CVE-2010-2173

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newclass 0x58 operator, a different vulnerability than CVE-2010-2174...

CVE-2010-2173

CVE-2010-2173 affects Adobe Flash Player prior to 9.0.277.0 and Flash Player 10.x prior to 10.1.53.64, and Adobe AIR before 2.0.2.12610, with arbitrary code execution reported via unspecified vectors. The description notes an “invalid pointer vulnerability” related to the newclass (0x58) operator...

CVE-2010-2174

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newfunction 0x44 operator, a different vulnerability than CVE-2010-2173...

Adobe Flash Player newfunction Invalid Pointer Use

$Id: adobeflashplayernewfunction.rb 9477 2010-06-10 20:55:17Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

flash-plugin: multiple security flaws (APSB10-14)

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newclass 0x58 operator, a different vulnerability than CVE-2010-2174...

flash-plugin: multiple security flaws (APSB10-14)

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newfunction 0x44 operator, a different vulnerability than CVE-2010-2173...

flash-plugin: multiple security flaws (APSB10-14)

Adobe Flash Player before 9.0.277.0 and 10.x before 10.1.53.64, and Adobe AIR before 2.0.2.12610, might allow attackers to execute arbitrary code via unspecified vectors, related to an "invalid pointer vulnerability" and the newclass 0x58 operator, a different vulnerability than CVE-2010-2174...

Adobe Flash Player "newfunction" Invalid Pointer Use

This module exploits a vulnerability in the DoABC tag handling within versions 9.x and 10.0 of Adobe Flash Player. Adobe Reader and Acrobat are also vulnerable, as are any other applications that may embed Flash player. Arbitrary code execution is achieved by embedding a specially crafted Flash...

Apple Webkit Attribute Child Removal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute remote code on vulnerable installations of Apple Webkit. User interaction is required in that a target must be coerced into visiting a malicious page. The specific flaw exists within Webkit's process for destructing attribute objects via the...

Microsoft Internet Explorer Stylesheet Array Removal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required in that a target must visit a malicious page. The specific flaw exists within IE's support for the CStyleSheet object. When a style sheet...

Apple Safari parent.close() Invalid Pointer Code Execution

Added: 05/28/2010 CVE: CVE-2010-1939 BID: 39990 OSVDB: 64482 Background Safari is a web browser for Mac OS X and Windows. Problem Apple Safari 4.0.5 for Windows and probably earlier allows remote attackers to execute arbitrary code by enticing the user to open a crafted HTML document. The crafted...

Apple Safari parent.close() Invalid Pointer Code Execution

Added: 05/28/2010 CVE: CVE-2010-1939 BID: 39990 OSVDB: 64482 Background Safari is a web browser for Mac OS X and Windows. Problem Apple Safari 4.0.5 for Windows and probably earlier allows remote attackers to execute arbitrary code by enticing the user to open a crafted HTML document. The crafted...

CVE-2009-4134

Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service application crash via a large ZSIZE value in a black-and-white aka B/W RGB image that triggers an invalid pointer dereference...

CVE-2009-4134

Buffer underflow in the rgbimg module in Python 2.5 allows remote attackers to cause a denial of service application crash via a large ZSIZE value in a black-and-white aka B/W RGB image that triggers an invalid pointer dereference...

CVE-2009-4134

CVE-2009-4134: In Python 2.5, the rgbimg module has a buffer underflow that can cause a denial of service via a crafted B/W SGI-like RGB image with a large ZSIZE, triggering an invalid pointer dereference. The vulnerability is referenced in multiple advisories and vendor bulletins (e.g., MiracleL...

Secunia Flags 'Highly Critical' Safari Zero Day Flaw

A zero-day vulnerability in Apple’s Safari browser could expose millions of Windows users to drive-by download malware attacks. The flaw is currently unpatched. According to an alert from Secunia, the issue is rated “highly critical” because of the risk of remote code execution attacks that can...

VulnCheck KEV: CVE-2007-4367

Opera before 9.23 allows remote attackers to execute arbitrary code via crafted Javascript that triggers a "virtual function call on an invalid pointer."...

RedHat Update for wireshark RHSA-2010:0360-01

Check for the Version of wireshark OpenVAS Vulnerability Test RedHat Update for wireshark RHSA-2010:0360-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

CentOS Update for wireshark CESA-2010:0360 centos4 i386

Check for the Version of wireshark OpenVAS Vulnerability Test CentOS Update for wireshark CESA-2010:0360 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...

VUPEN Security Research - Sun Java JDK/JRE AWT Library Invalid Pointer Vulnerability

VUPEN Security Research - Sun Java JDK/JRE AWT Library Invalid Pointer Vulnerability http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Java is a programming language and computing platform released by Sun Microsystems. It is the underlying technology that powers...