8007 matches found
VUPEN Security Research - Apple Safari WebKit HTML Button Use-after-free Vulnerability (CVE-2010-1392)
VUPEN Security Research - Apple Safari WebKit HTML Button Use-after-free Vulnerability CVE-2010-1392 http://www.vupen.com/english/research.php I. BACKGROUND --------------------- "Safari is a web browser developed by Apple. As of February 2010, Safari was the fourth most widely used browser, with...
perl: Safe restriction bypass when reference to subroutine in compartment is called from outside
The Safe aka Safe.pm module 2.26, and certain earlier versions, for Perl, as used in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2, allows context-dependent attackers to bypass intended 1...
perl: Safe restriction bypass when reference to subroutine in compartment is called from outside
The Safe aka Safe.pm module 2.26, and certain earlier versions, for Perl, as used in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2, allows context-dependent attackers to bypass intended 1...
webYourPhotos 6.05 - index.php Remote File Inclusion
webYourPhotos 6.05 - index.php Remote File Inclusion ----------------------oOO------OOo----------------------- | | | / / / / | | / / / / / / / / / / / | | // // / / / // / // / // | | ///,// /./,/, // | | Security Sn!pEr.S!Te // 2o1o |...
CVE-2010-1447
The Safe aka Safe.pm module 2.26, and certain earlier versions, for Perl, as used in PostgreSQL 7.4 before 7.4.29, 8.0 before 8.0.25, 8.1 before 8.1.21, 8.2 before 8.2.17, 8.3 before 8.3.11, 8.4 before 8.4.4, and 9.0 Beta before 9.0 Beta 2, allows context-dependent attackers to bypass intended 1...
Secunia Research: KDE KGet metalink "name" Directory Traversal Vulnerability
====================================================================== Secunia Research 13/05/2010 - KDE KGet metalink "name" Directory Traversal Vulnerability - ====================================================================== Table of Contents Affected...
Secunia Research: IrfanView PSD Image Parsing Sign-Extension Vulnerability
====================================================================== Secunia Research 12/05/2010 - IrfanView PSD Image Parsing Sign-Extension Vulnerability - ====================================================================== Table of Contents Affected...
CVE-2010-1738
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-1448. Reason: This candidate is a duplicate of CVE-2010-1448. Notes: All CVE users should reference CVE-2010-1448 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...
CVE-2010-1501
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-1767. Reason: This candidate is a duplicate of CVE-2010-1767. Notes: All CVE users should reference CVE-2010-1767 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...
Secunia Research: imlib2 "IMAGE_DIMENSIONS_OK()" Logic Error
====================================================================== Secunia Research 21/04/2010 - imlib2 "IMAGEDIMENSIONSOK" Logic Error - ====================================================================== Table of Contents Affected...
Secunia Research: Pulse CMS Arbitrary File Upload Vulnerability
====================================================================== Secunia Research 08/04/2010 - Pulse CMS Arbitrary File Upload Vulnerability - ====================================================================== Table of Contents Affected...
Safari 4.0.5 Update
Installed version of Safari on remote host is older than 4.0.5 and contains security vulnerabilities. SPDX-FileCopyrightText: 2010 LSS Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-late...
Immunity Canvas: JAVA_METHOD_CHAIN
Name| javamethodchain ---|--- CVE| CVE-2010-0840 Exploit Pack| CANVAS Description| javamethodchain Notes| CVE Name: CVE-2010-0840 VENDOR: Sun Repeatability: Infinite client side - no crash References:...
Secunia Research: Sun Java JDK/JRE Soundbank Resource Name Buffer Overflow
====================================================================== Secunia Research 31/03/2010 - Sun Java JDK/JRE Soundbank Resource Name Buffer Overflow - ====================================================================== Table of Contents Affected...
Simple Machines Forum 1.1.11 Session Fixation
======================================================================================== | Title : Simple Machines Forum 1.1.11 Mullti Vulnerability | Author : indoushka | email : [email protected] | Home : www.sec-war.com | Web Site : http://www.simplemachines.org/ | Dork : Powered by SMF...
Dangling pointer vulnerability in nsPluginArray — Mozilla
Security researcher regenrecht reported via TippingPoint's Zero Day Initiative an error in the implementation of the window.navigator.plugins object. When a page reloads, the plugins array would reallocate all of its members without checking for existing references to each member. This could resu...
afp-path-vuln NSE Script
Detects the Mac OS X AFP directory traversal vulnerability, CVE-2010-0533. This script attempts to iterate over all AFP shares on the remote host. For each share it attempts to access the parent directory by exploiting the directory traversal vulnerability as described in CVE-2010-0533. The scrip...
Employee TimeClock Software 0.99 - SQL Injection
Employee TimeClock Software 0.99 - SQL Injection source: http://www.securityfocus.com/archive/1/509995 ====================================================================== Secunia Research 10/03/2010 - Employee Timeclock Software SQL Injection Vulnerabilities -...
PhpBB 'feed.php' Security Bypass Vulnerability
PhpBB is prone to a security-bypass vulnerability. Attackers may exploit the issue to bypass certain security restrictions, view restricted content, and perform unauthorized actions. PhpBB 3.0.7 is vulnerable; other versions may also be affected. OpenVAS Vulnerability Test $Id: gbphpbb38599.nasl...
RedHat Update for cups RHSA-2010:0129-01
Check for the Version of cups OpenVAS Vulnerability Test RedHat Update for cups RHSA-2010:0129-01 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...