Lucene search
K

561 matches found

Tenable Nessus
Tenable Nessus
added 2011/08/18 12:0 a.m.53 views

Ubuntu 11.04 : mozvoikko update (USN-1192-2)

USN-1192-1 fixed vulnerabilities in Firefox. This update provides an updated Mozvoikko for use with Firefox 6. Aral Yaman discovered a vulnerability in the WebGL engine. An attacker could potentially use this to crash Firefox or execute arbitrary code with the privileges of the user invoking...

10CVSS9.1AI score0.0544EPSS
Exploits1References9
Ubuntu
Ubuntu
added 2011/08/17 5:40 p.m.73 views

USN-1192-1: Firefox vulnerabilities

Aral Yaman discovered a vulnerability in the WebGL engine. An attacker could potentially use this to crash Firefox or execute arbitrary code with the privileges of the user invoking Firefox. CVE-2011-2989 Vivekanand Bolajwar discovered a vulnerability in the JavaScript engine. An attacker could...

10CVSS8.8AI score0.0544EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2011/06/13 12:0 a.m.31 views

Ubuntu 9.10 : Multiple Xulrunner 1.9.1 vulnerabilities (USN-1123-1)

A large number of security issues were discovered in the Gecko rendering engine. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and...

10CVSS8.4AI score0.73655EPSS
Exploits23References27
OpenVAS
OpenVAS
added 2011/05/10 12:0 a.m.32 views

Ubuntu Update for xulrunner-1.9.1 USN-1123-1

Ubuntu Update for Linux kernel vulnerabilities USN-1123-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN11231.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for xulrunner-1.9.1 USN-1123-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...

10CVSS0.6AI score0.73655EPSS
Exploits23References2
OpenVAS
OpenVAS
added 2011/05/10 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-1123-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.4AI score0.73655EPSS
Exploits23References2
Ubuntu
Ubuntu
added 2011/04/30 12:18 a.m.98 views

USN-1123-1: Xulrunner vulnerabilities

A large number of security issues were discovered in the Gecko rendering engine. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and...

10CVSS8.2AI score0.73655EPSS
Exploits23
Fedora
Fedora
added 2011/02/18 1:51 a.m.43 views

[SECURITY] Fedora 13 Update: webkitgtk-1.2.7-1.fc13

WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform...

10CVSS1.3AI score0.61319EPSS
Exploits33
Saint
Saint
added 2011/01/14 12:0 a.m.35 views

Windows Thumbnail View CreateSizedDIBSECTION buffer overflow

Added: 01/14/2011 CVE: CVE-2010-3970 BID: 45662 OSVDB: 70263 Background The shimgvw.dll library is part of the Microsoft Graphics Rendering Engine. Problem A vulnerability in shimgvw.dll allows command execution when Windows renders a thumbnail image which passes a specially crafted biClrUsed...

9.3CVSS6.3AI score0.67687EPSS
Exploits10
Saint
Saint
added 2011/01/14 12:0 a.m.39 views

Windows Thumbnail View CreateSizedDIBSECTION buffer overflow

Added: 01/14/2011 CVE: CVE-2010-3970 BID: 45662 OSVDB: 70263 Background The shimgvw.dll library is part of the Microsoft Graphics Rendering Engine. Problem A vulnerability in shimgvw.dll allows command execution when Windows renders a thumbnail image which passes a specially crafted biClrUsed...

9.3CVSS6.3AI score0.67687EPSS
Exploits10
Saint
Saint
added 2011/01/14 12:0 a.m.29 views

Windows Thumbnail View CreateSizedDIBSECTION buffer overflow

Added: 01/14/2011 CVE: CVE-2010-3970 BID: 45662 OSVDB: 70263 Background The shimgvw.dll library is part of the Microsoft Graphics Rendering Engine. Problem A vulnerability in shimgvw.dll allows command execution when Windows renders a thumbnail image which passes a specially crafted biClrUsed...

9.3CVSS6.3AI score0.67687EPSS
Exploits10
OpenVAS
OpenVAS
added 2011/01/11 12:0 a.m.45 views

Fedora Update for webkitgtk FEDORA-2011-0121

Check for the Version of webkitgtk OpenVAS Vulnerability Test Fedora Update for webkitgtk FEDORA-2011-0121 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...

