Microsoft Internet Explorer CAttrArray Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2014-0325

Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site that triggers improper processing of CElement objects, aka "Internet Explorer Memory Corruption Vulnerability," a...

Memory corruption

Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted web site that triggers improper processing of CElement objects, aka "Internet Explorer Memory Corruption Vulnerability," a...

Microsoft Internet Explorer 5.0.1 DHTML Object Race Condition Memory Corruption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13120/info A vulnerability in Microsoft Internet Explorer may allow remote attackers to execute arbitrary code in the context of users visiting malicious Web sites. This issue presents itself the affected application...

Sun Java Runtime Environment 1.3/1.4/1.5 Nested Array Objects Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18058/info The Sun Java Runtime Environment is vulnerable to a denial-of-service vulnerability. This issue is due to the software's failure to handle exceptional conditions. This issue is reported to affect Java Runtime...

leadtools activex common dialogs 16.5 - Multiple Vulnerabilities

No description provided by source. LEADTOOLS ActiveX Common Dialogs 16.5 Multiple Remote Vulnerabilities Vendor: LEAD Technologies, Inc. Product Web Page: http://www.leadtools.com Affected version: 16.5.0.2 Summary: With LEADTOOLS you can control any scanner, digital camera or capture card that h...

EasyMail Objects 6.x Connect Method Remote Stack Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22583/info EasyMail Objects is prone to a remote stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data prior to copying it to an insufficiently sized buffer. A...

Microsoft Internet Explorer 5/6 Cached Objects Zone Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/6028/info Multiple vulnerabilities have been reported for Microsoft Internet Explorer. These vulnerabilities have been reported to affect Internet Explorer 5.5 to 6.0. Internet Explorer 6.0 with Service Pack 1 and Interne...

Microsoft Internet Explorer 5.x Valid File Drag and Drop Embedded Code Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11466/info The Microsoft cumulative Internet Explorer patch MS04-038 attempted to limit what files may be dragged and dropped onto the local computer from the Internet Zone to prevent executable objects from being placed ...

Adobe Reader <= 9.1.3 and Acrobat COM Objects Memory Corruption Remote Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36668/info Adobe Reader and Acrobat are prone to a remote code-execution vulnerability because they fail to properly handle certain COM objects. An attacker can exploit this issue by supplying a malicious PDF file or...

Business Objects Crystal Reports XI Professional File Handling Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/21261/info Business Objects Crystal Reports XI Professional is prone to a buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently siz...

Business Objects Infoview - 'cms' Parameter Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/28762/info Business Objects is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input via the Infoview web portal. An attacker may leverage this issue to execu...

Adobe Photoshop 8.0 COM Objects Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10061/info It has been reported that Adobe Photoshop may be prone to a denial of service vulnerability that may crash an instance of Internet Explorer. An attacker can exploit this issue by creating a script that attempts...

EasyMail Objects 6.0.2.0 'emimap4.dll' ActiveX Control Remote Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/36409/info EasyMail Objects ActiveX control is prone to a remote code-execution vulnerability because the application fails to properly sanitize user-supplied data. Successfully exploiting this issue allows remote attacke...

SAP Business Objects Crystal Reports 7-10 'viewreport.asp' Cross Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34341/info SAP Business Objects Crystal Reports is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context ...

Microsoft Internet Explorer 5.0.1 Daxctle.OCX Spline Method Heap Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19738/info Microsoft Internet Explorer is prone to a heap buffer-overflow vulnerability.. The vulnerability arises because of the way Internet Explorer tries to instantiate certain COM objects as ActiveX controls. An...

XWork 2.0.x 'ParameterInterceptor' Class OGNL Security Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/32101/info XWork is prone to a security-bypass vulnerability because it fails to adequately handle user-supplied input. Attackers can exploit this issue to manipulate server-side context objects with the privileges of the...

Microsoft Internet Explorer CInput Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

[SECURITY] Fedora 19 Update: php-horde-Horde-Ldap-2.0.6-1.fc19

A set of classes for connecting to LDAP servers and working with directory objects...

[SECURITY] Fedora 20 Update: php-horde-Horde-Ldap-2.0.6-1.fc20

A set of classes for connecting to LDAP servers and working with directory objects...