265961
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle redirects, which allows remote attackers to read images from ar…
|
NVD-CWE-Other
|
CVE-2009-1694
|
2011-02-17 15:43 |
2009-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265962
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject arbitrary …
|
CWE-79
Cross-site Scripting
|
CVE-2009-1695
|
2011-02-17 15:43 |
2009-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265963
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 uses predictable random numbers in JavaScript applications, which makes it easier for re…
|
CWE-310
Cryptographic Issues
|
CVE-2009-1696
|
2011-02-17 15:43 |
2009-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265964
|
- |
|
apple
|
safari
|
CRLF injection vulnerability in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to inject HTTP headers and bypas…
|
CWE-20
Improper Input Validation
|
CVE-2009-1697
|
2011-02-17 15:43 |
2009-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265965
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 4.0 does not prevent references to file: URLs within (1) audio and (2) video elements, which allows remote attackers to determine the existence of arbitrary files via a …
|
CWE-200
Information Exposure
|
CVE-2009-1703
|
2011-02-17 15:43 |
2009-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265966
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in Web Inspector in WebKit in Apple Safari before 4.0 allows user-assisted remote attackers to inject arbitrary web script or HTML, and read local files, via …
|
CWE-79
Cross-site Scripting
|
CVE-2009-1715
|
2011-02-17 15:43 |
2009-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265967
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 4.0 allows user-assisted remote attackers to obtain sensitive information via vectors involving drag events and the dragging of content over a crafted web page.
|
CWE-200
Information Exposure
|
CVE-2009-1718
|
2011-02-17 15:43 |
2009-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265968
|
- |
|
realnetworks
|
realplayer realplayer_sp
|
RealNetworks RealPlayer 11.0 through 11.1, RealPlayer SP 1.0 through 1.1.4, RealPlayer Enterprise 2.1.2, and Mac RealPlayer 11.0 through 12.0.0.1444 do not properly parse spectral data in AAC files, …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-0125
|
2011-02-17 14:00 |
2010-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265969
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4093
|
2011-02-17 14:00 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
265970
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 11.5.9.620 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed chunk in a Director file, a different vulnerabilit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-4187
|
2011-02-17 14:00 |
2011-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|