a crafted binary...

5.6AI score0.0037EPSS
Exploits1References24
RedHat Linux
RedHat Linux
added 2008/06/25 3:43 p.m.4 views

kernel: linux x86_64 ia32 emulation leaks uninitialized data

Unspecified vulnerability in the 32-bit and 64-bit emulation in the Linux kernel 2.6.9, 2.6.18, and probably other versions allows local users to read uninitialized memory via unknown vectors involving a crafted binary...

4.9CVSS7.1AI score0.0037EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2008/06/25 3:13 p.m.4 views

kernel: linux x86_64 ia32 emulation leaks uninitialized data

Unspecified vulnerability in the 32-bit and 64-bit emulation in the Linux kernel 2.6.9, 2.6.18, and probably other versions allows local users to read uninitialized memory via unknown vectors involving a crafted binary...

4.9CVSS7.1AI score0.0037EPSS
Exploits1References4
securityvulns
securityvulns
added 2008/06/25 12:0 a.m.39 views

ClamAV antivirus DoS

Uninitialized memory reference on Petite-copmpressed files parsing...

5CVSS4.1AI score0.04708EPSS
Exploits2References1Affected Software1
securityvulns
securityvulns
added 2008/06/14 12:0 a.m.47 views

Microsoft Active Directory DoS

Uninitialized memory reference on LDAP processing...

7.1CVSS2.5AI score0.27144EPSS
Exploits1References2
securityvulns
securityvulns
added 2008/06/07 12:0 a.m.81 views

Asterisk voice server DoS

SIP protocol parsing NULL pointer dereference in pedantic mode. Uninitialized memory reference on in ooh323 channel driver...

5CVSS4.1AI score0.07273EPSS
Exploits1References2Affected Software2
Tenable Nessus
Tenable Nessus
added 2008/05/01 12:0 a.m.51 views

FreeBSD : png -- unknown chunk processing uninitialized memory access (57c705d6-12ae-11dd-bab7-0016179b2dd5)

Secunia reports : Tavis Ormandy has reported a vulnerability in libpng, which can be exploited by malicious people to cause a Denial of Service, disclose potentially sensitive information, or potentially compromise an application using the library. The vulnerability is caused due to the improper...

7.5CVSS8.3AI score0.05514EPSS
Exploits1References3
NVD
NVD
added 2008/04/14 4:5 p.m.17 views

CVE-2008-1382

libpng 1.0.6 through 1.0.32, 1.2.0 through 1.2.26, and 1.4.0beta01 through 1.4.0beta19 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a PNG file with zero length "unknown" chunks, which trigger an access of uninitialized memory...

7.5CVSS7.2AI score0.05514EPSS
Exploits1References58
Cvelist
Cvelist
added 2008/04/14 4:0 p.m.20 views

CVE-2008-1382

libpng 1.0.6 through 1.0.32, 1.2.0 through 1.2.26, and 1.4.0beta01 through 1.4.0beta19 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a PNG file with zero length "unknown" chunks, which trigger an access of uninitialized memory...

7.6AI score0.05514EPSS
Exploits1References58
securityvulns
securityvulns
added 2008/04/14 12:0 a.m.50 views

[oCERT-2008-003] libpng zero-length chunks incorrect handling

2008/04/12 2008-003 libpng zero-length chunks incorrect handling Description: Applications using libpng that install unknown chunk handlers, or copy unknown chunks, may be vulnerable to a security issue which may result in incorrect output, information leaks, crashes, or arbitrary code execution...

7.5CVSS0.4AI score0.05514EPSS
Exploits1
securityvulns
securityvulns
added 2008/04/14 12:0 a.m.46 views

libpng uninitialized memory reference

Uninitilized memory reference on zero-sized chunk with external chunk handlers...

7.5CVSS3.3AI score0.05514EPSS
Exploits1References1Affected Software1
FreeBSD
FreeBSD
added 2008/04/12 12:0 a.m.44 views

png -- unknown chunk processing uninitialized memory access

Secunia reports: Tavis Ormandy has reported a vulnerability in libpng, which can be exploited by malicious people to cause a Denial of Service, disclose potentially sensitive information, or potentially compromise an application using the library. The vulnerability is caused due to the improper...

7.5CVSS7.3AI score0.05514EPSS
Exploits1References2
securityvulns
securityvulns
added 2008/03/06 12:0 a.m.48 views

Perforce Software Configuration Management multiple security vulnerabilities

Multiple DoS conditions endless loop, uninitialized memory reference, NULL pointer dereference...

2.3AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2008/02/27 12:0 a.m.110 views

Mozilla Foundation Security Advisory 2008-07

Mozilla Foundation Security Advisory 2008-07 Title: Possible information disclosure in BMP decoder Impact: Moderate Announced: February 19, 2008 Reporter: Gynvael Coldwind // Vexillium Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 2.0.0.12 Thunderbird 2.0.0.12 SeaMonkey 1.1.8...

9.3CVSS0.8AI score0.02224EPSS
Exploits1
Rows per page
Query Builder