6638 matches found
[SECURITY] Fedora 9 Update: chmsee-1.0.1-5.fc9
A gtk2 chm document viewer. It uses chmlib to extract files. It uses gecko to display pages. It supports displaying multilingual pages due to gecko. It features bookmarks and tabs. The tabs could be used to jump inside the chm file conveniently. Its UI is clean and handy, also is well localized. ...
[SECURITY] Fedora 9 Update: epiphany-2.22.2-4.fc9
Epiphany is a simple GNOME web browser based on the Mozilla rendering engine...
Design/Logic Flaw
Opera before 9.52, when rendering an http page that has loaded an https page into a frame, displays a padlock icon and offers a security information dialog reporting a secure connection, which might allow remote attackers to trick a user into performing unsafe actions on the http page...
VulnCheck KEV: CVE-2006-5758
The Graphics Rendering Engine in Microsoft Windows 2000 through 2000 SP4 and Windows XP through SP2 maps GDI Kernel structures on a global shared memory section that is mapped with read-only permissions, but can be remapped by other processes as read-write, which allows local users to cause a...
CVE-2008-4064
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to graphics rendering and 1 handling of a long alert messagebox in the...
Integer overflow
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to graphics rendering and 1 handling of a long alert messagebox in the...
CVE-2008-4064
CVE-2008-4064 affects Mozilla Firefox 3.x prior to 3.0.2. The description identifies three concrete vectors contributing to memory safety issues: (1) a memory corruption/possible code execution path via graphics rendering related to a long alert messagebox in cairo_surface_set_device_offset, (2) ...
CVE-2008-4064
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to graphics rendering and 1 handling of a long alert messagebox in the...
Mozilla crashes with evidence of memory corruption
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to graphics rendering and 1 handling of a long alert messagebox in the...
CVE-2008-4064
Multiple unspecified vulnerabilities in Mozilla Firefox 3.x before 3.0.2 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via vectors related to graphics rendering and 1 handling of a long alert messagebox in the...
[Full-disclosure] Assurent VR - Microsoft Windows Graphics Rendering Engine WMF Parsing Buffer Overflow
Microsoft Windows Graphics Rendering Engine WMF Parsing Buffer Overflow Assurent ID: FSC20080909-12 1. Affected Software Digital Image Suite 2006 Forefront Client Security 1.0 Microsoft Office 2003 SP2, SP3 Microsoft Office PowerPoint Viewer 2003 Microsoft Windows XP prior to SP3 Microsoft Window...
MS08-052: Vulnerabilities in GDI+ Could Allow Remote Code Execution (954593)
The remote host is running a version of Windows that has multiple buffer overflow vulnerabilities when viewing VML, EMF, GIF, WMF and BMP files that could allow an attacker to execute arbitrary code on the remote host. To exploit these flaws, an attacker would need to send a malformed image file ...
XRms 1.99.2 - last_name Cross-Site Scripting
XRms 1.99.2 - lastname Cross-Site Scripting source: https://www.securityfocus.com/bid/31008/info XRMS CRM is prone to multiple input-validation vulnerabilities, including an unspecified SQL-injection issue, an HTML-injection issue, and multiple cross-site scripting issues. The vulnerabilities occ...
Memory corruption
Microsoft Internet Explorer 5.01, 6, and 7 accesses uninitialized memory in certain conditions, which allows remote attackers to cause a denial of service crash and execute arbitrary code via vectors related to a document object "appended in a specific order," aka "HTML Objects Memory Corruption...
ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap Corruption
ZDI-08-049: Microsoft Windows Graphics Rendering Engine PICT Heap Corruption http://www.zerodayinitiative.com/advisories/ZDI-08-049 August 12, 2008 -- CVE ID: CVE-2008-3021 -- Affected Vendors: Microsoft -- Affected Products: Microsoft File Format Vulnerability -- TippingPointTM IPS Customer...
Microsoft Windows Graphics Rendering Engine PICT Heap Corruption Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists in the handling of PICT images in an office document. D...
[SECURITY] Fedora 8 Update: poppler-0.6.2-2.fc8
Poppler, a PDF rendering library, it's a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC...
[SECURITY] Fedora 8 Update: epiphany-2.20.3-6.fc8
epiphany is a simple GNOME web browser based on the Mozilla rendering engine...
[SECURITY] Fedora 8 Update: kazehakase-0.5.4-2.fc8.3
Kazehakase is a Web browser which aims to provide a user interface that is truly user-friendly & fully customizable. This package uses Gecko for HTML rendering engine. If you want to use WebKit for HTML rendering engine, install "kazehakase-webkit" rpm instead...
[SECURITY] Fedora 8 Update: gtkmozembedmm-1.4.2.cvs20060817-22.fc8
This package provides a C++/gtkmm wrapper for GtkMozEmbed from Mozilla 1.4.x to 1.7.x. The wrapper provides a convenient interface for C++ programmers to use the Gtkmozembed HTML-rendering widget inside their software...