20 matches found
EUVD-2007-4121
Malware in sbrugna...
EUVD-2002-1862
Malware in sbrugna...
EUVD-2007-3374
Malware in sbrugna...
EUVD-2009-2692
Malware in sbrugna...
CVE-2002-1883
Trolltech Qt Assistant 1.0 in Trolltech Qt 3.0.3, when loaded from the Designer, opens port 7358 for interprocess communication, which allows remote attackers to open arbitrary HTML pages and cause a denial of service...
CVE-2009-2700
src/network/ssl/qsslcertificate.cpp in Nokia Trolltech Qt 4.x does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a...
CVE-2007-5965
QSslSocket in Trolltech Qt 4.3.0 through 4.3.2 does not properly verify SSL certificates, which might make it easier for remote attackers to trick a user into accepting an invalid server certificate for a spoofed service, or trick a service into accepting an invalid client certificate for a user...
CVE-2007-5965
QSslSocket in Trolltech Qt 4.3.0 through 4.3.2 does not properly verify SSL certificates, which might make it easier for remote attackers to trick a user into accepting an invalid server certificate for a spoofed service, or trick a service into accepting an invalid client certificate for a user...
CVE-2007-5965
CVE-2007-5965 affects Trolltech Qt 4.3.0–4.3.2, where QSslSocket does not correctly verify SSL certificates. This can allow remote attackers to trick users into accepting an invalid server certificate for a spoofed service or cause a service to accept an invalid client certificate (I) as describe...
CVE-2007-5965
Removed by vendor...
Trolltech Qt QSslSocket类证书验证绕过安全限制漏洞
BUGTRAQ ID: 27112 CVECAN ID: CVE-2007-5965 Qt是一款C++应用开发工具,包括类库和跨平台开发工具。 Qt可能没有对SSL连接中的QSslSocket类证书执行验证,使用QSslSocket的应用可能受骗接受伪造的证书,这有助于攻击者执行网络钓鱼类的攻击。 Trolltech Qt 4.3.2 Trolltech Qt 4.3.1 Trolltech Qt 4.3.0 Trolltech --------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Heap overflow
Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service crash via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but...
CVE-2007-3388
Multiple format string vulnerabilities in 1 qtextedit.cpp, 2 qdatatable.cpp, 3 qsqldatabase.cpp, 4 qsqlindex.cpp, 5 qsqlrecord.cpp, 6 qglobal.cpp, and 7 qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifier...
Format string
Multiple format string vulnerabilities in 1 qtextedit.cpp, 2 qdatatable.cpp, 3 qsqldatabase.cpp, 4 qsqlindex.cpp, 5 qsqlrecord.cpp, 6 qglobal.cpp, and 7 qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifier...
CVE-2007-3388
Multiple format string vulnerabilities in 1 qtextedit.cpp, 2 qdatatable.cpp, 3 qsqldatabase.cpp, 4 qsqlindex.cpp, 5 qsqlrecord.cpp, 6 qglobal.cpp, and 7 qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifier...
CVE-2007-3388
Multiple format string vulnerabilities in 1 qtextedit.cpp, 2 qdatatable.cpp, 3 qsqldatabase.cpp, 4 qsqlindex.cpp, 5 qsqlrecord.cpp, 6 qglobal.cpp, and 7 qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifier...
CVE-2007-3388
CVE-2007-3388 affects Trolltech Qt 3 (Qt X11-free) with multiple format-string vulnerabilities in QTextEdit components (qtextedit.cpp, qdatatable.cpp, qsql*.cpp, qglobal.cpp, qsvgdevice.cpp) that could allow remote code execution via error-message text. Affected versions are Qt 3 prior to 3.3.8 (...
CVE-2007-3388
Removed by vendor...
CVE-2002-1883
Trolltech Qt Assistant 1.0 in Trolltech Qt 3.0.3, when loaded from the Designer, opens port 7358 for interprocess communication, which allows remote attackers to open arbitrary HTML pages and cause a denial of service...
CVE-2002-1883
Trolltech Qt Assistant 1.0 in Trolltech Qt 3.0.3, when loaded from the Designer, opens port 7358 for interprocess communication, which allows remote attackers to open arbitrary HTML pages and cause a denial of service...