3217 matches found
CVE-2015-2713
Use-after-free vulnerability in the SetBreaks function in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via a document containing crafted text in...
CVE-2015-2713
Use-after-free vulnerability in the SetBreaks function in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code or cause a denial of service heap memory corruption via a document containing crafted text in...
CVE-2015-2713
CVE-2015-2713 is a use-after-free in Mozilla Firefox (SetBreaks) affecting Firefox before 38.0, Firefox ESR before 31.7, and Thunderbird before 31.7. An attacker could craft a document with specific CSS tokens for vertical text to cause heap memory corruption, enabling remote code execution or a ...
UBUNTU-CVE-2015-2710
Heap-based buffer overflow in the SVGTextFrame class in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allows remote attackers to execute arbitrary code via crafted SVG graphics data in conjunction with a crafted Cascading Style Sheets CSS token sequence...
Cisco IOS Software and Cisco IOS XE Software Crafted DHCPv6 Sequence Denial of Service Vulnerability
A vulnerability in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition. The vulnerability is due to improper handling of DHCPv6 packets for a SOLICIT message for an Identity Association for Non-Temporary Address...
Design/Logic Flaw
SQLite before 3.8.9 does not properly implement the dequoting of collation-sequence names, which allows context-dependent attackers to cause a denial of service uninitialized memory access and application crash or possibly have unspecified other impact via a crafted COLLATE clause, as demonstrate...
[ MDVSA-2015:170 ] gcc
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:170 http://www.mandriva.com/en/support/security/ Package : gcc Date : March 30, 2015 Affected: Business Server 2.0 Problem Description: Updated gcc packages fix the following security issue: Multiple integer...
Apache Qpid Session.gap Denial of Service - ver 2 (CVE-2015-0203)
A denial of service vulnerability exists in Apache Qpid. The vulnerability is due to an assertion failure prior to session establishment when processing the session.gap control segment. A remote, authenticated attacker could exploit this vulnerability by sending an out of sequence session.gap...
Apache Qpid Session.gap Denial of Service (CVE-2015-0203)
A denial of service vulnerability exists in Apache Qpid. The vulnerability is due to an assertion failure prior to session establishment when processing the session.gap control segment. A remote, authenticated attacker could exploit this vulnerability by sending an out of sequence session.gap...
Acunetix-9.5
Date: 27 Mar 2015 Version: 9.5 Tested on: Windows 7 Description: Acunetix Login Sequence Recorder lsr.exe Uses CoCreateInstance API From Ole32.dll To Record Target Login Sequence Exploit Based on MS14-064 CVE2014-6332 http://www.exploit-db.com/exploits/35229/ This Python Script Will Start A Sampl...
Acunetix 9.5 OLE Automation Array Remote Code Execution
!/usr/bin/python import BaseHTTPServer, sys, socket Acunetix OLE Automation Array Remote Code Execution Author: Naser Farhadi Linkedin: http://ir.linkedin.com/pub/naser-farhadi/85/b3b/909 Date: 27 Mar 2015 Version: acunetix.exe Video: https://vid.me/SRCb class...
Acunetix 9.5 - OLE Automation Array Remote Code Execution
Acunetix 9.5 - OLE Automation Array Remote Code Execution !/usr/bin/python import BaseHTTPServer, sys, socket Acunetix OLE Automation Array Remote Code Execution Author: Naser Farhadi Linkedin: http://ir.linkedin.com/pub/naser-farhadi/85/b3b/909 Date: 27 Mar 2015 Version: acunetix.exe Video:...
qpid-cpp: AMQP 0-10 protocol sequence-set maximal range DoS (incomplete CVE-2015-0203 fix)
A flaw was found in the way the Qpid daemon qpidd processed certain protocol sequences. An unauthenticated attacker able to send a specially crafted protocol sequence set that could use this flaw to crash qpidd...
Adobe Flash Player PCRE Regex Logic Error
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 "Adobe Flash Player PCRE Regex Vulnerability", 'Description' = %q This module exploits a vulnerability found in Adobe Flash Player. A...
GE Hydran M2 Guessable TCP Initialization Sequence Vulnerability
The GE Hydran M2 is a fault gas and moisture detection solution. The GE Hydran M2 that includes the 7046 Ethernet option generates guessable TCP initialization sequence numbers, allowing an attacker to predict the correct TCP initialization sequence number, send special messages, and falsify that...
CVE-2014-5409
CVE-2014-5409 affects GE Digital Energy Hydran M2 devices with the 17046 Ethernet option. The 17046 Ethernet card before 94450214LFMT100SEM-L.R3-CL does not generate proper random TCP Initial Sequence Numbers, enabling an attacker to predict sequence values and spoof packets. Exploitation could b...
CVE-2014-5409 GE Hydran M2 Predictable Value Range from Previous Values
The 17046 Ethernet card before 94450214LFMT100SEM-L.R3-CL for the GE Digital Energy Hydran M2 does not properly generate random values for TCP Initial Sequence Numbers ISNs, which makes it easier for remote attackers to spoof packets by predicting these values...
qpid-cpp: 3 qpidd DoS issues in AMQP 0-10 protocol handling
A flaw was found in the way the Qpid daemon qpidd processed certain protocol sequences. An unauthenticated attacker able to send a specially crafted protocol sequence set could use this flaw to crash qpidd...
qpid-cpp: AMQP 0-10 protocol sequence-set maximal range DoS (incomplete CVE-2015-0203 fix)
A flaw was found in the way the Qpid daemon qpidd processed certain protocol sequences. An unauthenticated attacker able to send a specially crafted protocol sequence set that could use this flaw to crash qpidd...
CVE-2015-1228
CVE-2015-1228 affects Google Chrome (Blink) before 41.0.2272.76. The vulnerability is caused by RenderCounter::updateCounter not forcing a relayout and not initializing memory for a data structure, which can be triggered by a crafted CSS token sequence. The result is a denial of service (applicat...