CVE-2011-3217

MediaKit in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted disk image...

CVE-2011-0224

CoreMedia in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted QuickTime movie file...

Double free

Double free vulnerability in OfficeImport in Apple iOS before 5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted Excel spreadsheet...

Buffer overflow

Buffer overflow in QuickTime in Apple Mac OS X before 10.7.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted FlashPix file...

Mozilla Products Multiple Vulnerabilities - Mac OS X

Mozilla Firefox/Seamonkey is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-3327

Heap-based buffer overflow in the ecommunityecom2str function in bgpecommunity.c in bgpd in Quagga before 0.99.19 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code by sending a crafted BGP UPDATE message over IPv4...

ACDSee FotoSlate - '.PLP' File 'id' Local Overflow (Metasploit)

$Id: acdseefotoslatestring.rb 13853 2011-10-10 16:47:33Z sinn3r $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Integer overflow

Integer signedness error in GroupWise Internet Agent GWIA in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a negative BYWEEKNO property in a weekly RRULE variable in a VCALENDAR attachment in an e-mail message...

CVE-2011-2662

Integer signedness error in GroupWise Internet Agent GWIA in Novell GroupWise 8.0 before HP3 allows remote attackers to execute arbitrary code via a negative BYWEEKNO property in a weekly RRULE variable in a VCALENDAR attachment in an e-mail message...

CVE-2010-4889

Unspecified vulnerability in the Tiny Market hmtinymarket extension 0.5.4 and earlier for TYPO3 allows attackers to execute arbitrary code via unknown vectors...

CVE-2011-3362

Integer signedness error in the decoderesidualblock function in cavsdec.c in libavcodec in FFmpeg before 0.7.3 and 0.8.x before 0.8.2, and libav through 0.7.1, allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via a...

CVE-2011-3362

Integer signedness error in the decoderesidualblock function in cavsdec.c in libavcodec in FFmpeg before 0.7.3 and 0.8.x before 0.8.2, and libav through 0.7.1, allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via a...

CVE-2011-3362

FFmpeg/libavcodec is affected by CVE-2011-3362 due to a signedness error in cavsdec.c (decode_residual_block) that can cause memory corruption and application crash, with potential arbitrary code execution via crafted Chinese AVS (CAVS) video. Affected FFmpeg versions include up to 0.7.3 and 0.8....

CVE-2011-3362

Integer signedness error in the decoderesidualblock function in cavsdec.c in libavcodec in FFmpeg before 0.7.3 and 0.8.x before 0.8.2, and libav through 0.7.1, allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via a...

CVE-2011-3005

Use-after-free vulnerability in Mozilla Firefox 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted OGG headers in a .ogg file...

CVE-2011-2997

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

CVE-2011-2995

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknow...

Design/Logic Flaw

Use-after-free vulnerability in Mozilla Firefox 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via crafted OGG headers in a .ogg file...

CVE-2011-2995

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknow...

CVE-2011-2996

Unspecified vulnerability in the plugin API in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...