1163 matches found
Design/Logic Flaw
The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption...
CVE-2008-5679
The HTML parsing engine in Opera before 9.63 allows remote attackers to execute arbitrary code via crafted web pages that trigger an invalid pointer calculation and heap corruption...
CVE-2008-5679
CVE-2008-5679 affects the Opera web browser (operating on multiple platforms). The issue is in the HTML parsing engine where processing crafted pages triggers an invalid pointer calculation, leading to heap corruption. This vulnerability, part of a set of issues (CVE-2008-5178, CVE-2008-5680–5683...
CVE-2008-3628
Apple QuickTime before 7.5.5 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image, related to an "invalid pointer issue."...
Null pointer dereference
Apple QuickTime before 7.5.5 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image, related to an "invalid pointer issue."...
CVE-2008-3628
Apple QuickTime before 7.5.5 on Windows allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted PICT image, related to an "invalid pointer issue."...
Code injection
BitDefender Antivirus 2008 20080118 and earlier allows local users to cause a denial of service system crash via an invalid pointer to the CLIENTID structure in a call to the NtOpenProcess hooked System Service Descriptor Table SSDT function...
CentOS 3 : unzip (CESA-2008:0196)
Updated unzip packages that fix a security issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The unzip utility is used to list, test, or extract files from a zip archive. An invalid pointer flaw was found in unzip. If a...
unzip code execution
Memory corruption with free with invalid pointer...
Design/Logic Flaw
ParseFTPList.cpp in Mozilla Firefox 2.0.0.7 allows remote FTP servers to cause a denial of service application crash via a crafted reply to an unspecified listing command, related to "reading from invalid pointer."...
GLSA-200708-17 : Opera: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200708-17 Opera: Multiple vulnerabilities An error known as 'a virtual function call on an invalid pointer' has been discovered in the JavaScript engine CVE-2007-4367. Furthermore, iDefense Labs reported that an already-freed...
CVE-2007-4426
Live for Speed LFS S1 and S2 allows remote attackers to cause a denial of service server crash via 1 a certain 0x00 byte in a pre-login ID 3 packet, which triggers a NULL dereference; or 2 a pre-login ID 5 packet that lacks certain strings, which triggers an invalid pointer dereference...
Design/Logic Flaw
Opera before 9.23 allows remote attackers to execute arbitrary code via crafted Javascript that triggers a "virtual function call on an invalid pointer."...
a specially crafted JavaScript can make Opera execute arbitrary code
A virtual function call on an invalid pointer that may referencedata crafted by the attacker can be used to execute arbitrary code...
Integer overflow
Integer overflow in the byteswapsbin function in bsd/ufs/ufs/ufsbyteorder.c in Mac OS X 10.4.8 allows user-assisted remote attackers to cause a denial of service kernel panic by mounting a crafted Unix File System UFS DMG image, which triggers an invalid pointer dereference...
Microsoft Windows WMF invalid pointer dereference
Invalid pointer dereference in GDI on CreateBrushIndirect function...
Design/Logic Flaw
mshtml.dll 6.00.2900.2873, as used in Microsoft Internet Explorer, allows remote attackers to cause a denial of service crash via nested OBJECT tags, which trigger invalid pointer dereferences including NULL dereferences. NOTE: the possibility of code execution was originally theorized, but...
CVE-2006-1992
mshtml.dll 6.00.2900.2873, as used in Microsoft Internet Explorer, allows remote attackers to cause a denial of service crash via nested OBJECT tags, which trigger invalid pointer dereferences including NULL dereferences. NOTE: the possibility of code execution was originally theorized, but...
CVE-2006-0321
fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of service crash via crafted e-mail messages that cause a free of an invalid pointer when fetchmail bounces the message to the originator or local postmaster...
DEBIAN-CVE-2006-0321
fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of service crash via crafted e-mail messages that cause a free of an invalid pointer when fetchmail bounces the message to the originator or local postmaster...