CVE-2011-3108

Use-after-free vulnerability in Google Chrome before 19.0.1084.52 allows remote attackers to execute arbitrary code via vectors related to the browser cache...

CVE-2012-2118

Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name...

CVE-2012-2406

RealNetworks RealPlayer before 15.0.4.53, and RealPlayer SP 1.0 through 1.1.5, does not properly parse ASMRuleBook data in RealMedia files, which allows remote attackers to execute arbitrary code via a crafted file...

CVE-2012-0670

Integer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted sean atom in a movie file...

CVE-2012-2335

php-wrapper.fcgi does not properly handle command-line arguments, which allows remote attackers to bypass a protection mechanism in PHP 5.3.12 and 5.4.2 and execute arbitrary code by leveraging improper interaction between the PHP sapi/cgi/cgimain.c component and a query string beginning with a +...

Fedora Update for php FEDORA-2012-6907

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CVE-2012-0729

Unrestricted file upload vulnerability in IBM Rational AppScan Enterprise 5.x and 8.x before 8.5.0.1 allows remote authenticated users to execute arbitrary ASP.NET code by uploading a .aspx file, and then accessing it via unspecified vectors...

Debian Security Advisory DSA 2451-1 (puppet)

The remote host is missing an update to puppet announced via advisory DSA 2451-1. OpenVAS Vulnerability Test $Id: deb24511.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2451-1 puppet Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

CVE-2012-1135

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service invalid heap read operation and memory corruption or possibly execute arbitrary code via vectors involving the NPUSHB and NPUSHW instructions in a TrueTy...

CVE-2012-1138

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service invalid heap read operation and memory corruption or possibly execute arbitrary code via vectors involving the MIRP instruction in a TrueType font...

CVE-2012-1142

FreeType before 2.4.9, as used in Mozilla Firefox Mobile before 10.0.4 and other products, allows remote attackers to cause a denial of service invalid heap write operation and memory corruption or possibly execute arbitrary code via crafted glyph-outline data in a font...

Heap overflow

Heap-based buffer overflow in the Ole API in the CQOle ActiveX control in cqole.dll in IBM Rational ClearQuest 7.1.1 before 7.1.1.9, 7.1.2 before 7.1.2.6, and 8.0.0 before 8.0.0.2 allows remote attackers to execute arbitrary code via a crafted web page that leverages a...

CVE-2012-0708

Heap-based buffer overflow in the Ole API in the CQOle ActiveX control in cqole.dll in IBM Rational ClearQuest 7.1.1 before 7.1.1.9, 7.1.2 before 7.1.2.6, and 8.0.0 before 8.0.0.2 allows remote attackers to execute arbitrary code via a crafted web page that leverages a...

Opera Browser Multiple Vulnerabilities July-11 (Mac OS X)

The host is installed with Opera browser and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: gboperamultvulnmacosxjuly11.nasl 5956 2017-04-14 09:02:12Z teissa $ Opera Browser Multiple Vulnerabilities July-11 Mac OS X Authors: Madhuri D Copyright: Copyright c 2012 Greenbone...

Buffer overflow

Buffer overflow in ngxhttpmp4module.c in the ngxhttpmp4module module in nginx 1.0.7 through 1.0.14 and 1.1.3 through 1.1.18, when the mp4 directive is used, allows remote attackers to cause a denial of service memory overwrite or possibly execute arbitrary code via a crafted MP4 file...

Buffer overflow

Buffer overflow in libarchive through 2.8.5 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted TAR archive...

Buffer overflow

Multiple buffer overflows in the 1 heapaddentry and 2 relocatedir functions in archivereadsupportformatiso9660.c in libarchive through 2.8.5 allow remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted ISO9660 image...

CVE-2011-1778

Buffer overflow in libarchive through 2.8.5 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted TAR archive...

CVE-2011-4874

CVE-2011-4874 affects MICROSYS PROMOTIC before 8.1.7. A use-after-free in handling a crafted project file (.pra) can lead to arbitrary code execution or data corruption with application crash. Affected products: PROMOTIC versions prior to 8.1.7. Exploitation is not remotely exploitable per ICS-CE...

CVE-2012-0043

Buffer overflow in the reassemblemessage function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a series of fragmented RLC...