[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 14850 Download | Alert*

The host is installed with Pidgin before 2.10.8 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly validate argument counts. Successful exploitation allows attackers to cause an application crash.

The host is installed with Pidgin before 2.10.8 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle a Yahoo! P2P message with a crafted length field. Successful exploitation allows attackers to cause an application crash.

The host is installed with Pidgin before 2.10.8 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted SOAP response, OIM XML response or Content-Length header. Successful exploitation allows attackers to cause a NULL pointer dereference and crash.

The host is installed with Pidgin before 2.10.8 and is prone to integer overflow vulnerability. A flaw is present in the application, which fails to properly handle a large Content-Length value. Successful exploitation allows attackers to have an unspecified impact.

The host is installed with Pidgin before 2.10.8 and is prone to integer signedness error vulnerability. A flaw is present in the application, which fails to properly handle a crafted emoticon value. Successful exploitation allows attackers to cause denial of service (segmentation fault).

The host is installed with Pidgin before 2.10.8 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle a negative Content-Length header. Successful exploitation allows attackers to have unspecified impact.

Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x through 17.0.8, Thunderbird ESR 17.x through 17.0.10, and SeaMonkey before 2.20 allows user-assisted remote attackers to inject arbitrary web script or HTML via an e-mail message containing a data: URL in a (1) OBJECT or (2) EMBED element, a related issue to CVE-2013-6674.

The host is installed with Google Chrome before 33.0.1750.117 and is prone to a directory traversal vulnerability. A flaw is present in the application, which fails to properly handle relative paths in Windows sandbox named pipe policy. Successful exploitation could allow attackers to bypass intended named-pipe policy restrictions.

The host is installed with vlc media player before 0.8.6e and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a malformed MP4 file. Successful exploitation could allow attackers to overwrite arbitrary memory and execute arbitrary code.

The host is installed with vlc media player 0.8.6h and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted TTA file. Successful exploitation could allow attackers to execute arbitrary code or crash the service.


Pages:      Start    1190    1191    1192    1193    1194    1195    1196    1197    1198    1199    1200    1201    1202    1203    ..   1484

© SecPod Technologies