4715 matches found
Mozilla Firefox Multiple Vulnerabilities -01 (Feb 2013) - Mac OS X
Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Java PV_ProcessSampleWithSMOD Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way the Java sou...
Apple QuickTime Player 7.7.3 Out Of Bounds
Title: Apple Quick Time Player WindowsVersion 7.7.3 Out of Bound Read Date: 28th January,2013 Author: Debasish Mandal https://twitter.com/debasishm89 Blog : http://www.debasish.in/ Vendor Homepage: http://www.apple.com/ Software Link: http://www.apple.com/quicktime/download/ Version: Apple Quick...
Apple Quick Time Player (Windows) 7.7.3 - Out of Bound Read
Apple Quick Time Player Windows 7.7.3 - Out of Bound Read Title: Apple Quick Time Player WindowsVersion 7.7.3 Out of Bound Read Date: 28th January,2013 Author: Debasish Mandal https://twitter.com/debasishm89 Blog : http://www.debasish.in/ Vendor Homepage: http://www.apple.com/ Software Link:...
Apple Quick Time Player (Windows) 7.7.3 - Out of Bound Read
Title: Apple Quick Time Player WindowsVersion 7.7.3 Out of Bound Read Date: 28th January,2013 Author: Debasish Mandal https://twitter.com/debasishm89 Blog : http://www.debasish.in/ Vendor Homepage: http://www.apple.com/ Software Link: http://www.apple.com/quicktime/download/ Version: Apple Quick...
Apple Quick Time Player (Windows) Version 7.7.3 Out of Bound Read
Exploit for windows platform in category dos / poc Title: Apple Quick Time Player WindowsVersion 7.7.3 Out of Bound Read Date: 28th January,2013 Author: Debasish Mandal https://twitter.com/debasishm89 Blog : http://www.debasish.in/ Vendor Homepage: http://www.apple.com/ Software Link:...
EZHomeTech EzServer Stack Buffer Overflow
A stack buffer overflow vulnerability has been reported in EZhome Teck EzServer. The vulnerability is due to a bound checking error when processing specially crafted user-supplied input. A remote attacker can trigger the vulnerability by sending a specially crafted request to the server. Successf...
Simple Forum PHP 2.1 SQL Injection
Title: ====== Simple Forum PHP 2.1 - SQL Injection Vulnerabilities Date: ===== 2012-06-10 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=599 VL-ID: ===== 599 Common Vulnerability Scoring System: ==================================== 7.5 Introduction: ============= Simpl...
Design/Logic Flaw
WebDAV Sharing in Apple Mac OS X 10.7.x before 10.7.3 does not properly perform authentication, which allows local users to gain privileges by leveraging access to 1 the server or 2 a bound directory...
CVE-2011-3463
WebDAV Sharing in Apple Mac OS X 10.7.x before 10.7.3 does not properly perform authentication, which allows local users to gain privileges by leveraging access to 1 the server or 2 a bound directory...
VideoSpirit Pro <= v1.68 Local BoF Exploit
Exploit for windows platform in category local exploits Exploit Title: VideoSpirit Pro v1.68 Local BoF Exploit Date: 01/08/2011 Author: xsploitedsec URL: http://www.x-sploited.com/ Contact: xsploitedsecatx-sploited.com Software Link: http://www.verytools.com/videospirit/download.html Vulnerable...
Sun Java Web Start JNLP vm args Stack Overflow (CVE-2008-3111)
The Sun Java Web Start is a component of the Java 2 Runtime Environment JRE. It allows for the network deployment of Java applications. This component enables stand-alone Java applications to be downloaded from a remote network location and invoked on a target machine. There exists a stack buffer...
CVE-2009-2621
CVE-2009-2621 affects Squid: versions 3.0 through 3.0.STABLE16 and 3.1 through 3.1.0.11 are vulnerable to DoS due to improper enforcement of buffer limits and related bound checks, enabling remote denial of service via incomplete requests or requests with large headers (affecting HttpMsg.cc and c...
SuSE Update for OpenOffice_org SUSE-SA:2008:023
Check for the Version of OpenOfficeorg OpenVAS Vulnerability Test $Id: gbsuse2008023.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for OpenOfficeorg SUSE-SA:2008:023 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is...
SuSE Update for krb5 SUSE-SA:2008:016
Check for the Version of krb5 OpenVAS Vulnerability Test $Id: gbsuse2008016.nasl 8050 2017-12-08 09:34:29Z santu $ SuSE Update for krb5 SUSE-SA:2008:016 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...
USN-652-1: LittleCMS vulnerability
Chris Evans discovered that certain ICC operations in lcms were not correctly bounds-checked. If a user or automated system were tricked into processing an image with malicious ICC tags, a remote attacker could crash applications linked against liblcms1, leading to a denial of service, or possibl...
n.runs-SA-2008.002 - F-Prot Out-of-Bound Memory Access DoS (remote)
n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2008.002 16-Jul-2008 Vendor: FRISK F-Prot, http://www.f-prot.com Affected Products: F-Prot Anti-Virus all platforms Vulnerability: Out-of-Bound Memory Access DoS remote Risk: HIGH Vendor communication: 2008/01/22 initial notification t...
F-Prot antivirus DoS
Out-of-bound memory access on CHM files parsing...
openSUSE 10 Security Update : krb5 (krb5-5081)
This update fixes the following security bugs in krb5/krb5-server : - CVE-2008-0062: null/dangling pointer needs enabled krb4 support - CVE-2008-0063: possible operations on uninitialized buffer content/information leak needs enabled krb4 support - CVE-2008-0947/CVE-2008-0948: out-of-bound array...
Bound check ordering issue in random driver
Stack-based buffer overflow in the random number generator RNG implementation in the Linux kernel before 2.6.22 might allow local root users to cause a denial of service or gain privileges by setting the default wakeup threshold to a value greater than the output pool size, which triggers writing...