CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5714 matches found

ThreatPost•added 2010/12/10 2:22 p.m.•31 views

New Remotely Exploitable Bug Found in Internet Explorer

Another serious remotely exploitable bug in Internet Explorer has cropped up, this one related to the way that IE handles a specific DLL library on pages that reference CSS files. There also is publicly available exploit code for the new bug. The vulnerability was disclosed initially on the Full...

9.3CVSS1.6AI score0.94354EPSS

Exploits47References5

UbuntuCve•added 2010/12/09 12:0 a.m.•40 views

CVE-2010-3768

Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, Thunderbird before 3.0.11 and 3.1.x before 3.1.7, and SeaMonkey before 2.0.11 do not properly validate downloadable fonts before use within an operating system's font implementation, which allows remote attackers to execute arbitrary code via...

9.3CVSS7.6AI score0.06139EPSS

Exploits0References3

seebug.org•added 2010/12/09 12:0 a.m.•10 views

Internet Explorer 8 CSS Parser Denial of Service

No description provided by source. code div style="position: absolute; top: -999px;left: -999px;" link href="css.css" rel="stylesheet" type="text/css" / /code code of css.css color:red; @import url"css.css"; @import url"css.css"; @import url"css.css"; @import url"css.css"; /code...

7.1AI score

Exploits0

0day.today•added 2010/12/09 12:0 a.m.•20 views

Internet Explorer 8 CSS Parser Denial of Service

Exploit for windows platform in category dos / poc ================================================ Internet Explorer 8 CSS Parser Denial of Service ================================================ color:red; @import url"css.css"; @import url"css.css"; @import url"css.css"; @import url"css.css";...

7AI score

Exploits0

Exploit DB•added 2010/12/08 12:0 a.m.•27 views

Microsoft Internet Explorer 8 - CSS Parser Denial of Service

color:red; @import url"css.css"; @import url"css.css"; @import url"css.css"; @import url"css.css"; Exploit-DB Notes: Original credit goes to an unidentified researcher using WooYun anonymous account "路人甲". WooYun is a connection platform for vendors and security researchers:...

7.4AI score

Exploits0

exploitpack•added 2010/12/08 12:0 a.m.•15 views

Microsoft Internet Explorer 8 - CSS Parser Denial of Service

Microsoft Internet Explorer 8 - CSS Parser Denial of Service color:red; @import url"css.css"; @import url"css.css"; @import url"css.css"; @import url"css.css"; Exploit-DB Notes: Original credit goes to an unidentified researcher using WooYun anonymous account "路人甲". WooYun is a connection platfor...

7.3AI score

Exploits0

The Hacker News•added 2010/12/05 2:25 a.m.•5 views

Social Engineering Ninja v0.4 - Latest Release Download

"S-E Ninja is a Social Engineering tool, with 20-25 popular sites fake pages and anonymous mailer via mail function in PHP. It is a Phishing Web Application Written in PHP,XHTML,CSS,JS." This is the official change log: Edited tables names Added XSS stealer module Now you got control of ipcapture...

6.3AI score

Exploits0

myhack58•added 2010/12/04 12:0 a.m.•1507 views

Microsoft IE CSS tag parsing remote code execution 0day Proc-vulnerability warning-the black bar safety net

Author: ThelostMind Microsoft IE CSS tag parsing remote code execution 0day vulnerabilities, but also a rare remote code execution vulnerability. IE in the processing of a web page in a particular style the label when the vulnerability exists, a remote attacker could exploit this vulnerability by...

2.1AI score

Exploits0

NVD•added 2010/11/22 1:0 p.m.•15 views

CVE-2010-3822

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, accesses an uninitialized pointer during processing of Cascading Style Sheets CSS counter styles, which allows remote attackers to execute arbitrary code or cause a denial of service...

9.3CVSS8.7AI score0.02222EPSS

Exploits0References10

NVD•added 2010/11/22 1:0 p.m.•19 views

CVE-2010-3817

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly perform a cast of an unspecified variable during processing of Cascading Style Sheets CSS 3D transforms, which allows remote attackers to execute arbitrary code or...

9.3CVSS8.8AI score0.02246EPSS

Exploits0References10

NVD•added 2010/11/22 1:0 p.m.•14 views

CVE-2010-3821

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly handle the :first-letter pseudo-element in a Cascading Style Sheets CSS token sequence, which allows remote attackers to execute arbitrary code or cause a denial of...

9.3CVSS8.9AI score0.02415EPSS

Exploits0References11

NVD•added 2010/11/22 1:0 p.m.•16 views

CVE-2010-3819

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly perform a cast of an unspecified variable during processing of Cascading Style Sheets CSS boxes, which allows remote attackers to execute arbitrary code or cause a...

9.3CVSS8.8AI score0.02577EPSS

Exploits0References11

UbuntuCve•added 2010/11/22 1:0 p.m.•20 views

CVE-2010-3817

9.3CVSS6AI score0.02246EPSS

Exploits0References1

UbuntuCve•added 2010/11/22 1:0 p.m.•19 views

CVE-2010-3822

9.3CVSS6.2AI score0.02222EPSS

Exploits0References1

OSV•added 2010/11/22 1:0 p.m.•0 views

UBUNTU-CVE-2010-3819

WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, does not properly perform a cast of an unspecified variable during processing of Cascading Style Sheets CSS boxes, which allows remote attackers to execute arbitrary code or cause a...

9.3CVSS6.2AI score0.02577EPSS

Exploits0References2

OSV•added 2010/11/22 1:0 p.m.•2 views

UBUNTU-CVE-2010-3821

9.3CVSS6.2AI score0.02415EPSS

Exploits0References2