427BB 2.x - Multiple Remote HTML Injection Vulnerabilities

427BB 2.x - Multiple Remote HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/12693/info 427BB is reportedly affected by multiple remote HTML injection vulnerabilities. These issues occur because the application fails to properly sanitize user-supplied input before using it...

OOApp Guestbook - Multiple HTML Injection Vulnerabilities

OOApp Guestbook - Multiple HTML Injection Vulnerabilities source: https://www.securityfocus.com/bid/12647/info OOApp Guestbook is reportedly affected by multiple HTML injection vulnerabilities. These issues occur because the application fails to properly sanitize user-supplied input. The...

OOApp Guestbook - Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/12647/info OOApp Guestbook is reportedly affected by multiple HTML injection vulnerabilities. These issues occur because the application fails to properly sanitize user-supplied input. The attacker-supplied HTML and script code would be able to access...

security flaw

Direct Rendering Manager DRM driver in Linux kernel 2.6 does not properly check the DMA lock, which could allow remote attackers or local users to cause a denial of service X Server crash and possibly modify the video output...

CVE-2004-1056

Direct Rendering Manager DRM driver in Linux kernel 2.6 does not properly check the DMA lock, which could allow remote attackers or local users to cause a denial of service X Server crash and possibly modify the video output...

CVE-2004-1056

Direct Rendering Manager DRM driver in Linux kernel 2.6 does not properly check the DMA lock, which could allow remote attackers or local users to cause a denial of service X Server crash and possibly modify the video output...

CVE-2004-1056

Direct Rendering Manager DRM driver in Linux kernel 2.6 does not properly check the DMA lock, which could allow remote attackers or local users to cause a denial of service X Server crash and possibly modify the video output...

Mozilla0.x Netscape 34 Firefox 1.0 - JavaScript IFRAME Rendering Denial of Service

Mozilla0.x Netscape 34 Firefox 1.0 - JavaScript IFRAME Rendering Denial of Service source: https://www.securityfocus.com/bid/11823/info Mozilla/Netscape and Firefox browsers are reported prone a remote denial of service vulnerability. It is reported that the affected browsers will crash as a resu...

CVE-2004-0209

Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via 1 Windows Metafile WMF or 2 Enhanced Metafile EMF image formats that involve "an unchecked buffer."...

[EXPL] (MS04-032) Microsoft Windows XP Metafile (.emf) Heap Overflow (PoC)

---snip--- / HOD-ms04032-emf-expl2.c: MS04-032 Microsoft Windows XP Metafile .emf Heap Overflow Exploit version 0.2 PUBLIC coded by .:: houseofdabus ::. at inbox dot ru ------------------------------------------------------------------- About WMF/EMF: Windows Metafile WMF and Enhanced Windows...

MS Windows Metafile (.emf) Heap Overflow Exploit (MS04-032)

Exploit for unknown platform in category remote exploits =========================================================== MS Windows Metafile .emf Heap Overflow Exploit MS04-032 =========================================================== / HOD-ms04032-emf-expl2.c: MS04-032 Microsoft Windows XP Metafil...

Microsoft Windows (x86) - Metafile '.emf' Heap Overflow (MS04-032)

/ HOD-ms04032-emf-expl2.c: MS04-032 Microsoft Windows XP Metafile .emf Heap Overflow Exploit version 0.2 PUBLIC coded by .:: houseofdabus ::. at inbox dot ru ------------------------------------------------------------------- About WMF/EMF: Windows Metafile WMF and Enhanced Windows Metafile EMF...

CVE-2004-0209

Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via 1 Windows Metafile WMF or 2 Enhanced Metafile EMF image formats that involve "an unchecked buffer."...

CVE-2004-0209

CVE-2004-0209 describes a buffer overflow in the Windows Graphics Rendering Engine during parsing of Windows Metafile (WMF) and Enhanced Metafile (EMF) formats, allowing remote code execution with the privileges of the logged-in user on affected Windows versions (Windows 2000, XP, and Server 2003...

DCP-Portal 3.7/4.x/5.x - Multiple HTML Injection Vulnerabilities

source: https://www.securityfocus.com/bid/11339/info DCP-Portal is reported prone to multiple HTML injection vulnerabilities. It is reported that DCP-Portal does not sufficiently filter data submitted via input fields in several scripts. These vulnerabilities may permit execution of hostile scrip...

Debian DSA-167-1 : kdelibs - XSS

A cross site scripting problem has been discovered in Konqueror, a famous browser for KDE and other programs using KHTML. The KDE team reportsthat Konqueror's cross site scripting protection fails to initialize the domains on sub-iframes correctly. As a result, JavaScript is able to access any...

CVE-2004-0093

XFree86 4.1.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an out-of-bounds array index when using the GLX extension and Direct Rendering Infrastructure DRI...

CVE-2004-0094

Integer signedness errors in XFree86 4.1.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code when using the GLX extension and Direct Rendering Infrastructure DRI...

VulnCheck KEV: CVE-2004-0549

The WebBrowser ActiveX control, or the Internet Explorer HTML rendering engine MSHTML, as used in Internet Explorer 6, allows remote attackers to execute arbitrary code in the Local Security context by using the showModalDialog method and modifying the location to execute code such as...

RHEL 2.1 : XFree86 (RHSA-2004:152)

Updated XFree86 packages that fix a minor denial of service vulnerability are now available. XFree86 is an implementation of the X Window System, providing the core graphical user interface and video drivers. Flaws in XFree86 4.1.0 allows local or remote attackers who are able to connect to the X...