 |
|
|
|
Microsoft Windows Secure Channle DoS
updated since 12.06.2007 | | Published: |  | 13.06.2007 | | Source: |  | MICROSOFT | | SecurityVulns ID: |  | 7805 | | Type: |  | library | | Level: |  | 6/10 | | Description: |  | Service hangs on SSL/TLS handshake parsing. |
Microsoft Internet Explorer multiple security vulnerabilities
updated since 12.06.2007 | | Published: | | 13.06.2007 | | Source: | | MICROSOFT | | SecurityVulns ID: | | 7807 | | Type: | | client | | Level: | | 9/10 | | Description: | | Multiple memory corruptions, content spoofing. |
| Affected: |  | MICROSOFT : Windows 2000 Server | | | | MICROSOFT : Windows 2000 Professional | | | | MICROSOFT : Windows XP | | | | MICROSOFT : Windows 2003 Server | | | | MICROSOFT : Windows 2003 | | | | MICROSOFT : Windows Vista | | CVE: |  | CVE-2007-3027 (Race condition in Microsoft Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code by causing Internet Explorer to install multiple language packs in a way that triggers memory corruption, aka "Language Pack Installation Vulnerability.") | | | | CVE-2007-2222 (Multiple buffer overflows in the (1) ActiveListen (Xlisten.dll) and (2) ActiveVoice (Xvoice.dll) speech controls, as used by Microsoft Internet Explorer 5.01, 6, and 7, allow remote attackers to execute arbitrary code via a crafted ActiveX object that triggers memory corruption, as demonstrated via the ModeName parameter to the FindEngine function in ACTIVEVOICEPROJECTLib.DirectSS.) | | | | CVE-2007-1752 (** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-1499. Reason: This candidate is a duplicate of CVE-2007-1499. Notes: All CVE users should reference CVE-2007-1499 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.) | | | | CVE-2007-1751 (Microsoft Internet Explorer 5.01, 6, and 7 allows remote attackers to execute arbitrary code by causing Internet Explorer to access an uninitialized or deleted object, related to prototype variables and table cells, aka "Uninitialized Memory Corruption Vulnerability.") | | | | CVE-2007-1750 (Unspecified vulnerability in Microsoft Internet Explorer 6 allows remote attackers to execute arbitrary code via a crafted Cascading Style Sheets (CSS) tag that triggers memory corruption.) | | | | CVE-2007-0218 (Microsoft Internet Explorer 5.01 and 6 allows remote attackers to execute arbitrary code by instantiating certain COM objects from Urlmon.dll, which triggers memory corruption during a call to the IObjectSafety function.) |
| Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) | | Published: | | 13.06.2007 | | Source: | | | | SecurityVulns ID: | | 7810 | | Type: | | remote | | Level: | | 5/10 | | Description: | | PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc. |
| Apple Safari crossite scripting | | Published: | | 13.06.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 7811 | | Type: | | client | | Level: | | 5/10 | | Description: | | window.setTimeout() works in context of changed window.location. |
Apple Safari for Windows commands execution
updated since 12.06.2007 | | Published: | | 13.06.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 7801 | | Type: | | client | | Level: | | 6/10 | | Description: | | Shell characters problem on protocol handlers invocation. Format string vulnerability. |
libexif library integer overflow
updated since 05.06.2007 | | Published: | | 13.06.2007 | | Source: | | BUGTRAQ | | SecurityVulns ID: | | 7779 | | Type: | | library | | Level: | | 5/10 | | Description: | | Integer overflow on EXIF data parsing. |
| Affected: | | LIBEXIF : libexif 0.6 | | CVE: | | CVE-2007-2645 (Integer overflow in the exif_data_load_data_entry function in exif-data.c in libexif before 0.6.14 allows user-assisted remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted EXIF data, involving the (1) doff or (2) s variable.) |
|
|
|
|
|
|
|
|
