CVE-2011-3488

Use-after-free vulnerability in Equis MetaStock 11 and earlier allows remote attackers to execute arbitrary code via a malformed 1 mwc chart, 2 mws chart, 3 mwt template, or 4 mwl layout...

CVE-2011-3492

Stack-based buffer overflow in Azeotech DAQFactory 5.85 build 1853 and earlier allows remote attackers to cause a denial of service crash and execute arbitrary code via a crafted NETB packet to UDP port 20034...

CVE-2011-3493

Multiple stack-based buffer overflows in the DHOneSecondTick function in Cogent DataHub 7.1.1.63 and earlier allow remote attackers to cause a denial of service crash and possibly execute arbitrary code via long 1 domain, 2 reportdomain, 3 registerdatahub, or 4 slave commands...

CVE-2011-3322

Core Server HMI Service Coreservice.exe in Scadatec Limited Procyon SCADA 1.06, and other versions before 1.14, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long password to the Telnet TCP/23 port, which triggers an out-of-bounds read or...

CVE-2011-1982

Microsoft Office 2007 SP2, and 2010 Gold and SP1, does not initialize an unspecified object pointer during the opening of Word documents, which allows remote attackers to execute arbitrary code via a crafted document, aka "Office Uninitialized Object Pointer Vulnerability."...

Design/Logic Flaw

Use-after-free vulnerability in Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1.1 allows attackers to execute arbitrary code via unspecified vectors...

CVE-2011-2440

Use-after-free vulnerability in Adobe Reader and Acrobat 8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1.1 allows attackers to execute arbitrary code via unspecified vectors...

CVE-2011-2440

CVE-2011-2440 is a use-after-free in Adobe Reader and Acrobat (8.x before 8.3.1, 9.x before 9.4.6, and 10.x before 10.1.1) that could allow arbitrary code execution via unspecified vectors. Connected documents confirm the vulnerability is addressed by updates such as Acrobat/Reader 9.4.6 (and rel...

Microsoft SharePoint Multiple Privilege Escalation Vulnerabilities (2451858)

This host is missing an important security update according to Microsoft Bulletin MS11-074. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Excel 4.0 Workbook file detected

A remote code execution vulnerability has been reported in Microsoft Excel. A remote attacker could exploit this vulnerability to execute arbitrary code in an affected system...

DSA-2306-1 ffmpeg - several

Bulletin has no description...

CVE-2011-3342

Multiple buffer overflows in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via vectors related to 1 NAME, 2 PLYR, 3 CHTS, or 4 AIPL aka AI config chunk loading from a savegame...

CVE-2011-3341

Multiple off-by-one errors in ordercmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted CMDINSERTORDER command...

Buffer overflow

Multiple buffer overflows in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via vectors related to 1 NAME, 2 PLYR, 3 CHTS, or 4 AIPL aka AI config chunk loading from a savegame...

CVE-2011-3341

Multiple off-by-one errors in ordercmd.cpp in OpenTTD before 1.1.3 allow remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted CMDINSERTORDER command...

CVE-2011-1944

Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when addi...

CVE-2011-2806

Google Chrome before 13.0.782.215 on Windows does not properly handle vertex data, which allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors...

Memory corruption

RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, RealPlayer Enterprise 2.0 through 2.1.5, and Mac RealPlayer 12.0.0.1569 do not properly handle DEFINEFONT fields in SWF files, which allows remote attackers to execute arbitrary code or cause a...

Heap overflow

Heap-based buffer overflow in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5 and RealPlayer SP 1.0 through 1.1.5 allows remote attackers to execute arbitrary code via a crafted SIPR stream...

CVE-2011-2946

Unspecified vulnerability in an ActiveX control in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.5, RealPlayer SP 1.0 through 1.1.5, and RealPlayer Enterprise 2.0 through 2.1.5 allows remote attackers to execute arbitrary code via unknown vectors...