Vulnerability & Exploit Database

Displaying entries 1 - 10 of 44 in total

Results for: CVE-2012-0880 Back to search

SUSE Linux Security Advisory: SUSE-SU-2014:1100-1 Vulnerability

  • Severity: 10
  • Published: September 03, 2014

Use-after-free vulnerability in the mozilla::DOMSVGLength::GetTearOff function in Mozilla Firefox before 32.0, Firefox ESR 31.x before 31.1, and Thunderbird 31.x before 31.1 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via an SVG animation with DOM interaction that triggers incor...

Cent OS: CVE-2010-5076: CESA-2012:0880 (qt) Vulnerability

  • Severity: 4
  • Published: June 29, 2012

QSslSocket in Qt before 4.7.0-rc1 recognizes a wildcard IP address in the subject's Common Name field of an X.509 certificate, which might allow man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority.

USN-1504-1: Qt vulnerabilities Vulnerability

  • Severity: 9
  • Published: June 15, 2012

Buffer overflow in the TIFF reader in gui/image/qtiffhandler.cpp in Qt 4.7.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the TIFFTAG_SAMPLESPERPIXEL tag in a greyscale TIFF image with multiple samples per pixel.

RHSA-2012:0880: qt security and bug fix update Vulnerability

  • Severity: 8
  • Published: January 07, 2012

Qt is a software toolkit that simplifies the task of writing andmaintaining GUI (Graphical User Interface) applications for the X WindowSystem. HarfBuzz is an OpenType text shaping engine.A buffer overflow flaw was found in the harfbuzz module in Qt. If a userloaded a specially-crafted font file with an application linked against Qt,it c...

SUSE Linux Security Advisory: SUSE-SR:2011:008 Vulnerability

  • Severity: 10
  • Published: February 17, 2011

Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Sound and unspecified APIs.

SUSE Linux Security Advisory: SUSE-SR:2011:003 Vulnerability

  • Severity: 9
  • Published: January 31, 2011

Integer truncation error in opera.dll in Opera before 11.01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTML form with a select element that contains a large number of children.

SUSE Linux Security Advisory: SUSE-SR:2010:024 Vulnerability

  • Severity: 10
  • Published: December 21, 2010

The default configuration of Opera before 11.00 enables WebSockets functionality, which has unspecified impact and remote attack vectors, possibly a related issue to CVE-2010-4508.

Sun Patch: SunOS 5.10: ssh scp patch Vulnerability

  • Severity: 6
  • Published: September 16, 2010

The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services (IIS) 7.0, mod_ssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla Network Security Services (NSS) 3.12.4 and earlier, multiple Cisco products, and other products, does...

SUSE Linux Security Advisory: SUSE-SR:2010:015 Vulnerability

  • Severity: 10
  • Published: August 19, 2010

loader/DocumentThreadableLoader.cpp in the XMLHttpRequest implementation in WebCore in WebKit before r58409 does not properly handle credentials during a cross-origin synchronous request, which has unspecified impact and remote attack vectors, aka rdar problem 7905150.