May 27th, 2009
by invalid string.
[ GLSA 200905-09 ] libsndfile: User-assisted execution of arbitrary code
<!– Envelope-to: email@address Delivery-date: Wed, 27 May 2009 20:19:31 +0100 Received: from outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M9Oew-0006Yj-QS for email@address; Wed, 27 May 2009 20:19:30 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id 9BD6F236FF8; Wed, 27 May [...]
May 27th, 2009
by invalid string.
[ GLSA 200905-09 ] libsndfile: User-assisted execution of arbitrary code
Posted by Alex Legler on May 27
– – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – Gentoo Linux [...]
May 25th, 2009
by invalid string.
[ GLSA 200905-02 ] Cscope: User-assisted execution of arbitrary code
<!– Envelope-to: email@address Delivery-date: Mon, 25 May 2009 17:03:17 +0100 Received: from outgoing.securityfocus.com ([205.206.231.26] helo=outgoing2.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1M8cdx-0000Fq-BQ for email@address; Mon, 25 May 2009 17:03:17 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing2.securityfocus.com (Postfix) with QMQP id 73F8314425B; Mon, 25 May [...]
May 24th, 2009
by invalid string.
[ GLSA 200905-02 ] Cscope: User-assisted execution of arbitrary code
Posted by Pierre-Yves Rofes on May 24
– – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – Gentoo Linux [...]
Apr 21st, 2009
by invalid string.
CVE-2009-1311 (firefox, seamonkey)
Mozilla Firefox before 3.0.9 and SeaMonkey before 1.1.17 allow user-assisted remote attackers to obtain sensitive information via a web page with an embedded frame, which causes POST data from an outer page to be sent to the inner frame’s URL during a SAVEMODE_FILEONLY save of the inner frame.
URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1311
Apr 21st, 2009
by invalid string.
CVE-2009-1310 (firefox)
Cross-site scripting (XSS) vulnerability in the MozSearch plugin implementation in Mozilla Firefox before 3.0.9 allows user-assisted remote attackers to inject arbitrary web script or HTML via a javascript: URI in the SearchForm element.
URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1310
Apr 20th, 2009
by invalid string.
Bugtraq: [ GLSA 200904-17 ] Adobe Reader: User-assisted execution of arbitrary code
[ GLSA 200904-17 ] Adobe Reader: User-assisted execution of arbitrary code
URL: http://www.securityfocus.com/archive/1/502790
Apr 20th, 2009
by invalid string.
[ GLSA 200904-17 ] Adobe Reader: User-assisted execution of arbitrary code
<!– Envelope-to: email@address Delivery-date: Mon, 20 Apr 2009 15:45:27 +0100 Received: from outgoing.securityfocus.com ([205.206.231.27] helo=outgoing3.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1LvukQ-0004zH-Qo for email@address; Mon, 20 Apr 2009 15:45:26 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing3.securityfocus.com (Postfix) with QMQP id 53F7C237126; Mon, 20 [...]
Apr 18th, 2009
by invalid string.
[ GLSA 200904-17 ] Adobe Reader: User-assisted execution of arbitrary code
Posted by Robert Buchholz on Apr 18
– – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – Gentoo [...]
Apr 17th, 2009
by invalid string.
Bugtraq: [ GLSA 200904-16 ] libsndfile: User-assisted execution of arbitrary code
[ GLSA 200904-16 ] libsndfile: User-assisted execution of arbitrary code
URL: http://www.securityfocus.com/archive/1/502764
Apr 17th, 2009
by invalid string.
[ GLSA 200904-16 ] libsndfile: User-assisted execution of arbitrary code
<!– Envelope-to: email@address Delivery-date: Fri, 17 Apr 2009 20:14:59 +0100 Received: from outgoing.securityfocus.com ([205.206.231.26] helo=outgoing2.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1LutWd-0005B1-Db for email@address; Fri, 17 Apr 2009 20:14:59 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing2.securityfocus.com (Postfix) with QMQP id 0D70A143918; Fri, 17 Apr [...]
Apr 17th, 2009
by invalid string.
[ GLSA 200904-16 ] libsndfile: User-assisted execution of arbitrary code
Posted by Pierre-Yves Rofes on Apr 17
– – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – Gentoo Linux [...]
Apr 17th, 2009
by invalid string.
[ GLSA 200904-15 ] mpg123: User-assisted execution of arbitrary code
<!– Envelope-to: email@address Delivery-date: Fri, 17 Apr 2009 18:32:44 +0100 Received: from outgoing.securityfocus.com ([205.206.231.26] helo=outgoing2.securityfocus.com) by lt.network5.net with esmtp (Exim 4.43) id 1Lurvg-0002n6-5F for email@address; Fri, 17 Apr 2009 18:32:44 +0100 Received: from lists2.securityfocus.com (lists2.securityfocus.com [205.206.231.20]) by outgoing2.securityfocus.com (Postfix) with QMQP id 8467A143A00; Fri, 17 Apr [...]
Apr 16th, 2009
by invalid string.
[ GLSA 200904-15 ] mpg123: User-assisted execution of arbitrary code
Posted by Robert Buchholz on Apr 17
– – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – – Gentoo Linux [...]
Mar 31st, 2009
by invalid string.
CVE-2008-3871 (ultraiso)
Multiple format string vulnerabilities in UltraISO 9.3.1.2633, and possibly other versions before 9.3.3.2685, allow user-assisted attackers to execute arbitrary code via format string specifiers in the filename of a (1) DAA or (2) ISZ file.
URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-3871
