Microsoft Office Component Memory Misreference Vulnerability (CNVD-2015-02512)

Microsoft office is a suite of office applications distributed by Microsoft. A memory misreference vulnerability in Microsoft's handling of specially crafted office documents allows remote attackers to construct malicious files that can be parsed by tricking users into executing arbitrary code...

Apple Mac OS X CoreAnimation Memory Misreference Vulnerability

Apple Mac OS X is an operating system developed by Apple Inc. A memory misreference vulnerability in Apple Mac OS X CoreAnimation allows an attacker to construct a malicious WEB site and trick users into parsing it, which could execute arbitrary code...

Oxide Memory Misreference Vulnerability

Oxide is a WEB browsing engine. A memory misreference vulnerability exists in Oxide's handling of the deletion of all WebContents when a RenderProcessHost instance exists, which allows an attacker to exploit the vulnerability to crash the application or execute arbitrary code...

Mozilla Firefox memory misreference vulnerability (CNVD-2015-02176)

Mozilla Firefox is a web browser developed by the Mozilla Foundation in conjunction with the open source community. Mozilla Firefox suffers from a memory misreference vulnerability. The vulnerability allows remote attackers to construct malicious MP3 files and trick users into parsing them, which...

PHP phar_rename_archive function memory misreference vulnerability

PHP is a popular programming language. A use-after-release vulnerability in the pharrenamearchive function in PHP pharobject.c allows remote attackers to attempt to rename a Phar archive to an existing file, which can cause the application to crash...

PHP process_nested_data function memory misreference vulnerability

PHP is a popular programming language. A memory misreference vulnerability in the processnesteddata function in PHP ext/standard/varunserializer.re allows remote attackers to execute arbitrary code using special unserialized calls...

PHP DateInterval unserialize() function memory misreference vulnerability

PHP DateInterval is an application to get the number of intervals between the system time and a specified time. A memory misreference vulnerability exists in the PHP DateInterval unserialize function, which allows an attacker to exploit the vulnerability to obtain arbitrary memory-sensitive...

OpenSSL 'd2i_ECPrivateKey' Memory Misreference Vulnerability

OpenSSL is an open source implementation of SSL used to enable strong encryption of network communications and is now widely used in a variety of web applications. A memory misreference vulnerability exists in 'd2iECPrivateKey' in OpenSSL 'crypto/ec/ecasn1.c'. An attacker could exploit the...

Adobe Flash Player Memory Misreference Vulnerability (CNVD-2015-01806)

Adobe Flash Player is a cross-platform, browser-based multimedia player product from Adobe. The product supports cross-screen and browser viewing of applications, content and videos. A post-release reuse vulnerability exists in Adobe Flash Player. An attacker could exploit this vulnerability to...

Adobe Flash Player Memory Misreference Vulnerability (CNVD-2015-01807)

Adobe Flash Player is a cross-platform, browser-based multimedia player product from Adobe. The product supports cross-screen and browser viewing of applications, content and videos. A memory misreference vulnerability exists in Adobe Flash Player. An attacker could exploit this vulnerability to...

Microsoft Office Memory Misreference Vulnerability

Microsoft Office is a suite of word processing programs developed by Microsoft. Microsoft Office handles specially crafted Office files with a memory misreference vulnerability that allows an attacker to construct special files and trick users into parsing them, which can crash the application or...

WebGate eDVR Manager WESPMonitor.WESPMonitorCtrl.1 ActiveX Control Memory Misreference Vulnerability

WebGate eDVR Manager is an eDVR software manager from WebGate Korea. A memory misreference vulnerability exists in the 'Connect' function in the WESPMonitor.WESPMonitorCtrl.1 ActiveX control of WebGate eDVR Manager. A remote attacker could exploit this vulnerability to execute arbitrary code via ...

Google Chrome Blink Memory Misreference Vulnerability (CNVD-2015-01512)

Google Chrome is a web browsing tool developed by Google. A memory misreference vulnerability in the 'V8Window:: V8Window:: V8WindowCustom' function in the bindings/core/v8/custom/V8WindowCustom.cpp file in the V8 bundle for Blink used in versions prior to Google Chrome 41.0.2272.76...

Google Chrome memory misreference vulnerability (CNVD-2015-01513)

Google Chrome is a web browser developed by the American company Google Google. The ServiceWorkerScriptCacheMap implementation in the file content/browser/serviceworker/serviceworkerscriptcachemap.cc in versions of Google Chrome prior to 41.0.2272.76 A memory misreference vulnerability exists. A...

Google Chrome Blink Memory Misreference Vulnerability (CNVD-2015-01511)

Google Chrome is a web browsing tool developed by Google. Google Chrome 41.0.2272.76 before the version used in Blink in the DOM implementation of the process of core/html/HTMLScriptElement.cpp file in the 'HTMLScriptElement::' function and core/svg/SVGScriptElement.cpp file 'didMoveToNewDocument...

Google Chrome Blink Memory Misreference Vulnerability (CNVD-2015-01516)

Google Chrome is a web browsing tool developed by Google. A memory misreference vulnerability in the 'shutdown' function in the web/WebKit.cpp file of Blink used in versions prior to Google Chrome 41.0.2272.76 stems from the program failing to terminate a database thread. A remote attacker could...

Google Chrome Blink Memory Misreference Vulnerability (CNVD-2015-01515)

Google Chrome is a simple and efficiently designed web browsing tool developed by Google. A memory misreference vulnerability in the GIFImageReader::parseData function in platform/image-decoders/gif/GIFImageReader.cpp in Blink before Google Chrome 41.0.2272.76 allows remote attackers to exploit t...

Google Chrome Blink Memory Misreference Vulnerability (CNVD-2015-01547)

Google Chrome is a web browsing tool developed by Google. A post-release reuse vulnerability exists in the core/html/HTMLInputElement.cpp file in the DOM implementation of Blink used in versions prior to Google Chrome 41.0.2272.76. A remote attacker can exploit this vulnerability to cause a denia...

Gnupg2 Memory Misreference Denial of Service Vulnerability

GnuPG is a Python module that allows, from a Python program, to conveniently use the key management, encryption and signing features of GnuPG. GnuPG suffers from a memory misreference denial of service vulnerability that allows an attacker to submit a special request to crash the application...

Adobe Flash Player suffers from unspecified memory misreference vulnerability (CNVD-2015-00962)

Adobe Flash Player is a Flash file handling program. An unspecified memory misreference vulnerability exists in Adobe Flash Player, which allows an attacker to construct a malicious SWF file and trick a user into parsing it to execute arbitrary code in the context of an application...