Lucene search
K

6683 matches found

Packet Storm
Packet Storm
added 2015/04/06 12:0 a.m.41 views

Oracle.com Cross Site Scripting

Exploit Title: Oracle.com sub-domain Reflected Cross-Site Scripting RXSS Date: 04/04/2014 Author: Yann CAM @ Synetis - ASafety Vendor or Software Link: www.oracle.com Version: / Category: Reflected Cross Site Scripting Google dork: Tested on: Oracle.com dne sub-domain Oracle description :...

7.4AI score
Exploits0
OSV
OSV
added 2015/04/01 2:41 p.m.1 views

USN-2550-1 firefox vulnerabilities

Olli Pettay and Boris Zbarsky discovered an issue during anchor navigations in some circumstances. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to bypass same-origin policy restrictions. CVE-2015-0801 Bobby Holley discovered that...

7.5CVSS7.5AI score0.67465EPSS
Exploits4References15
NVD
NVD
added 2015/04/01 10:59 a.m.16 views

CVE-2015-0806

The Off Main Thread Compositing OMTC implementation in Mozilla Firefox before 37.0 attempts to use memset for a memory region of negative length during interaction with the mozilla::layers::BufferTextureClient::AllocateForSurface function, which allows remote attackers to execute arbitrary code o...

7.5CVSS7.6AI score0.03623EPSS
Exploits0References7
OSV
OSV
added 2015/04/01 12:0 a.m.1 views

UBUNTU-CVE-2015-0805

The Off Main Thread Compositing OMTC implementation in Mozilla Firefox before 37.0 makes an incorrect memset call during interaction with the mozilla::layers::BufferTextureClient::AllocateForSurface function, which allows remote attackers to execute arbitrary code or cause a denial of service...

7.5CVSS7.7AI score0.03623EPSS
Exploits0References4
Mozilla
Mozilla
added 2015/03/31 12:0 a.m.48 views

Memory corruption crashes in Off Main Thread Compositing — Mozilla

Security researcher Abhishek Arya Inferno of the Google Chrome Security Team used the Address Sanitizer tool to discover two memory corruption crashes during 2D graphics rendering due to problems in Off Main Thread Compositing. These crashes are potentially exploitable...

7.5CVSS9AI score0.03623EPSS
Exploits0References5Affected Software3
Fedora
Fedora
added 2015/03/29 4:46 a.m.33 views

[SECURITY] Fedora 21 Update: webkitgtk4-2.6.5-3.fc21

WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3...

7.5CVSS1.8AI score0.01694EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2015/03/26 12:0 a.m.3 views

Microsoft Windows Graphics Rendering Engine Buffer Overflow (MS04-032) - Ver2 (CVE-2004-0209)

The Microsoft Windows Metafile Format WMF is used to store pictures and other graphical renderings as either vector or bitmap-format graphical data. The vector data stored in WMF files is described as Microsoft Windows Graphics Device Interface GDI commands. The WMF format is the original 16-bit...

10CVSS2AI score0.62054EPSS
Exploits8
NVD
NVD
added 2015/03/11 10:59 a.m.16 views

CVE-2015-0076

The photo-decoder implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly initialize memory for rendering of JXR images, which allows remote attackers t...

4.3CVSS5.8AI score0.15351EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/03/11 12:0 a.m.36 views

SuSE 11.3 Security Update : freetype2 (SAT Patch Number 10386)

The font rendering library freetype2 has been updated to fix various security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information. The text itself is copyright C Novell, Inc. if NASLLEVE...

7.5CVSS6.8AI score0.07687EPSS
Exploits20References55
Hacker One
Hacker One
added 2015/03/09 10:20 a.m.93 views

HackerOne: Reflected File Download attack allows attacker to 'upload' executables to hackerone.com domain

Hi hackerone team, I'm a friend of Peiying and am looking for a position at hackerone. While playing around with your product, I found a serious vulnerability in your application: it allows attackers to craft executables on the hackerone.com domain rather than the sandboxed one on S3. 1. attacker...

0.6AI score
Exploits0
Prion
Prion
added 2015/03/09 12:59 a.m.16 views

Integer overflow

Integer overflow in the SkMallocPixelRef::NewAllocate function in core/SkMallocPixelRef.cpp in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted allocation of a...

7.5CVSS7.8AI score0.01382EPSS
Exploits0References7Affected Software6
Cvelist
Cvelist
added 2015/03/09 12:0 a.m.29 views

CVE-2015-1219

Integer overflow in the SkMallocPixelRef::NewAllocate function in core/SkMallocPixelRef.cpp in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted allocation of a...

6.9AI score0.01382EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2015/03/09 12:0 a.m.25 views

CVE-2015-1219

Removed by vendor...

7.5CVSS9.4AI score0.01382EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2015/03/08 12:0 a.m.21 views

CVE-2015-1219

Integer overflow in the SkMallocPixelRef::NewAllocate function in core/SkMallocPixelRef.cpp in Skia, as used in Google Chrome before 41.0.2272.76, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted allocation of a...

7.5CVSS7.3AI score0.01382EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/03/05 7:29 p.m.8 views

Mozilla: Out-of-bounds read and write while rendering SVG content (MFSA 2015-19)

Heap-based buffer overflow in the mozilla::gfx::CopyRect function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to obtain sensitive information from uninitialized process memory via a malformed SVG graphic...

4.3CVSS7.1AI score0.02887EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/03/05 2:4 p.m.7 views

Mozilla: Out-of-bounds read and write while rendering SVG content (MFSA 2015-19)

Heap-based buffer overflow in the mozilla::gfx::CopyRect function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to obtain sensitive information from uninitialized process memory via a malformed SVG graphic...

4.3CVSS7.1AI score0.02887EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2015/03/05 1:59 p.m.2 views

chromium-browser: Uninitialized value in rendering

The RenderCounter::updateCounter function in core/rendering/RenderCounter.cpp in Blink, as used in Google Chrome before 41.0.2272.76, does not force a relayout operation and consequently does not initialize memory for a data structure, which allows remote attackers to cause a denial of service...

7.5CVSS7.5AI score0.01371EPSS
Exploits0References5
ArchLinux
ArchLinux
added 2015/03/05 12:0 a.m.44 views

chromium: multiple issues

CVE-2015-1212: Out-of-bounds write in media. - CVE-2015-1213, CVE-2015-1214, CVE-2015-1215: Out-of-bounds write in skia filters. - CVE-2015-1216: Use-after-free in v8 bindings. - CVE-2015-1217: Type confusion in v8 bindings. - CVE-2015-1218: Use-after-free in dom. - CVE-2015-1219: Integer...

7.5CVSS4.8AI score0.02565EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2015/03/05 12:0 a.m.42 views

FreeBSD : chromium -- multiple vulnerabilities (8505e013-c2b3-11e4-875d-000c6e25e3e9)

Chrome Releases reports : 51 security fixes in this release, including : - 456516 High CVE-2015-1212: Out-of-bounds write in media. Credit to anonymous. - 448423 High CVE-2015-1213: Out-of-bounds write in skia filters. Credit to cloudfuzzer. - 445810 High CVE-2015-1214: Out-of-bounds write in ski...

7.5CVSS8.2AI score0.02565EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2015/03/05 12:0 a.m.47 views

Google Chrome < 41.0.2272.76 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 41.0.2272.76. It is, therefore, affected by multiple vulnerabilities as referenced in the 201503stable-channel-update advisory. - Multiple use-after-free vulnerabilities in core/html/HTMLInputElement.cpp in the DOM...

7.5CVSS8.5AI score0.02565EPSS
Exploits0References40
Rows per page
Query Builder