10CVSS0.4AI score0.61319EPSS
Exploits32References2
Check Point Advisories
Check Point Advisories
added 2011/01/09 12:0 a.m.21 views

Microsoft Graphics Rendering Engine Thumbnail Image Stack Buffer Overflow (CVE-2010-3970)

Thumbnails are reduced-size versions of pictures, used to help in recognizing and organizing them, serving the same role for images as a normal text index does for words. A stack buffer overflow vulnerability has been discovered in Microsoft's Graphics Rendering Engine. The vulnerability is due t...

9.3CVSS7.2AI score0.67687EPSS
Exploits10
Tenable Nessus
Tenable Nessus
added 2011/01/06 12:0 a.m.33 views

MS KB2490606: Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution

If a remote attacker can trick a user on the affected host into opening a specially crafted bitmap file, the attacker could leverage an as-yet unpatched vulnerability in the graphics rendering engine that arises due to its failure to validate the 'biClrUsed' parameter and thereby execute arbitrar...

0.7AI score0.67687EPSS
Exploits10References2
CISA
CISA
added 2011/01/05 12:0 a.m.9 views

Microsoft Releases Security Advisory

Microsoft has released security advisory 2490606 to alert users of a vulnerability affecting the Windows Graphics Rendering Engine. Exploitation of this vulnerability may allow an attacker to install programs; view, change, or delete data; or create new accounts with full user rights. US-CERT...

6.4AI score
Exploits0References2
ThreatPost
ThreatPost
added 2011/01/04 7:52 p.m.6 views

Microsoft Warns Of Security Hole in Windows Graphics Engine

Microsoft issued an advisory to Windows users about a security vulnerability in a common Windows component that could be used by remote attackers to run malicious code on machines running the Windows XP, Vista and Windows Server 2003 operating systems. The company said on Tuesday that it is...

2.3AI score
Exploits0References2
Symantec
Symantec
added 2011/01/04 12:0 a.m.17 views

Microsoft Windows 'CreateSizedDIBSECTION()' Thumbnail View Stack Buffer Overflow Vulnerability

Description Microsoft Windows is prone to a remote stack-based buffer-overflow vulnerability in the Windows Graphics Rendering Engine because the software fails to perform adequate boundary-checks on user-supplied data. An attacker can exploit this issue by enticing an unsuspecting user to open a...

7.9AI score
Exploits0References2Affected Software8
OpenVAS
OpenVAS
added 2010/12/28 12:0 a.m.21 views

Fedora Update for galeon FEDORA-2010-18775

Check for the Version of galeon OpenVAS Vulnerability Test Fedora Update for galeon FEDORA-2010-18775 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

9.3CVSS10AI score0.08669EPSS
Exploits1References2
Debian
Debian
added 2010/12/21 5:34 p.m.23 views

[SECURITY] [DSA 2135-1] New xpdf packages fix several vulnerabilities

------------------------------------------------------------------------ Debian Security Advisory DSA-2135-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 21, 2010 http://www.debian.org/security/faq -...

7.5CVSS7AI score0.03597EPSS
Exploits0
NVD
NVD
added 2010/12/10 7:0 p.m.16 views

CVE-2010-3770

Multiple cross-site scripting XSS vulnerabilities in the rendering engine in Mozilla Firefox before 3.5.16 and 3.6.x before 3.6.13, and SeaMonkey before 2.0.11, allow remote attackers to inject arbitrary web script or HTML via 1 x-mac-arabic, 2 x-mac-farsi, or 3 x-mac-hebrew characters that may b...

4.3CVSS5.6AI score0.04451EPSS
Exploits0References18
CVE
CVE
added 2010/12/10 6:0 p.m.84 views

CVE-2010-3770

CVE-2010-3770 refers to multiple XSS vulnerabilities in the Mozilla Firefox/SeaMonkey rendering engine. The issue allows remote attackers to inject arbitrary scripts via certain character encodings: x-mac-arabic, x-mac-farsi, or x-mac-hebrew, which may be converted to angle brackets during render...

4.3CVSS8.2AI score0.04451EPSS
Exploits0References18Affected Software1
Rows per page
Query Builder