Iterators gonna iterate

ES6 gives us a new way to iterate, and it's already supported in stable releases of Firefox, Chrome, & Opera. Here it is: for var num of 1, 2, 3 console.lognum; // Result: 1 // Result: 2 // Result: 3 Unlike for part in thing which iterates through property names of an object in a generic way, for...

php: ArrayIterator use-after-free due to object change during sorting

A use-after-free flaw was found in the way PHP handled certain ArrayIterators. A malicious script author could possibly use this flaw to disclose certain portions of server memory...

php: ArrayIterator use-after-free due to object change during sorting

A use-after-free flaw was found in the way PHP handled certain ArrayIterators. A malicious script author could possibly use this flaw to disclose certain portions of server memory...

PT-2014-1967 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 3.18 Description: The issue is related to the KEYS subsystem in the Linux kernel, which allows local users to gain privileges or cause a denial of service. This can happen through vectors involving a NULL value...

UBUNTU-CVE-2013-7027

The ieee80211radiotapiteratorinit function in net/wireless/radiotap.c in the Linux kernel before 3.11.7 does not check whether a frame contains any data outside of the header, which might allow attackers to cause a denial of service buffer over-read via a crafted header...

Mozilla: Memory corruption found using Address Sanitizer (MFSA 2013-48)

The gfxSkipCharsIterator::SetOffsets function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds read via unspecified vectors...

CVE-2013-1676

The SelectionIterator::GetNextSegment function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to execute arbitrary code or cause a denial of service out-of-bounds read via unspecified vector...

Nmap NSE net: ms-sql-brute

Performs password guessing against Microsoft SQL Server ms-sql. SYNTAX: userdb: The filename of an alternate username database. passdb: The filename of an alternate password database. mssql.timeout: How long to wait for SQL responses. This is a number followed by 'ms' for milliseconds, 's' for...

Nmap NSE net: domcon-brute

Performs brute force password auditing against the Lotus Domino Console. SYNTAX: brute.firstonly: stop guessing after first password is found default: false brute.unique: make sure that each password is only guessed once default: true brute.retries: the number of times to retry if recoverable...

Mozilla Foundation Security Advisory 2010-80

Mozilla Foundation Security Advisory 2010-80 Title: Use-after-free error with nsDOMAttribute MutationObserver Impact: Critical Announced: December 9, 2010 Reporter: regenrecht Products: Firefox, SeaMonkey Fixed in: Firefox 3.6.13 Firefox 3.5.16 SeaMonkey 2.0.11 Description Security researcher...

Microsoft Internet Explorer 6 - Native Function Iterator Denial of Service

Microsoft Internet Explorer 6 - Native Function Iterator Denial of Service source: https://www.securityfocus.com/bid/19140/info Microsoft Internet Explorer is prone to a denial-of-service vulnerability. This issue is triggered when an attacker convinces a victim user to visit a malicious website...