Vulnerability & Exploit Database

Displaying entries 1 - 10 of 11 in total

Results for: CVE-2011-1440 Back to search

Cent OS: CVE-2011-4347: CESA-2012:0350 (kernel) Vulnerability

  • Severity: 4
  • Published: June 08, 2013

The kvm_vm_ioctl_assign_device function in virt/kvm/assigned-dev.c in the KVM subsystem in the Linux kernel before 3.1.10 does not verify permission to access PCI configuration space and BAR resources, which allows host OS users to assign PCI devices and cause a denial of service (host OS crash) via a KVM_ASSIGN_PCI_DEVICE operation.

Cent OS: CVE-2011-4086: CESA-2012:0571 (kernel) Vulnerability

  • Severity: 5
  • Published: July 03, 2012

The journal_unmap_buffer function in fs/jbd2/transaction.c in the Linux kernel before 3.3.1 does not properly handle the _Delay and _Unwritten buffer head states, which allows local users to cause a denial of service (system crash) by leveraging the presence of an ext4 filesystem that was mounted with a journal.

USN-1440-1: Linux kernel (Natty backport) vulnerabilities Vulnerability

  • Severity: 10
  • Published: May 17, 2012

The mem_cgroup_usage_unregister_event function in mm/memcontrol.c in the Linux kernel before 3.2.10 does not properly handle multiple events that are attached to the same eventfd, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by registering memo...

RHSA-2011:1440: seamonkey security update Vulnerability

  • Severity: 4
  • Published: November 09, 2011

SeaMonkey is an open source web browser, email and newsgroup client, IRCchat client, and HTML editor.A cross-site scripting (XSS) flaw was found in the way SeaMonkey handledcertain multibyte character sets. A web page containing malicious contentcould cause SeaMonkey to run JavaScript code with the permissions of adifferent website. (CVE...

Cent OS: CVE-2011-3648: CESA-2011:1440 (seamonkey) Vulnerability

  • Severity: 4
  • Published: November 09, 2011

Cross-site scripting (XSS) vulnerability in Mozilla Firefox before 3.6.24 and 4.x through 7.0 and Thunderbird before 3.1.6 and 5.0 through 7.0 allows remote attackers to inject arbitrary web script or HTML via crafted text with Shift JIS encoding.

Google Chrome Vulnerability: CVE-2011-1440 Vulnerability

  • Severity: 8
  • Published: May 03, 2011

Use-after-free vulnerability in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the ruby element and Cascading Style Sheets (CSS) token sequences.

Apple Safari security update for CVE-2011-1440 Vulnerability

  • Severity: 8
  • Published: May 03, 2011

Use-after-free vulnerability in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the ruby element and Cascading Style Sheets (CSS) token sequences.

Apple iTunes security update for CVE-2011-1440 Vulnerability

  • Severity: 8
  • Published: May 03, 2011

Use-after-free vulnerability in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the ruby element and Cascading Style Sheets (CSS) token sequences.

SUSE Linux Security Advisory: SUSE-SR:2010:013 Vulnerability

  • Severity: 10
  • Published: April 05, 2010

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 3.0.19, 3.5.x before 3.5.9, and 3.6.x before 3.6.2; Thunderbird before 3.0.4; and SeaMonkey before 2.0.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors....