7 matches found
EUVD-2009-1681
Malware in sbrugna...
SUSE CVE-2009-1686
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle constant aka const declarations in a type-conversion operation during JavaScript exception handling, which allows remote attackers to execute arbitrary code or...
Reply Resource Management Error Vulnerability
DEEPLY is a toolkit for DEEP structure manipulation that provides out-of-the-box DEEP merge/clone functionality. A resource management error vulnerability exists in deeply versions prior to 3.1.0, which arises from a failure of a networked system or product to manage system resources e.g., memory...
Khan Academy: Escaping the iframe via exceptions
You can throw an object with an html property to run arbitrary js Here is an example program that modifies a user's profile. I made the program as private as possible by saving it with nouser and drawing nothing in the hopes that it will be ignored, but if you want me to delete it, I will. The...
CVE-2009-1686
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle constant aka const declarations in a type-conversion operation during JavaScript exception handling, which allows remote attackers to execute arbitrary code or...
CVE-2009-1686
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle constant aka const declarations in a type-conversion operation during JavaScript exception handling, which allows remote attackers to execute arbitrary code or...
CVE-2009-1686
Removed by vendor...