CVE-2010-3819

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly perform a cast of an unspecified variable during processing of Cascading Style Sheets CSS boxes, which allows remote attackers to execute arbitrary code or cause a...

CVE-2010-1781

Double free vulnerability in WebKit in Apple iOS before 4.1 on the iPhone and iPod touch allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors related to the rendering of an inline element...

CVE-2010-1792

WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X 10.4; and webkitgtk before 1.2.6; allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted regular expression...

CVE-2010-1407

WebKit in Apple iOS before 4 on the iPhone and iPod touch does not properly implement the history.replaceState method in certain situations involving IFRAME elements, which allows remote attackers to obtain sensitive information via a crafted HTML document...

CVE-2010-0054

Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via vectors involving HTML IMG elements...

CVE-2010-0046

The Cascading Style Sheets CSS implementation in WebKit in Apple Safari before 4.0.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via crafted format arguments...

Unmaintained Gentoo packages

The remote Gentoo system contains several packages or versions which have been marked as obsolete and have been removed from the portage tree. These versions are therefore unmaintained, which means that if any security flaw is found in them, no patch will be made available. In addition to this,...

Gentoo Security Advisory GLSA 200703-24 (mgv)

The remote host is missing updates announced in advisory GLSA 200703-24. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200701-20 (centericq)

The remote host is missing updates announced in advisory GLSA 200701-20. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200701-20 (centericq)

The remote host is missing updates announced in advisory GLSA 200701-20. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

BitchX: Multiple vulnerabilities

Background BitchX is an IRC client. Description bannedit reported a boundary error when handling overly long IRC MODE messages CVE-2007-4584. Nico Golde reported an insecure creation of a temporary file within the ehostname function CVE-2007-5839. Impact A remote attacker could entice a user to...

mgv: Stack overflow in included gv code

Background mgv is a Postscript viewer with a Motif interface, based on Ghostview and GNU gv. Description mgv includes code from gv that does not properly boundary check user-supplied data before copying it into process buffers. Impact An attacker could entice a user to open a specially crafted...

Centericq: Remote buffer overflow in LiveJournal handling

Background Centericq is a text mode menu-driven and window-driven instant messaging interface. Description When interfacing with the LiveJournal service, Centericq does not appropriately allocate memory for incoming data, in some cases creating a buffer overflow. Impact An attacker could entice a...

Unmaintainted Gentoo Packages

The remote Gentoo system contains several packages or versions which have been marked as obsolete and have been removed from the portage tree. These versions are therefore unmaintained, which means that if any security flaw is found in them, no patch will be made available. In addition to this,...

Les Visiteurs v2.0.1 code injection vulnerability

Les Visiteurs is a great statistics script written in php. It gives you some graphicals informations on visitors of your website. This script was distributed by phpinfo.net but is no more maintained since a year. --------- In this version severals unprotected includes can be found in files: -...

Ultrafunk Popcorn 1.20 - Multiple Denial of Service Vulnerabilities

source: https://www.securityfocus.com/bid/5212/info Ultrafunk Popcorn email client is designed for Microsoft Windows systems and is no longer being maintained. It has been reported that Popcorn email client will stop responding when attempting to open malformed messages. Reportedly, a message...

BSD/OS 3.1/4.0.1 / FreeBSD 3.0/3.1/3.2 / RedHat Linux 6.0 - 'amd' Remote Buffer Overflow (2)

// source: https://www.securityfocus.com/bid/614/info There is a remotely exploitable buffer overflow condition in the amd daemon under several operating systems. Amd is a daemon that automatically mounts filesystems whenever a file or directory within that filesystem is accessed. Filesystems are...