Microsoft Windows XP Explorer Heap Overflow

Multiple vulnerabilities exist in the Microsoft Windows XP image rendering engine when processing EMF Enhanced MetaFile Format files. The vulnerabilities lead to a heap overflow. The vulnerabilities allow a DoS denial of service attack and possible remote code execution attacks. The primary...

firefox/thunderbird/seamonkey: browser chrome defacement via cached XUL stylesheets (MFSA 2010-14)

The CSSLoaderImpl::DoSheetComplete function in layout/style/nsCSSLoader.cpp in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 changes the case of certain strings in a stylesheet before adding this stylesheet to...

Moderate: Red Hat Security Advisory: pango security update

Updated pango and evolution28-pango packages that fix one security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Pango is a library used for the layout and rendering of...

60cycleCMS - 'select.php' Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/38637/info 60cycleCMS is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser,...

Natychmiast CMS - Multiple Cross-Site Scripting SQL Injections

Natychmiast CMS - Multiple Cross-Site Scripting SQL Injections source: https://www.securityfocus.com/bid/38561/info Natychmiast CMS is prone to multiple cross-site scripting and SQL-injection vulnerabilities. Exploiting these issues could allow an attacker to steal cookie-based authentication...

Microsoft Windows Graphics Rendering Engine Buffer Overflow (MS04-032; CVE-2004-0209)

The Microsoft Windows Metafile Format WMF is used to store pictures and other graphical renderings as either vector or bitmap-format graphical data. The vector data stored in WMF files is described as Microsoft Windows Graphics Device Interface GDI commands. The WMF format is the original 16-bit...

[SECURITY] Fedora 11 Update: kazehakase-0.5.8-5.fc11

Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine...

firefox/thunderbird/seamonkey: browser chrome defacement via cached XUL stylesheets (MFSA 2010-14)

The CSSLoaderImpl::DoSheetComplete function in layout/style/nsCSSLoader.cpp in Mozilla Firefox 3.0.x before 3.0.18, 3.5.x before 3.5.8, and 3.6.x before 3.6.2; Thunderbird before 3.0.2; and SeaMonkey before 2.0.3 changes the case of certain strings in a stylesheet before adding this stylesheet to...

Microsoft Windows GRE WMF Handling Memory Read Exception (MS06-001; CVE-2006-0143)

The Windows Metafile WMF is a standard Windows image file format. It consists of a set of graphics functions and parameters that describe the steps required to render an image. WMF is a 16-bit format that can contain both vector and bitmap information. A WMF file contains a main header, followed ...

Internet Explorer Response Redirect Information Disclosure (CVE-2010-0255)

An information disclosure vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in Microsoft Internet Explorer that fails to prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access...

CVE-2010-0255

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and read arbitrary files via vectors involving JavaScript exploit code that constructs a reference to...

CVE-2010-0555

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and read arbitrary files via vectors involving the product's use of text/html as the default content...

Design/Logic Flaw

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and read arbitrary files via vectors involving JavaScript exploit code that constructs a reference to...

CVE-2010-0555

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and read arbitrary files via vectors involving the product's use of text/html as the default content...

PT-2010-2312 · Microsoft · Internet Explorer +5

Microsoft Internet Explorer 5.01 SP4, 6, 6 SP1, 7, and 8 does not prevent rendering of non-HTML local files as HTML documents, which allows remote attackers to bypass intended access restrictions and read arbitrary files via vectors involving the product's use of text/html as the default content...

Microsoft Windows GDI+ PNG Processing Integer Overflow (MS09-062; CVE-2009-3126)

The Windows Graphics Rendering Engine is implemented via the Graphics Device Interface GDI subsystem. GDI is a Microsoft standard for representing graphical objects and outputting these representations to devices such as monitors and printers. GDI is capable of representing vector graphics, drawi...

ZDI-10-012: Microsoft Internet Explorer Baseline Tag Rendering Remote Code Execution Vulnerability

ZDI-10-012: Microsoft Internet Explorer Baseline Tag Rendering Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-10-012 January 21, 2010 -- CVE ID: CVE-2010-0246 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Internet Explorer 7 Microsoft Internet...

MS Patches Critical Flaw in EOT Font Engine

The first Microsoft patch for 2010 is out, providing cover for a solitary vulnerability in the way Windows handles EOT Embedded OpenType fonts. The update is rated “critical” but Microsoft says there is a low likelihood of exploitation on its newer operating systems. The vulnerability, which was...

CentOS 5 : poppler (CESA-2008:0239)

Updated poppler packages that fix a security issue are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Poppler is a PDF rendering library, used by applications such as Evince. Kees Cook discovered ...

CentOS 5 : poppler (CESA-2009:0480)

Updated poppler packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Poppler is a Portable Document Format PDF rendering library, used by applications such...