REPORT: CISO Guide to Web 2.0 Security
Get a fundamental checklist for securing
your company’s Web 2.0 Environment.
Download Now
Get a fundamental checklist for securing
your company’s Web 2.0 Environment.
Download Now
WHITE PAPER: Combating Modern Threats
Discover 5 strategies for preparing for and
dealing with modern security threats.
Download Now
Discover 5 strategies for preparing for and
dealing with modern security threats.
Download Now
REPORT: Integrated Security Services
Get the best "suite" for your business, and
your budget. But also, be cautious!
Get the Report Today
Get the best "suite" for your business, and
your budget. But also, be cautious!
Get the Report Today
Tech Centers
Court Orders Spammers To Give Up $3.7 Million
Security Guard Busted For Hacking Hospital's HVAC, Patient Information Computers
OWASP: Security Spending Remains Mostly Unchanged With Cloud Computing
MORE KEYHOLE
ENTERPRISE VULNERABILITIES
Vulnerability:foxit reader, jpeg2000/jbig2 decoder add-on
Published:2009-06-23
Severity:High
Description:The Foxit JPEG2000/JBIG2 Decoder add-on before 2.0.2009.616 for Foxit Reader 3.0 before Build 1817 does not properly handle a negative value for the stream offset in a JPEG2000 (aka JPX) stream, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted PDF file that triggers an out-of-bounds read.
Published:2009-06-23
Severity:High
Description:The Foxit JPEG2000/JBIG2 Decoder add-on before 2.0.2009.616 for Foxit Reader 3.0 before Build 1817 does not properly handle a negative value for the stream offset in a JPEG2000 (aka JPX) stream, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted PDF file that triggers an out-of-bounds read.
Vulnerability:foxit reader, jpeg2000 jbig2 decoder add-on
Published:2009-06-23
Severity:High
Description:The Foxit JPEG2000/JBIG2 Decoder add-on before 2.0.2009.616 for Foxit Reader 3.0 before Build 1817 does not properly handle a fatal error during decoding of a JPEG2000 (aka JPX) header, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted PDF file that triggers an invalid memory access.
Published:2009-06-23
Severity:High
Description:The Foxit JPEG2000/JBIG2 Decoder add-on before 2.0.2009.616 for Foxit Reader 3.0 before Build 1817 does not properly handle a fatal error during decoding of a JPEG2000 (aka JPX) header, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted PDF file that triggers an invalid memory access.
Vulnerability:chrome
Published:2009-06-23
Severity:High
Description:Buffer overflow in the browser kernel in Google Chrome before 2.0.172.33 allows remote HTTP servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted response.
Published:2009-06-23
Severity:High
Description:Buffer overflow in the browser kernel in Google Chrome before 2.0.172.33 allows remote HTTP servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted response.
Vulnerability:radio and tv player addon for vbulletin
Published:2009-06-23
Severity:Medium
Description:Cross-site scripting (XSS) vulnerability in forum/radioandtv.php in the Radio and TV Player addon for vBulletin allows remote registered users to inject arbitrary web script or HTML via the station parameter.
Published:2009-06-23
Severity:Medium
Description:Cross-site scripting (XSS) vulnerability in forum/radioandtv.php in the Radio and TV Player addon for vBulletin allows remote registered users to inject arbitrary web script or HTML via the station parameter.
Vulnerability:carom3d
Published:2009-06-23
Severity:Low
Description:The LAN game feature in Carom3D 5.06 allows remote authenticated users to cause a denial of service (application hang) via a crafted HTTP request to TCP port 28012.
Published:2009-06-23
Severity:Low
Description:The LAN game feature in Carom3D 5.06 allows remote authenticated users to cause a denial of service (application hang) via a crafted HTTP request to TCP port 28012.
|
