519 matches found
BitDefender Internet Security 2011 - Pointer Vulnerability
Document Title: =============== BitDefender Internet Security 2011 - Pointer Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=149 Release Date: ============= 2012-01-26 Vulnerability Laboratory ID VL-ID: ====================================...
BitDefender Internet Security 2011 - Pointer Vulnerability
Document Title: =============== BitDefender Internet Security 2011 - Pointer Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=149 Release Date: ============= 2012-01-26 Vulnerability Laboratory ID VL-ID: ====================================...
MySQL 5.5.8 - Remote Denial of Service
MySQL 5.5.8 - Remote Denial of Service import socket, sys print "\n" print "----------------------------------------------------------------" print "| MySQL 5.5.8 Null Ptr windows |" print "| Level Smash the Stack |" print "----------------------------------------------------------------" print...
SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7713)
Mozilla Firefox was updated to version 3.6.20. It fixes bugs and security issues. Following security issues were fixed: Mozilla Foundation Security Advisory 2011-30 - MFSA 2011-30 - Miscellaneous memory safety hazards Mozilla developers and community members identified and fixed several memory...
VUPEN Security Research - Google Chrome WebKit Engine Child Tag Deletion Stale Pointer Vulnerability
VUPEN Security Research - Google Chrome WebKit Engine Child Tag Deletion Stale Pointer Vulnerability Website : http://www.vupen.com/english/research.php Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Google Chrome is a web browser developed by Google that uses the WebKit...
Security issues addressed in Thunderbird 3.1.12 — Mozilla
Many of the issues listed below are not exploitable through mail since JavaScript is disabled by default in Thunderbird. These particular issues may be triggered while viewing RSS feeds and displaying full remote content rather than the feed summary. Addons that expose browser functionality may...
iGuard V2.81 Player - Critical Pointer Vulnerability
Document Title: =============== iGuard V2.81 Player - Critical Pointer Vulnerability Release Date: ============= 2011-08-06 Vulnerability Laboratory ID VL-ID: ==================================== 106 Product & Service Introduction: =============================== Die Fähigkeit, Ihren Kunden...
Fedora 13 : krb5-1.7.1-19.fc13 (2011-5343)
This update incorporates the upstream patches to fix an attempt to free an invalid pointer in kadmind MITKRB5-SA-2011-004. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...
CVE-2010-3275
libdirectxplugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability."...
Design/Logic Flaw
Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse Office Art objects, which allows remote attackers to execute arbitrary code via vectors related to a function pointer, aka "Excel Dangling Pointer Vulnerability."...
CVE-2011-0980
CVE-2011-0980 corresponds to a memory corruption flaw in Microsoft Office that arises when parsing Office Art objects, enabling remote code execution via a crafted file. It affects Excel/Office components across Windows and Mac builds listed in the initial document (Excel 2002/2003, Office for Ma...
SuSE 10 Security Update : Mozilla Firefox (ZYPP Patch Number 7208)
This update brings Mozilla Firefox to version 3.5.15, fixing various bugs and security issues. The following security issues were fixed : - Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs...
Mozilla Firefox 3.6.x < 3.6.11 Multiple Vulnerabilities
Binary data 801306.prm...
Double free
Double free vulnerability in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via a Word document with crafted List Format Override LFO records, aka "Word Pointer Vulnerability."...
CVE-2010-3217
Double free vulnerability in Microsoft Word 2002 SP3 allows remote attackers to execute arbitrary code via a Word document with crafted List Format Override LFO records, aka "Word Pointer Vulnerability."...
Mozilla Foundation Security Advisory 2010-51
Mozilla Foundation Security Advisory 2010-51 Title: Dangling pointer vulnerability using DOM plugin array Impact: Critical Announced: September 7, 2010 Reporter: Sergey Glazunov Products: Firefox, Thunderbird, SeaMonkey Fixed in: Firefox 3.6.9 Firefox 3.5.12 Thunderbird 3.1.3 Thunderbird 3.0.7...
CVE-2010-2767
The navigator.plugins implementation in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 does not properly handle destruction of the DOM plugin array, which might allow remote attackers to cause a denial of service...
Design/Logic Flaw
The nsTreeContentView function in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 does not properly handle node removal in XUL trees, which allows remote attackers to execute arbitrary code via vectors involving...
CVE-2010-3167
The nsTreeContentView function in Mozilla Firefox before 3.5.12 and 3.6.x before 3.6.9, Thunderbird before 3.0.7 and 3.1.x before 3.1.3, and SeaMonkey before 2.0.7 does not properly handle node removal in XUL trees, which allows remote attackers to execute arbitrary code via vectors involving...
Dangling pointer vulnerability using DOM plugin array — Mozilla
Security researcher Sergey Glazunov reported a dangling pointer vulnerability in the implementation of navigator.plugins in which the navigator object could retain a pointer to the plugins array even after it had been destroyed. An attacker could potentially use this issue to crash the browser an...