1161 matches found
Design/Logic Flaw
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newclass 0x58 operator, a different vulnerability than CVE-2010-2174...
CVE-2010-2173
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newclass 0x58 operator, a different vulnerability than CVE-2010-2174...
CVE-2010-2174
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newfunction 0x44 operator, a different vulnerability than CVE-2010-2173...
Design/Logic Flaw
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newfunction 0x44 operator, a different vulnerability than CVE-2010-2173...
CVE-2010-2174
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newfunction 0x44 operator, a different vulnerability than CVE-2010-2173...
CVE-2010-2173
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newclass 0x58 operator, a different vulnerability than CVE-2010-2174...
CVE-2010-2173
CVE-2010-2173 affects Adobe Flash Player prior to 9.0.277.0 and Flash Player 10.x prior to 10.1.53.64, and Adobe AIR before 2.0.2.12610, with arbitrary code execution reported via unspecified vectors. The description notes an “invalid pointer vulnerability” related to the newclass (0x58) operator...
Adobe Flash Player newfunction Invalid Pointer Use
$Id: adobeflashplayernewfunction.rb 9477 2010-06-10 20:55:17Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
flash-plugin: multiple security flaws (APSB10-14)
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newclass 0x58 operator, a different vulnerability than CVE-2010-2174...
flash-plugin: multiple security flaws (APSB10-14)
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newclass 0x58 operator, a different vulnerability than CVE-2010-2174...
flash-plugin: multiple security flaws (APSB10-14)
Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newfunction 0x44 operator, a different vulnerability than CVE-2010-2173...
Adobe Flash Player "newfunction" Invalid Pointer Use
This module exploits a vulnerability in the DoABC tag handling within versions 9.x and 10.0 of Adobe Flash Player. Adobe Reader and Acrobat are also vulnerable, as are any other applications that may embed Flash player. Arbitrary code execution is achieved by embedding a specially crafted Flash...
Apple Webkit Attribute Child Removal Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute remote code on vulnerable installations of Apple Webkit. User interaction is required in that a target must be coerced into visiting a malicious page. The specific flaw exists within Webkit's process for destructing attribute objects via the...
Microsoft Internet Explorer Stylesheet Array Removal Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required in that a target must visit a malicious page. The specific flaw exists within IE's support for the CStyleSheet object. When a style sheet...
Apple Safari parent.close() Invalid Pointer Code Execution
Added: 05/28/2010 CVE: CVE-2010-1939 BID: 39990 OSVDB: 64482 Background Safari is a web browser for Mac OS X and Windows. Problem Apple Safari 4.0.5 for Windows and probably earlier allows remote attackers to execute arbitrary code by enticing the user to open a crafted HTML document. The crafted...
Apple Safari parent.close() Invalid Pointer Code Execution
Added: 05/28/2010 CVE: CVE-2010-1939 BID: 39990 OSVDB: 64482 Background Safari is a web browser for Mac OS X and Windows. Problem Apple Safari 4.0.5 for Windows and probably earlier allows remote attackers to execute arbitrary code by enticing the user to open a crafted HTML document. The crafted...
CVE-2009-4134
Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service application crash via a large ZSIZE value in a black-and-white aka B/W RGB image that triggers an invalid pointer dereference...
CVE-2009-4134
Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service application crash via a large ZSIZE value in a black-and-white aka B/W RGB image that triggers an invalid pointer dereference...
CVE-2009-4134
CVE-2009-4134: In Python 2.5, the rgbimg module has a buffer underflow that can cause a denial of service via a crafted B/W SGI-like RGB image with a large ZSIZE, triggering an invalid pointer dereference. The vulnerability is referenced in multiple advisories and vendor bulletins (e.g., MiracleL...
Secunia Flags 'Highly Critical' Safari Zero Day Flaw
A zero-day vulnerability in Apple’s Safari browser could expose millions of Windows users to drive-by download malware attacks. The flaw is currently unpatched. According to an alert from Secunia, the issue is rated “highly critical” because of the risk of remote code execution attacks that can...