Lucene search
K

122 matches found

Debian CVE
Debian CVE
added 2009/11/13 3:0 p.m.34 views

CVE-2009-2841

Removed by vendor...

5CVSS6.7AI score0.02913EPSS
Exploits2
Prion
Prion
added 2009/10/14 10:30 a.m.22 views

Design/Logic Flaw

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not properly handle argument validation for unspecified variables, which allows remote attackers to execute arbitrary code via a crafted HTML document, aka "HTML Component Handling Vulnerability."...

9.3CVSS7.9AI score0.19533EPSS
Exploits1References3Affected Software4
OpenVAS
OpenVAS
added 2009/09/02 12:0 a.m.29 views

Fedora Core 11 FEDORA-2009-8800 (qt)

The remote host is missing an update to qt announced via advisory FEDORA-2009-8800. OpenVAS Vulnerability Test $Id: fcore20098800.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8800 qt Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

9.3CVSS0.1AI score0.06192EPSS
Exploits0References1
NVD
NVD
added 2009/07/09 4:30 p.m.26 views

CVE-2009-2419

Use-after-free vulnerability in the servePendingRequests function in WebCore in WebKit in Apple Safari 4.0 and 4.0.1 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted HTML document that references a zero-length .js file and the...

4.3CVSS8.7AI score0.09071EPSS
Exploits1References9
UbuntuCve
UbuntuCve
added 2009/07/09 4:30 p.m.25 views

CVE-2009-2419

Use-after-free vulnerability in the servePendingRequests function in WebCore in WebKit in Apple Safari 4.0 and 4.0.1 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted HTML document that references a zero-length .js file and the...

4.3CVSS6AI score0.09071EPSS
Exploits1References1
CVE
CVE
added 2009/07/09 4:0 p.m.73 views

CVE-2009-2419

CVE-2009-2419 is a use-after-free vulnerability in WebKit’s servePendingRequests within Apple Safari 4.0 and 4.0.1. The issue can let remote attackers crash the browser or possibly execute arbitrary code via a crafted HTML document that references a zero-length .js file and the JavaScript reload ...

4.3CVSS8.6AI score0.09071EPSS
Exploits1References9Affected Software1
Prion
Prion
added 2009/06/12 9:30 p.m.17 views

Design/Logic Flaw

Mozilla Firefox before 3.0.11 and SeaMonkey before 1.1.17 associate local documents with external domain names located after the file:// substring in a URL, which allows user-assisted remote attackers to read arbitrary cookies via a crafted HTML document, as demonstrated by a URL with...

4.3CVSS6.6AI score0.02325EPSS
Exploits1References28Affected Software2
NVD
NVD
added 2008/12/10 2:0 p.m.19 views

CVE-2008-4259

Microsoft Internet Explorer 7 sometimes attempts to access uninitialized memory locations, which allows remote attackers to execute arbitrary code via a crafted HTML document that triggers memory corruption, related to a WebDAV request for a file with a long name, aka "HTML Objects Memory...

9.3CVSS7.3AI score0.32661EPSS
Exploits0References8
Prion
Prion
added 2008/12/10 2:0 p.m.21 views

Memory corruption

The DataGrid ActiveX control in Microsoft Visual Basic 6.0 and Visual FoxPro 8.0 SP1 and 9.0 SP1 and SP2 does not properly handle errors during access to incorrectly initialized objects, which allows remote attackers to execute arbitrary code via a crafted HTML document, related to corruption of...

8.5CVSS7.7AI score0.20976EPSS
Exploits0References7Affected Software5
Prion
Prion
added 2008/12/10 2:0 p.m.19 views

Memory corruption

The Charts ActiveX control in Microsoft Visual Basic 6.0, Visual Studio .NET 2002 SP1 and 2003 SP1, and Visual FoxPro 8.0 SP1 and 9.0 SP1 and SP2 does not properly handle errors during access to incorrectly initialized objects, which allows remote attackers to execute arbitrary code via a crafted...

