|
306431
|
- |
|
google
|
chrome
|
Google Chrome before 14.0.835.202 does not properly consider object lifetimes and thread safety during the handling of audio nodes, which allows remote attackers to cause a denial of service or possi…
|
NVD-CWE-Other
|
CVE-2011-2879
|
2024-11-21 10:29 |
2011-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306432
|
- |
|
google
|
chrome
|
Google Chrome before 14.0.835.202 does not properly restrict access to the window prototype, which allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2011-2878
|
2024-11-21 10:29 |
2011-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306433
|
- |
|
google
apple
|
chrome
iphone_os
itunes
safari
|
Google Chrome before 14.0.835.202 does not properly handle SVG text, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead…
|
NVD-CWE-Other
|
CVE-2011-2877
|
2024-11-21 10:29 |
2011-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306434
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in Google Chrome before 14.0.835.202 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a text line box.
|
CWE-416
Use After Free
|
CVE-2011-2876
|
2024-11-21 10:29 |
2011-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306435
|
- |
|
vmware
|
spring_security
spring_framework
|
Spring Framework 3.0.0 through 3.0.5, Spring Security 3.0.0 through 3.0.5 and 2.0.0 through 2.0.6, and possibly other versions deserialize objects from untrusted sources, which allows remote attacker…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2011-2894
|
2024-11-21 10:29 |
2011-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306436
|
- |
|
twiki
|
twiki
|
Multiple cross-site scripting (XSS) vulnerabilities in TWiki before 5.1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the newtopic parameter in a WebCreateNewTopic action, r…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3010
|
2024-11-21 10:29 |
2011-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306437
|
- |
|
mozilla
|
firefox
|
Integer underflow in Mozilla Firefox 3.6.x before 3.6.23 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via JavaScript code containing a l…
|
CWE-189
Numeric Errors
|
CVE-2011-2998
|
2024-11-21 10:29 |
2011-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306438
|
- |
|
mozilla
|
firefox
thunderbird
seamonkey
|
Use-after-free vulnerability in Mozilla Firefox 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 allows remote attackers to cause a denial of service (application crash) or possibly ex…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3005
|
2024-11-21 10:29 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306439
|
- |
|
mozilla
|
firefox
seamonkey
|
The JSSubScriptLoader in Mozilla Firefox 4.x through 6 and SeaMonkey before 2.4 does not properly handle XPCNativeWrappers during calls to the loadSubScript method in an add-on, which makes it easier…
|
CWE-20
Improper Input Validation
|
CVE-2011-3004
|
2024-11-21 10:29 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306440
|
- |
|
mozilla
|
firefox
seamonkey
|
Mozilla Firefox before 7.0 and SeaMonkey before 2.4 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an unspecified WebGL test case that …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3003
|
2024-11-21 10:29 |
2011-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
