|
296961
|
- |
|
apple
|
mac_os_x
|
The GPU support functionality in Mac OS X does not properly restrict rendering time, which allows remote attackers to cause a denial of service (desktop hang) via vectors involving WebGL and (1) shad…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2601
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296962
|
- |
|
microsoft
|
windows_xp
|
The GPU support functionality in Windows XP does not properly restrict rendering time, which allows remote attackers to cause a denial of service (system crash) via vectors involving WebGL and (1) sh…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2600
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296963
|
- |
|
google
|
chrome
|
Google Chrome 11 does not block use of a cross-domain image as a WebGL texture, which allows remote attackers to obtain approximate copies of arbitrary images via a timing attack involving a crafted …
|
CWE-200
Information Exposure
|
CVE-2011-2599
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296964
|
- |
|
mozilla
|
firefox
|
The WebGL implementation in Mozilla Firefox 4.x allows remote attackers to obtain screenshots of the windows of arbitrary desktop applications via vectors involving an SVG filter, an IFRAME element, …
|
CWE-200
Information Exposure
|
CVE-2011-2598
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296965
|
- |
|
mozilla
|
gecko
firefox
thunderbird
|
Mozilla Gecko before 5.0, as used in Firefox before 5.0 and Thunderbird before 5.0, does not block use of a cross-domain image as a WebGL texture, which allows remote attackers to obtain approximate …
|
CWE-20
Improper Input Validation
|
CVE-2011-2366
|
2024-11-21 10:28 |
2011-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296966
|
- |
|
reallysimplechat
|
really_simple_chat
|
Cross-site scripting (XSS) vulnerability in chat/base/admin/login.php in A Really Simple Chat (ARSC) 3.3-rc2 allows remote attackers to inject arbitrary web script or HTML via the arsc_message parame…
|
CWE-79
Cross-site Scripting
|
CVE-2011-2470
|
2024-11-21 10:28 |
2011-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296967
|
- |
|
google
apple
|
chrome
iphone_os
itunes
safari
|
Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving SVG use elements.
|
CWE-416
Use After Free
|
CVE-2011-2351
|
2024-11-21 10:28 |
2011-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296968
|
- |
|
google
|
chrome
|
The HTML parser in Google Chrome before 12.0.742.112 does not properly address "lifetime and re-entrancy issues," which allows remote attackers to cause a denial of service or possibly have unspecifi…
|
NVD-CWE-noinfo
|
CVE-2011-2350
|
2024-11-21 10:28 |
2011-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296969
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in Google Chrome before 12.0.742.112 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to text selection.
|
CWE-416
Use After Free
|
CVE-2011-2349
|
2024-11-21 10:28 |
2011-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296970
|
- |
|
google
|
chrome
|
Google V8, as used in Google Chrome before 12.0.742.112, performs an incorrect bounds check, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via u…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2348
|
2024-11-21 10:28 |
2011-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