8.5CVSS7.7AI score0.20976EPSS
Exploits1References7Affected Software5
Prion
Prion
added 2008/11/25 11:30 p.m.32 views

Memory corruption

Safari in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 does not properly handle HTML TABLE elements, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted HTML document...

9.3CVSS7.8AI score0.0585EPSS
Exploits0References13Affected Software1
NVD
NVD
added 2008/11/25 11:30 p.m.23 views

CVE-2008-4231

Safari in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 does not properly handle HTML TABLE elements, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted HTML document...

9.3CVSS7.8AI score0.0585EPSS
Exploits0References13
Cvelist
Cvelist
added 2008/10/15 12:0 a.m.30 views

CVE-2008-3475

Microsoft Internet Explorer 6 does not properly handle errors related to using the componentFromPoint method on xml objects that have been 1 incorrectly initialized or 2 deleted, which allows remote attackers to execute arbitrary code via a crafted HTML document, aka "Uninitialized Memory...

8.9AI score0.39864EPSS
Exploits1References12
NVD
NVD
added 2008/07/07 11:41 p.m.33 views

CVE-2008-2463

The Microsoft Office Snapshot Viewer ActiveX control in snapview.ocx 10.0.5529.0, as distributed in the standalone Snapshot Viewer and Microsoft Office Access 2000 through 2003, allows remote attackers to download arbitrary files to a client machine via a crafted HTML document or e-mail message,...

6.8CVSS6.8AI score0.59125EPSS
Exploits9References12
Check Point Advisories
Check Point Advisories
added 2007/10/10 12:0 a.m.4 views

VMware Workstation ActiveX Control vielib.dll Command Execution (CVE-2007-4058)

VMware Workstation is a virtualization technology that allows running multiple instances of virtual computers simultaneously with the hosting operating system. A remote attacker could exploit this issue by convincing a user to visit a specially crafted HTML document or open a malicious web page...

4.3CVSS7.2AI score0.22381EPSS
Exploits6
CERT
CERT
added 2007/04/18 12:0 a.m.31 views

Second Sight Software ActiveGS ActiveX control stack buffer overflows

Overview The Second Sight Software ActiveGS ActiveX control contains several stack buffer overflows, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Second Sight Software ActiveGS is an Apple IIGS emulator that is provided as an...

6.8CVSS7.2AI score0.0585EPSS
Exploits0References3
NVD
NVD
added 2006/12/15 10:28 p.m.18 views

CVE-2006-6603

Buffer overflow in the YMMAPI.YMailAttach ActiveX control ymmapi.dll before 2005.1.1.4 in Yahoo! Messenger allows remote attackers to execute arbitrary code via a crafted HTML document. NOTE: some details were obtained from third party information...

9.3CVSS7.7AI score0.06506EPSS
Exploits0References6
Cvelist
Cvelist
added 2006/12/15 10:0 p.m.21 views

CVE-2006-6603

Buffer overflow in the YMMAPI.YMailAttach ActiveX control ymmapi.dll before 2005.1.1.4 in Yahoo! Messenger allows remote attackers to execute arbitrary code via a crafted HTML document. NOTE: some details were obtained from third party information...

7.6AI score0.06506EPSS
Exploits0References6
NVD
NVD
added 2006/12/04 11:28 a.m.10 views

CVE-2006-3893

Multiple buffer overflows in the ActiveX controls in Newtone ImageKit 5 before Fix 30 and 6 before Fix 40, as used in CASIO Photo Loader software before 3.01 and possibly other software, allow remote attackers to execute arbitrary code via a crafted HTML document...

10CVSS7.6AI score0.06536EPSS
Exploits0References6
securityvulns
securityvulns
added 2006/09/28 12:0 a.m.43 views

US-CERT Technical Cyber Security Alert TA06-270A -- Microsoft Internet Explorer WebViewFolderIcon ActiveX Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA06-270A Microsoft Internet Explorer WebViewFolderIcon ActiveX Vulnerability Original release date: September 27, 2006 Last revised: -- Source: US-CERT Systems Affected Microsoft Windows...

9.3CVSS6.8AI score0.63817EPSS
Exploits9
Rows per page
Query Builder