Mozilla Foundation Security Advisory 2011-13

Mozilla Foundation Security Advisory 2011-13 Title: Multiple dangling pointer vulnerabilities Impact: Critical Announced: April 28, 2011 Reporter: regenrecht Products: Firefox, SeaMonkey Fixed in: Firefox 3.6.17 Firefox 3.5.19 SeaMonkey 2.0.14 Description Security researcher regenrecht reported...

DSA-2228-1 iceweasel - several

Bulletin has no description...

[SECURITY] [DSA 2227-1] iceape security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2227-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff April 30, 2011 http://www.debian.org/security/faq -...

Mozilla dangling pointer flaw (MFSA 2011-13)

Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly use nsTreeRange data structures, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "dangling pointer."...

Mozilla dangling pointer flaw (MFSA 2011-13)

Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly use nsTreeRange data structures, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "dangling pointer."...

Mozilla dangling pointer flaw (MFSA 2011-13)

Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly use nsTreeRange data structures, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "dangling pointer."...

Mozilla dangling pointer flaw (MFSA 2011-13)

Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly use nsTreeRange data structures, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "dangling pointer."...

Mozilla Firefox < 3.5.19 Multiple Vulnerabilities

Binary data 5900.prm...

Mozilla Firefox 3.6.x < 3.6.17 Multiple Vulnerabilities

Binary data 801238.prm...

Mozilla -- multiple vulnerabilities

The Mozilla Project reports: MFSA 2011-12 Miscellaneous memory safety hazards MFSA 2011-13 Multiple dangling pointer vulnerabilities MFSA 2011-14 Information stealing via form history MFSA 2011-15 Escalation of privilege through Java Embedding Plugin MFSA 2011-16 Directory traversal in resource:...

Multiple dangling pointer vulnerabilities — Mozilla

Security researcher regenrecht reported several dangling pointer vulnerabilities via TippingPoint's Zero Day Initiative...

(Pwn2Own) WebKit WBR Tag Removal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way the Webkit librar...

DEBIAN-CVE-2010-3275

libdirectxplugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability."...

CVE-2010-3275

libdirectxplugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability."...

CVE-2010-3275

libdirectxplugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability."...

VLC AMV Dangling Pointer Vulnerability

Exploit for windows platform in category remote exploits $Id: vlcamv.rb 12140 2011-03-26 00:07:36Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensin...

SeaMonkey < 2.0.14 Multiple Vulnerabilities

Binary data 5904.prm...

Mozilla SeaMonkey < 2.0.14 Multiple Vulnerabilities

Binary data 801324.prm...

Memory corruption

WebKit, as used in Apple iTunes before 10.2 on Windows, does not properly parse HTML elements associated with document namespaces, which allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via vectors related to a...

CVE-2011-0149

WebKit, as used in Apple iTunes before 10.2 on Windows, does not properly parse HTML elements associated with document namespaces, which allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via vectors related to a...