Skip to main content

Security Bulletin

Filter by:

RISK: Medium Risk

Medium Risk

Microsoft Windows DHTML Editing Component ActiveX Control Vulnerability( 09 September 2009 )

A remote code execution vulnerability exists in the DHTML Editing Component ActiveX Control. An attacker could exploit the vulnerability by constructing a specially crafted Web page. When a user views the Web page, the vulnerability could allow remote code execution. An attacker who successfully exploited this...
Last Update Date: 28 Jan 2011 Release Date: 9 Sep 2009 5363 Views

RISK: Medium Risk

Medium Risk

VMware Workstation Movie Decoder VMnc Codec Vulnerabilities

Two vulnerabilities have been identified in VMware Workstation Movie Decoder, which could be exploited by attackers to potentially compromise a vulnerable system.1. A heap overflow error in the VMnc codec (vmnc.dll) when processing a video file with mismatched dimensions, which could...
Last Update Date: 28 Jan 2011 Release Date: 8 Sep 2009 5444 Views

RISK: Medium Risk

Medium Risk

Apple Mac OS X Java Multiple Vulnerabilities

Multiple vulnerabilities have been identified in Apple Mac OS X, which could be exploited by attackers to bypass security restrictions, disclose sensitive information, cause a denial of service, or compromise an affected system.A stack overflow error in Java Web Start command launcher when handling...
Last Update Date: 28 Jan 2011 Release Date: 7 Sep 2009 5332 Views

RISK: Medium Risk

Medium Risk

Novell iPrint Client Unspecified Buffer Overflow Vulnerability

A vulnerability has been identified in Novell iPrint Client, which could be exploited by attackers to compromisean affected system.The vulnerability is caused due to an unspecified error and can be exploited to cause a buffer overflow.
Last Update Date: 28 Jan 2011 Release Date: 7 Sep 2009 5377 Views

RISK: Medium Risk

Medium Risk

OpenOffice.org Documents Parsing Code Execution Vulnerabilities

Multiple vulnerabilities have been identified in OpenOffice.org, which could be exploited by attackers to compromise a vulnerable system.1. Due to an integer underflow error when parsing certain records in a Word document table, which could allow attackers to crash an affected application or...
Last Update Date: 28 Jan 2011 Release Date: 2 Sep 2009 5360 Views

RISK: Medium Risk

Medium Risk

Google Chrome V8 Javascript Engine Memory Read Vulnerability

A vulnerability has been identified in Google Chrome, which could be exploited by attackers to compromise a vulnerable system. This issue is caused by an error in the V8 Javascript engine, which may allow a specially crafted web page to read unauthorized memory, bypassing security checks...
Last Update Date: 28 Jan 2011 Release Date: 27 Aug 2009 5460 Views

RISK: Medium Risk

Medium Risk

Symantec Products KeyView XLS Handling Integer Overflow Vulnerability

A vulnerability has been identified in various Symantec products, which could be exploited by attackers to compromise a vulnerable system. This issue is caused by an integer overflow error in the Autonomy KeyView Viewer for Excel (xlssr.dll) when processing XLS documents containing a malformed...
Last Update Date: 28 Jan 2011 Release Date: 27 Aug 2009 5593 Views

RISK: Medium Risk

Medium Risk

IBM Lotus Notes File Viewer for Excel Code Execution Vulnerability

A vulnerability has been identified in IBM Lotus Notes, which could be exploited by attackers to compromise a vulnerable system. This issue is caused by a buffer overflow error in the File Viewer for Excel (xlssr.dll) when processing a malformed XLS document, which...
Last Update Date: 28 Jan 2011 Release Date: 26 Aug 2009 5409 Views

RISK: Medium Risk

Medium Risk

Apple Safari Code Execution and Security Bypass Vulnerabilities

Multiple vulnerabilities have been identified in Apple Safari, which could be exploited by attackers to disclose sensitive information, bypass security restrictions, cause a denial of service or compromise an affected system.1. A heap overflow error in CoreGraphics in the drawing of long text strings...
Last Update Date: 28 Jan 2011 Release Date: 13 Aug 2009 5481 Views

RISK: Medium Risk

Medium Risk

Microsoft Windows WINS Multiple Vulnerabilities( 12 August 2009 )

1. WINS Heap Overflow VulnerabilityA remote code execution vulnerability exists in the Windows Internet Name Service (WINS) due to a buffer overflow caused by incorrect calculation of buffer length when processing specially crafted WINS network packets. An attacker who successfully exploited this vulnerability could take complete...
Last Update Date: 28 Jan 2011 Release Date: 12 Aug 2009 5201 Views