CVSS: 9.3EPSS: 2%CPEs: 79EXPL: 0CVE-2011-0254 – Webkit setAttributes attributeChanged Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-0254
21 Jul 2011 — WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2011-07-20-1. WebKit, empleado en Safari anterior a v5.0.6, permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria o caída de aplicación) a través de un sitio web manipulado. Vulnerabilida... • http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 2%CPEs: 79EXPL: 0CVE-2011-0255 – Apple Safari Rendering Object Body Detachment Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-0255
21 Jul 2011 — WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2011-07-20-1. WebKit, empleado en Safari anterior a v5.0.6, permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria o caída de aplicación) a través de un sitio web manipulado. Vulnerabilida... • http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 81%CPEs: 79EXPL: 2CVE-2011-1774 – Apple Safari Webkit - libxslt Arbitrary File Creation
https://notcve.org/view.php?id=CVE-2011-1774
21 Jul 2011 — WebKit in Apple Safari before 5.0.6 has improper libxslt security settings, which allows remote attackers to create arbitrary files, and consequently execute arbitrary code, via a crafted web site. NOTE: this may overlap CVE-2011-1425. WebKit de Apple Safari v5.0.6 anteriores de que se ha inadecuada configuración de seguridad libxslt, que permite a atacantes remotos crear archivos, y por lo tanto ejecutar código, a través de un sitio web manipulado. NOTA: esto puede solaparse con CVE-2011-1425. • https://packetstorm.news/files/id/180742 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 1%CPEs: 80EXPL: 0CVE-2011-1797
https://notcve.org/view.php?id=CVE-2011-1797
21 Jul 2011 — WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2011-07-20-1. WebKit, como se usa en Safari de Apple anterior a v5.0.6, permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria y caída de aplicación) a través de un sitio web hecho a mano, una v... • http://crbug.com/79075 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 2%CPEs: 79EXPL: 0CVE-2011-0234 – Webkit Detached Body Element Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-0234
19 Apr 2011 — WebKit, as used in Apple Safari before 5.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2011-07-20-1. WebKit, empleado en Safari anterior a v5.0.6, permite a atacantes remotos ejecutar código de su elección o provocar una denegación de servicio (corrupción de memoria o caída de aplicación) a través de un sitio web manipulado. Vulnerabilida... • http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 77EXPL: 0CVE-2007-1884
https://notcve.org/view.php?id=CVE-2007-1884
06 Apr 2007 — Multiple integer signedness errors in the printf function family in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 on 64 bit machines allow context-dependent attackers to execute arbitrary code via (1) certain negative argument numbers that arise in the php_formatted_print function because of 64 to 32 bit truncation, and bypass a check for the maximum allowable value; and (2) a width and precision of -1, which make it possible for the php_sprintf_appendstring function to place an internal buffer at an arbitrary ... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01056506 •