Foxit Reader and Foxit PhantomPDF for Windows Memory Misreference Vulnerability (CNVD-2018-24458)

Foxit Reader for Windows is a Windows-based PDF document reader from China's Foxit Foxit Software Corporation.Foxit PhantomPDF for Windows is its commercial version. A memory misreference vulnerability exists in the XFA setInterval method in Foxit Reader 9.2.0.9297 and earlier versions and Foxit...

Foxit Reader XFA setInterval Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the XFA setInterval...

Foxit Reader for Windows 'setInterval()' Method Memory Misreference Vulnerability

Foxit Reader for Windows is China's Foxit Foxit Software Corporation, a Windows-based platform for PDF document reader. A memory misreference vulnerability exists in the handling of the 'setInterval' method in Foxit Reader 9.2.0.9297 and earlier versions for Windows platforms, which stems from th...

Foxit Reader setInterval Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...

Web Application Penetration Testing Tool: Tracy

Tracy is a pentesting tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner. tracy should be used during the mapping-the-application phase of the pentest to identify sources of input and their corresponding outputs. tracy...

Foxit Reader < 8.2 Multiple Vulnerabilities

Binary data 9898.prm...

Foxit Reader setInterval Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

The vulnerabilities of the software platforms Flash Player, Flash Player ESR, and Adobe Integrated Runtime allow attackers to execute arbitrary code.

The vulnerability of the setInterval method in programming platforms such as Flash Player, Flash Player ESR, and Adobe Integrated Runtime is related to the use of memory after it is released. Exploiting this vulnerability can allow a remote attacker to execute arbitrary code...

CVE-2016-0996

Use-after-free vulnerability in the setInterval method in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176...

CVE-2016-0996

Use-after-free vulnerability in the setInterval method in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176...

UBUNTU-CVE-2016-0996

Use-after-free vulnerability in the setInterval method in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176...

CVE-2016-0996

Technical details for CVE-2016-0996 are not publicly provided in the supplied documents. Monitor for updates.

CVE-2016-0996

Use-after-free vulnerability in the setInterval method in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176...

Adobe Flash setInterval Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the setInterval...

Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability (Windows)

This host is installed with Apple Safari web browser and is prone to address bar spoofing vulnerability. OpenVAS Vulnerability Test $Id: gbapplesafariaddressbarspoofinvulnwin.nasl 5963 2017-04-18 09:02:14Z teissa $ Apple Safari 'setInterval' Address Bar Spoofing Vulnerability Windows Authors:...

Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability - Windows

Apple Safari web browser is prone to address bar spoofing vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Apple Safari 5.1.2 setInterval()地址栏欺骗漏洞

BUGTRAQ ID: 52323 CVE ID: CVE-2011-3844 Safari是苹果计算机的最新作业系统Mac OS X中的浏览器，使用了KDE的KHTML作为浏览器的运算核心。 Apple Safari在处理setInterval函数的实现上存在安全漏洞，远程攻击者可利用此漏洞在地址栏中显示可信站点URL时显示任意内容，进行欺骗攻击。 0 Apple Safari 5.1.2 7534.52.7 For Windows 厂商补丁： Apple ----- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

CVE-2011-3844

Apple Safari 5.0.5 does not properly implement the setInterval function, which allows remote attackers to spoof the address bar via a crafted web page...

Design/Logic Flaw

Apple Safari 5.0.5 does not properly implement the setInterval function, which allows remote attackers to spoof the address bar via a crafted web page...

CVE-2011-3844

CVE-2011-3844 concerns Apple Safari’s handling of setInterval, where Safari 5.0.5 (and related versions) can be abused to spoof the address bar via a crafted web page. The vulnerability affects the browser’s address bar rendering, enabling remote attackers to misrepresent the visited URL. The NVD...