478 matches found
Linux Kernel Vfio Driver Integer Overflow Vulnerability
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. An integer overflow vulnerability exists in the Linux Kernel Vfio Driver. An attacker can exploit this vulnerability to execute arbitrary code. A failed exploit could result i...
Apple Mac OSX Kernel - Null Pointer Dereference in IOAudioEngine
Apple Mac OSX Kernel - Null Pointer Dereference in IOAudioEngine / Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=776 IOAudioEngineUserClient::closeClient sets the audioEngine member pointer to NULL IOReturn IOAudioEngineUserClient::closeClient audioDebugIOLog3, "+...
MS15-058: Vulnerabilities in SQL Server could allow remote code execution: July 14, 2015
Resolves vulnerabilities in SQL Server that could allow remote code execution if an authenticated attacker runs a specially crafted query that is designed to execute a virtual function from a wrong address. This leads to a function call to uninitialized memory.IntroductionThis update resolves...
Mozilla Firefox 3.6.16 mChannel Use-After-Free漏洞
漏洞分析 此漏洞是由于Mozilla Firefox的xul.dll在处理mChannel标签时,在OnChannelRedirect中对mChannel对象进行创建,但在随后调用Release释放,在释放对象过后没有对该指针进行标记,从而导致在随后的调用用中引用mChannel标签时,由于指针已经被释放,导致call地址不可读,从而引发漏洞,下面对此漏洞进行详细分析。 首先打开PoC,火狐浏览器崩溃,附加调试器,到达漏洞现场。 858.85c: Access violation - code c0000005 first chance First chance exceptions a...
CA ARCserve Backup Authentication service invalid virtual function call
Added: 11/09/2012 CVE: CVE-2012-2971 BID: 56116 OSVDB: 86416 Background CA ARCserve Backup formerly BrightStor ARCserve Backup is a backup and recovery solution. Problem An invalid virtual function call in the authentication service allows remote attackers to execute arbitrary commands. Resolutio...
CA ARCserve Backup Authentication service invalid virtual function call
Added: 11/09/2012 CVE: CVE-2012-2971 BID: 56116 OSVDB: 86416 Background CA ARCserve Backup formerly BrightStor ARCserve Backup is a backup and recovery solution. Problem An invalid virtual function call in the authentication service allows remote attackers to execute arbitrary commands. Resolutio...
Remote code execution
Microsoft Internet Explorer 6 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a malformed virtual function table after this table's deletion, aka "Virtual Function Table Corruption Remote Code Execution Vulnerability."...
Microsoft Internet Explorer Multiple Vulnerabilities (2722913)
This host is missing a critical security update according to Microsoft Bulletin MS12-052. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Mozilla Products XBL Binding Memory Corruption Vulnerability - (Windows)
The host is installed with Mozilla firefox/seamonkey/thunderbird and is prone to memory corruption vulnerability. OpenVAS Vulnerability Test $Id: gbmozillaprdtsxblbindmemcrptnvulnwin.nasl 6444 2017-06-27 11:24:02Z santu $ Mozilla Products XBL Binding Memory Corruption Vulnerability - Windows...
Microsoft Internet Explorer SVG animateMotion.by Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the handling of the "by" property...
GLSA-200708-17 : Opera: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200708-17 Opera: Multiple vulnerabilities An error known as 'a virtual function call on an invalid pointer' has been discovered in the JavaScript engine CVE-2007-4367. Furthermore, iDefense Labs reported that an already-freed...
Lianzhong game lobby GlobalLink glItemCom.dll SetInfo()use analyze-vulnerability warning-the black bar safety net
author: voidph4nt0m.org pub: 2008-09-04 http://www.ph4nt0m.org Text Mode Affected version: Lianzhong game lobby 2. 7. 0. 8 2 0 0 7 years 8 months 1 6, released Unaffected version: Ourgame also didn't fill :- Genesis: With all the programmers are too trusting user input,not detecting the user...
Opera: Multiple vulnerabilities
Background Opera is a multi-platform web browser. Description An error known as "a virtual function call on an invalid pointer" has been discovered in the JavaScript engine CVE-2007-4367. Furthermore, iDefense Labs reported that an already-freed pointer may be still used under unspecified...
CVE-2007-4367
Opera before 9.23 allows remote attackers to execute arbitrary code via crafted Javascript that triggers a "virtual function call on an invalid pointer."...
a specially crafted JavaScript can make Opera execute arbitrary code
A virtual function call on an invalid pointer that may referencedata crafted by the attacker can be used to execute arbitrary code...
FreeBSD : opera -- multiple vulnerabilities (78ad2525-9d0c-11db-a5f6-000c6ec775d9)
iDefense reports : The vulnerability specifically exists due to Opera improperly processing a JPEG DHT marker. The DHT marker is used to define a Huffman Table which is used for decoding the image data. An invalid number of index bytes in the DHT marker will trigger a heap overflow with partially...
CentOS 4 : PHP (CESA-2005:406)
Updated PHP packages that fix various security issues are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. A bug was found in the way PHP...
USN-232-1: PHP vulnerabilities
Eric Romang discovered a local Denial of Service vulnerability in the handling of the 'session.savepath' parameter in PHP's Apache 2.0 module. By setting this parameter to an invalid value in an .htaccess file, a local user could crash the Apache server. CVE-2005-3319 A Denial of Service flaw was...