Lucene search
K

63 matches found

Mozilla
Mozilla
added 2012/04/24 12:0 a.m.46 views

use-after-free in IDBKeyRange — Mozilla

Using the Address Sanitizer tool, security researcher Aki Helin from OUSPG found that IDBKeyRange of indexedDB remains in the XPConnect hashtable instead of being unlinked before being destroyed. When it is destroyed, this causes a use-after-free, which is potentially exploitable...

10CVSS1.9AI score0.0737EPSS
Exploits0References2Affected Software5
Tenable Nessus
Tenable Nessus
added 2012/03/06 12:0 a.m.31 views

FreeBSD : chromium -- multiple vulnerabilities (99aef698-66ed-11e1-8288-00262d5ed8ee)

Google Chrome Releases reports : 105867 High CVE-2011-3031: Use-after-free in v8 element wrapper. Credit to Chamal de Silva. 108037 High CVE-2011-3032: Use-after-free in SVG value handling. Credit to Arthur Gerkis. 108406 115471 High CVE-2011-3033: Buffer overflow in the Skia drawing library...

7.5CVSS8.3AI score0.0217EPSS
Exploits2References16
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2012/02/08 12:0 a.m.54 views

Stable Channel Update

The Chrome team is excited to announce the release of Chrome 17 to the Stable Channel for Windows, Mac, Linux and Chrome Frame. 17.0.963.46 contains a number of new features including: New Extensions APIs Updated Omnibox Prerendering Download Scanning Protection Many other small changes Security...

9.3CVSS8.2AI score0.02348EPSS
Exploits0Affected Software1
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2011/10/25 12:0 a.m.66 views

Chrome Stable Release

The Google Chrome team is happy to announce the arrival of Chrome 15.0.874.102 to the Stable Channel for Windows, Mac, Linux, and Chrome Frame. Chrome 15 contains some really great improvements including a new New Tab page. You can read about it more on the Google Chome blog. Security fixes and...

7.5CVSS6.4AI score0.0208EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2010/09/01 12:0 a.m.43 views

Multiple Vulnerabilities Found by PROTOS IPSec Test Suite - Cisco Systems

Multiple Cisco products contain vulnerabilities in the processing of IPSec IKE Internet Key Exchange messages. These vulnerabilities were identified by the University of Oulu Secure Programming Group OUSPG "PROTOS" Test Suite for IPSec and can be repeatedly exploited to produce a denial of servic...

5CVSS5.5AI score0.05143EPSS
Exploits0References3
Prion
Prion
added 2009/09/01 4:30 p.m.13 views

Design/Logic Flaw

Multiple unspecified vulnerabilities in RARLAB WinRAR before 3.71 have unknown impact and attack vectors related to crafted 1 ACE, 2 ARJ, 3 BZ2, 4 CAB, 5 GZ, 6 LHA, 7 RAR, 8 TAR, or 9 ZIP files, as demonstrated by the OUSPG PROTOS GENOME test suite for Archive Formats...

10CVSS7.3AI score0.02266EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2009/08/06 12:30 a.m.17 views

Design/Logic Flaw

Sophos Anti-Virus for Windows before 7.6.3, Anti-Virus for Windows NT/9x before 4.7.18, Anti-Virus for OS X before 4.9.18, Anti-Virus for Linux before 6.4.5, Anti-Virus for UNIX before 7.0.5, Anti-Virus for Unix and Netware before 4.37.0, Sophos EM Library, and Sophos small business solutions, wh...

4.3CVSS7.2AI score0.06613EPSS
Exploits0References9Affected Software1
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.33 views

FreeBSD Ports: pwlib

The remote host is missing an update to the system as announced in the referenced advisory. VID 27c331d5-64c7-11d8-80e3-0020ed76ef5a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

10CVSS0.1AI score0.10309EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.23 views

FreeBSD Ports: pwlib

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS6.6AI score0.10309EPSS
Exploits0References4
CVE
CVE
added 2007/12/06 2:0 a.m.65 views

CVE-2004-2758

CVE-2004-2758 affects Sun SunForum 3.2 and Sun Forum 3D 1.0 via the H.323 protocol implementation. The NVD entry describes multiple unspecified vulnerabilities that allow remote attackers to cause a denial of service (segmentation fault and process crash), demonstrated via the PROTOS test suite f...

