Page 254 of 1351 results (0.017 seconds)

CVSS: 5.0EPSS: 18%CPEs: 2EXPL: 5

Memory leak in WebKit.dll in WebKit, as used by Apple Safari 3.2 on Windows Vista SP1, allows remote attackers to cause a denial of service (memory consumption and browser crash) via a long ALINK attribute in a BODY element in an HTML document. Fuga de memoria en WebKit.dll en Webkit, como el utilizado en Safari v3.2 en Windows Vista SP1, permite a atacantes remotos provocar una denegación de servicio (consumo de memoria y cuelgue del navegador) a través de un atributo ALINK largo en un elemento BODY en un documento HTML. • https://www.exploit-db.com/exploits/32694 https://www.exploit-db.com/exploits/32695 https://www.exploit-db.com/exploits/12408 http://jbrownsec.blogspot.com/2008/12/new-year-research-are-upon-us.html http://packetstormsecurity.org/0812-exploits/safari_webkit_ml.txt http://www.securityfocus.com/bid/33080 https://exchange.xforce.ibmcloud.com/vulnerabilities/47724 • CWE-399: Resource Management Errors •

CVSS: 1.9EPSS: 0%CPEs: 42EXPL: 0

Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache. Apple Safari anterior a v3.2. no previene de forma adecuada el cambio de los datos del formulario para campos de formulario que tienen autocompletar desactivado; esto permite a usuarios locales obtener información sensible al leer la página cacheada en el navegador. • http://lists.apple.com/archives/security-announce//2008/Nov/msg00001.html http://lists.apple.com/archives/security-announce/2008/Nov/msg00002.html http://secunia.com/advisories/32706 http://secunia.com/advisories/32756 http://support.apple.com/kb/HT3298 http://support.apple.com/kb/HT3318 http://www.securityfocus.com/bid/32291 http://www.securitytracker.com/id?1021226 http://www.vupen.com/english/advisories/2008/3232 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 9.3EPSS: 7%CPEs: 45EXPL: 0

Heap-based buffer overflow in CoreGraphics in Apple Safari before 3.2 on Windows, in iPhone OS 1.0 through 2.2.1, and in iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted image, related to improper handling of color spaces. Desbordamiento de búfer basado en montículo en CoreGraphics en Apple Safari antes de v3.2 en Windows permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (caída de la aplicación) mediante una imagen manipulada, relacionado con el manejo inadecuado de espacios de color. • http://lists.apple.com/archives/security-announce//2008//Dec/msg00000.html http://lists.apple.com/archives/security-announce//2008/Nov/msg00001.html http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html http://secunia.com/advisories/32706 http://secunia.com/advisories/33179 http://support.apple.com/kb/HT3298 http://support.apple.com/kb/HT3338 http://support.apple.com/kb/HT3639 http://www.securityfocus.com/bid/32291 http://www.securitytracker.com/id&# • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 4.3EPSS: 0%CPEs: 42EXPL: 0

The plug-in interface in WebKit in Apple Safari before 3.2 does not prevent plug-ins from accessing local URLs, which allows remote attackers to obtain sensitive information via vectors that "launch local files." La interface plug-in en WebKit de Apple Safari versiones anteiores a v3.2 no impide que los plug-ins de acceso de URLs local, lo cual permite a atacantes remotos obtener información sensible a través de vectores que "lanzan archivos locales". • http://lists.apple.com/archives/security-announce//2008/Nov/msg00001.html http://secunia.com/advisories/32706 http://support.apple.com/kb/HT3298 http://www.securityfocus.com/bid/32291 http://www.securitytracker.com/id?1021227 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 10.0EPSS: 85%CPEs: 15EXPL: 1

Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via a long XML entity name. Desbordamiento de búfer basado en pila en la función xmlParseAttValueComplex en el módulo parser.c de libxml2 versiones anteriores a 2.7.0 permite a atacantes dependientes del contexto provocar una denegación de servicio (parada inesperada) o la posibilidad de ejecutar código de su elección al utilizar un nombre largo de entidad XML. • https://www.exploit-db.com/exploits/8798 http://lists.apple.com/archives/security-announce/2009/Jun/msg00005.html http://lists.apple.com/archives/security-announce/2009/May/msg00000.html http://lists.apple.com/archives/security-announce/2009/jun/msg00002.html http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html http://secunia.com/advisories/31558 http://secunia.com/advisories/31855 http://secunia.com/advisories/31860 http://secunia.com/advisories/31868 http:/ • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •