3882 matches found
DEBIAN-CVE-2011-2161
The apereadheader function in ape.c in libavformat in FFmpeg before 0.5.4, as used in MPlayer, VideoLAN VLC media player, and other products, allows remote attackers to cause a denial of service application crash via an APE aka Monkey's Audio file that contains a header but no frames...
kernel: gro: reset dev and skb_iff on skb reuse
The napireuseskb function in net/core/dev.c in the Generic Receive Offload GRO implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might allow remote attackers to cause a denial of service NULL pointer dereference via a malformed VLAN fra...
kernel: gro: reset dev and skb_iff on skb reuse
The napireuseskb function in net/core/dev.c in the Generic Receive Offload GRO implementation in the Linux kernel before 2.6.38 does not reset the values of certain structure members, which might allow remote attackers to cause a denial of service NULL pointer dereference via a malformed VLAN fra...
PT-2012-1310 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.37 Description: The issue is related to the orinoco ioctl set auth function in the Linux kernel, which does not properly implement a TKIP protection mechanism. This makes it easier for remote attackers to...
CVE-2011-0172
AirPort in Apple Mac OS X 10.6 before 10.6.7 allows remote attackers to cause a denial of service divide-by-zero error and reboot via Wi-Fi frames on the local wireless network, a different vulnerability than CVE-2011-0162...
Design/Logic Flaw
AirPort in Apple Mac OS X 10.6 before 10.6.7 allows remote attackers to cause a denial of service divide-by-zero error and reboot via Wi-Fi frames on the local wireless network, a different vulnerability than CVE-2011-0162...
Design/Logic Flaw
Google Chrome before 10.0.648.127 does not prevent 1 navigation and 2 close operations on the top location of a sandboxed frame, which has unspecified impact and remote attack vectors...
MediaWiki < 1.16.1 'Frames Processing Clickjacking' Information Disclosure Vulnerability
MediaWiki is prone to a clickjacking information disclosure vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
kernel: igb panics when receiving tag vlan packet
The igbreceiveskb function in drivers/net/igb/igbmain.c in the Intel Gigabit Ethernet aka igb subsystem in the Linux kernel before 2.6.34, when Single Root I/O Virtualization SR-IOV and promiscuous mode are enabled but no VLANs are registered, allows remote attackers to cause a denial of service...
libvpx: memory corruption flaw
WebM libvpx aka the VP8 Codec SDK before 0.9.5, as used in Google Chrome before 7.0.517.44, allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via invalid frames...
kernel: e1000 issue reported at 26c3
drivers/net/e1000/e1000main.c in the e1000 driver in the Linux kernel 2.6.32.3 and earlier handles Ethernet frames that exceed the MTU by processing certain trailing payload data as if it were a complete frame, which allows remote attackers to bypass packet filters via a large packet with a craft...
DEBIAN-CVE-2010-4203
WebM libvpx aka the VP8 Codec SDK before 0.9.5, as used in Google Chrome before 7.0.517.44, allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via invalid frames...
CVE-2010-4203
WebM libvpx aka the VP8 Codec SDK before 0.9.5, as used in Google Chrome before 7.0.517.44, allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via invalid frames...
CVE-2010-4203
WebM libvpx aka the VP8 Codec SDK before 0.9.5, as used in Google Chrome before 7.0.517.44, allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via invalid frames...
Firefox race condition flaw (MFSA 2010-73)
Mozilla Firefox 3.5.x through 3.5.14 and 3.6.x through 3.6.11, Thunderbird 3.1.6 before 3.1.6 and 3.0.x before 3.0.10, and SeaMonkey 2.x before 2.0.10, when JavaScript is enabled, allows remote attackers to execute arbitrary code via vectors related to nsCSSFrameConstructor::ContentAppended, the...
Immunity Canvas: FIREFOX_APPENDCHILD
Name| firefoxappendchild ---|--- CVE| CVE-2010-3765 Exploit Pack| CANVAS Description| firefoxappendchild Notes| CVE Name: CVE-2010-3765 VENDOR: Mozilla Notes: Interleaving document.write and appendChild can lead to duplicate text frames and overrunning of text run buffers. This exploit can only b...
SuSE 10 Security Update : the Linux kernel (ZYPP Patch Number 6779)
This update fixes various bugs and some security issues in the SUSE Linux Enterprise 10 SP 3 kernel. The following security issues were fixed : - drivers/net/e1000/e1000main.c in the e1000 driver in the Linux kernel handles Ethernet frames that exceed the MTU by processing certain trailing payloa...
CVE-2010-2983
The workgroup bridge aka WGB functionality in Cisco Unified Wireless Network UWN Solution 7.x before 7.0.98.0 allows remote attackers to cause a denial of service dropped connection via a series of spoofed EAPoL-Logoff frames, related to an "EAPoL logoff attack," aka Bug ID CSCte43374...
CVE-2010-2983
The workgroup bridge aka WGB functionality in Cisco Unified Wireless Network UWN Solution 7.x before 7.0.98.0 allows remote attackers to cause a denial of service dropped connection via a series of spoofed EAPoL-Logoff frames, related to an "EAPoL logoff attack," aka Bug ID CSCte43374...
D-Link DWL-G132 Wireless Driver Beacon Rates Overflow
D-Link DWL-G132 Wireless Driver Beacon Rates Overflow. CVE-2006-6055. Remote exploit for windows platform $Id: dlinkwifirates.rb 9670 2010-07-03 03:19:07Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...