7.5CVSS6.8AI score0.04293EPSS
Exploits0References10Affected Software1
Prion
Prion
added 2006/05/09 10:2 a.m.14 views

Code injection

Unspecified vulnerability in the 1 web cache or 2 web proxy in Fujitsu NetShelter/FW allows remote attackers to cause a denial of service device unresponsiveness via certain DNS packets, as demonstrated by the OUSPG PROTOS DNS test suite...

5CVSS7.2AI score0.02169EPSS
Exploits0References6
CVE
CVE
added 2006/05/09 10:0 a.m.49 views

CVE-2006-2240

CVE-2006-2240 concerns an unspecified vulnerability in the Fujitsu NetShelter/FW web cache or web proxy. The issue reportedly allows remote attackers to cause a denial of service resulting in device unresponsiveness, via certain DNS packets, as demonstrated by the OUSPG PROTOS DNS test suite. The...

5CVSS6.7AI score0.02169EPSS
Exploits0References6Affected Software4
UbuntuCve
UbuntuCve
added 2006/04/27 10:3 p.m.34 views

CVE-2006-2077

Buffer overflow in Paul Rombouts pdnsd before 1.2.4 has unknown impact and attack vectors. NOTE: this issue might be related to the OUSPG PROTOS DNS test suite...

10CVSS5.9AI score0.03211EPSS
Exploits0References1
Prion
Prion
added 2006/04/27 10:3 p.m.19 views

Buffer overflow

Buffer overflow in Paul Rombouts pdnsd before 1.2.4 has unknown impact and attack vectors. NOTE: this issue might be related to the OUSPG PROTOS DNS test suite...

10CVSS7.1AI score0.03211EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2006/04/27 10:3 p.m.12 views

Design/Logic Flaw

Unspecified vulnerability in MyDNS 1.1.0 allows remote attackers to cause a denial of service via a crafted DNS message, aka "Query-of-death," as demonstrated by the OUSPG PROTOS DNS test suite...

5CVSS7AI score0.02169EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2006/04/27 10:3 p.m.15 views

CVE-2006-2077

Buffer overflow in Paul Rombouts pdnsd before 1.2.4 has unknown impact and attack vectors. NOTE: this issue might be related to the OUSPG PROTOS DNS test suite...

10CVSS6.7AI score0.03211EPSS
Exploits0References6
NVD
NVD
added 2006/04/27 10:2 p.m.24 views

CVE-2006-2074

Unspecified vulnerability in Juniper Networks JUNOSe E-series routers before 7-1-1 has unknown impact and remote attack vectors related to the DNS "client code," as demonstrated by the OUSPG PROTOS DNS test suite...

10CVSS6.5AI score0.02797EPSS
Exploits0References9
NVD
NVD
added 2006/04/27 10:2 p.m.19 views

CVE-2006-2073

Unspecified vulnerability in ISC BIND allows remote attackers to cause a denial of service via a crafted DNS message with a "broken" TSIG, as demonstrated by the OUSPG PROTOS DNS test suite...

5CVSS7.2AI score0.07986EPSS
Exploits0References9
Prion
Prion
added 2006/04/27 10:2 p.m.23 views

Code injection

Unspecified vulnerability in ISC BIND allows remote attackers to cause a denial of service via a crafted DNS message with a "broken" TSIG, as demonstrated by the OUSPG PROTOS DNS test suite...

5CVSS6.7AI score0.07986EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2006/04/27 10:2 p.m.8 views

CVE-2006-2073

Unspecified vulnerability in ISC BIND allows remote attackers to cause a denial of service via a crafted DNS message with a "broken" TSIG, as demonstrated by the OUSPG PROTOS DNS test suite...

6.6AI score
Exploits0References10
Rows per page
Query Builder