|
294471
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 3.0.12 and 3.5 before 3.5.1 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors involving a Flash object, a …
|
NVD-CWE-Other
|
CVE-2009-2467
|
2017-09-19 10:29 |
2009-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294472
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 3.0.12 does not properly handle an SVG element that has a property with a watch function and an __defineSetter__ function, which allows remote attackers to cause a denial of se…
|
CWE-399
Resource Management Errors
|
CVE-2009-2469
|
2017-09-19 10:29 |
2009-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294473
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 3.0.12, and 3.5.x before 3.5.2, allows remote SOCKS5 proxy servers to cause a denial of service (data stream corruption) via a long domain name in a reply.
|
CWE-20
Improper Input Validation
|
CVE-2009-2470
|
2017-09-19 10:29 |
2009-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294474
|
- |
|
mozilla
|
firefox
|
The setTimeout function in Mozilla Firefox before 3.0.12 does not properly preserve object wrapping, which allows remote attackers to execute arbitrary JavaScript with chrome privileges via a crafted…
|
NVD-CWE-Other
|
CVE-2009-2471
|
2017-09-19 10:29 |
2009-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294475
|
- |
|
webdav
|
neon
|
neon before 0.28.6, when expat is used, does not properly detect recursion during entity expansion, which allows context-dependent attackers to cause a denial of service (memory and CPU consumption) …
|
CWE-399
Resource Management Errors
|
CVE-2009-2473
|
2017-09-19 10:29 |
2009-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294476
|
- |
|
sun
|
java_se
openjdk
|
The Java Management Extensions (JMX) implementation in Sun Java SE 6 before Update 15, and OpenJDK, does not properly enforce OpenType checks, which allows context-dependent attackers to bypass inten…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-2476
|
2017-09-19 10:29 |
2009-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294477
|
- |
|
mozilla
|
firefox
|
js/src/jstracer.cpp in the Just-in-time (JIT) JavaScript compiler (aka TraceMonkey) in Mozilla Firefox 3.5 before 3.5.1 allows remote attackers to execute arbitrary code via certain use of the escape…
|
CWE-94
Code Injection
|
CVE-2009-2477
|
2017-09-19 10:29 |
2009-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294478
|
- |
|
sun
|
java_se
openjdk
|
Sun Java SE 5.0 before Update 20 and 6 before Update 15, and OpenJDK, might allow context-dependent attackers to obtain sensitive information via vectors involving static variables that are declared …
|
CWE-200
Information Exposure
|
CVE-2009-2475
|
2017-09-19 10:29 |
2009-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294479
|
- |
|
tingan
|
ht-mp3player
|
Stack-based buffer overflow in HT-MP3Player 1.0 allows remote attackers to execute arbitrary code via a long string in a .ht3 file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-2485
|
2017-09-19 10:29 |
2009-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294480
|
- |
|
sun
|
opensolaris
solaris
|
Unspecified vulnerability in the SCTP implementation in Sun Solaris 10, and OpenSolaris before snv_120, allows remote attackers to cause a denial of service (panic) via unspecified packets.
|
NVD-CWE-noinfo
|
CVE-2009-2486
|
2017-09-19 10:29 |
2009-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
