Apple Safari WebKit JSString Use After Free Code Execution (CVE-2017-2491)

Safari is a web browsing application developed by Apple. Safari browsing functionality is built around the set of components called WebKit. WebKit is a development toolkit which allows third party developers to build applications that use Internet technologies such as HTML, HTTP, and others. A...

Debian Security Advisory DSA 2768-1 (icedtea-web - heap-based buffer overflow)

A heap-based buffer overflow vulnerability was found in icedtea-web, a web browser plugin for running applets written in the Java programming language. If a user were tricked into opening a malicious website, an attacker could cause the plugin to crash or possibly execute arbitrary code as the us...

Apple Safari WebKit Stale Pointer Use-after-free Code Execution (CVE-2010-3257)

WebKit is a development toolkit which allows third party developers to build applications that use Internet technologies such as HTML, HTTP and others. A code execution vulnerability exists in Apple Safari WebKit. The vulnerability is due to a use-after-free error when processing a stale pointer...

Sun Java Development Toolkit DoS

Crash on font deserialization...