[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

 
 
Paid content will be excluded from the download.

Filter
Matches : 1848 Download | Alert*

The host is installed with Microsoft Windows Vista or Server 2008/R2 or Windows 7 and is prone to security vulnerability. A flaw is present in the windows OS Loader which do not restrict certain inadequacies in boot process and allow unsigned binaries to be loaded. Successful exploitation which does not guarantee the integrity of certain core operating system components by the windows.

The host is missing a critical security update according to Adobe advisory, APSB11-23. The update is required to fix a cross site scripting vulnerability. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation could allow attackers to inject arbitrary code.

The host is missing an important security update according to Microsoft bulletin, MS14-014. The update is required to fix security feature bypass vulnerability. A flaw is present in the application, which fails to correctly implement the DEP/ASLR security features. Successful exploitation allows attackers to more reliably predict the memory offsets of specific instructions in a given call stack.

Mozilla developers and community identified identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption under certain circumstances, and we presume that with enough effort at least some of these could be exploited to run arbitrary code.

Using the Address Sanitizer tool, security researcher Atte Kettunen from OUSPG discovered a buffer overflow during interaction with the Web Audio buffer for playback because of an error in the the amount of allocated memory for buffers. This leads to a potentially exploitable crash with some audio content.

Using the Address Sanitizer tool, security researcher Atte Kettunen from OUSPG discovered a use-after-free in Web Audio due to an issue with how control messages for Web Audio are ordered and processed. This leads to a potentially exploitable crash.

Mozilla community member James Kitchener reported a crash in DirectWrite when rendering MathML content with specific fonts due to an error in how font resources and tables are handled. This leads to use-after-free of a DirectWrite font-face object, resulting in a potentially exploitable crash.

Security researcher Jethro Beekman of the University of California, Berkeley reported a crash when the FireOnStateChange event is triggered in some circumstances. This leads to a use-after-free and a potentially exploitable crash when it occurs.

Developer Patrick Cozzi reported a crash in some circumstances when using the Cesium JavaScript library to generate WebGL content. Mozilla developers determined that this crash is potentially exploitable.

Security researchers Tyson Smith and Jesse Schwartzentruber used the Address Sanitizer tool while fuzzing to discover a use-after-free error resulting in a crash. This is a result of a pair of NSSCertificate structures being added to a trust domain and then one of them is removed while they are still in use by the trusted cache. This crash is potentially exploitable. This issue was addressed ...


Pages:      Start    171    172    173    174    175    176    177    178    179    180    181    182    183    184    ..   184

© 2013 SecPod Technologies