English | Deutsch | Español | Português
 Benutzerkennung:
 Passwort:
Registrieren
 About:   Dediziert  | Erweitert  | Standard  | Wiederkehrend  | Risikolos  | Desktop  | Basis  | Einmalig  | Sicherheits Siegel  | FAQ
  Preis/Funktionszusammenfassung  | Bestellen  | Neue Anfälligkeiten  | Vertraulichkeit  | Anfälligkeiten Suche
 Anfälligkeitssuche        Suche in 75096 CVE Beschreibungen
und 39644 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.68513
Kategorie:FreeBSD Local Security Checks
Titel:FreeBSD Ports: webkit-gtk2
Zusammenfassung:FreeBSD Ports: webkit-gtk2
Beschreibung:The remote host is missing an update to the system
as announced in the referenced advisory.

The following package is affected: webkit-gtk2

CVE-2010-1780
Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on
Mac OS X 10.5 through 10.6 and Windows, and before 4.1.1 on Mac OS X
10.4, allows remote attackers to execute arbitrary code or cause a
denial of service (application crash) via vectors related to element
focus.

CVE-2010-1807
WebKit in Apple Safari 4.x before 4.1.2 and 5.x before 5.0.2, and
Android before 2.2, does not properly validate floating-point data,
which allows remote attackers to execute arbitrary code or cause a
denial of service (application crash) via a crafted HTML document.

CVE-2010-1812
Use-after-free vulnerability in WebKit in Apple iOS before 4.1 on the
iPhone and iPod touch allows remote attackers to execute arbitrary
code or cause a denial of service (application crash) via vectors
involving selections.

CVE-2010-1814
WebKit in Apple iOS before 4.1 on the iPhone and iPod touch allows
remote attackers to execute arbitrary code or cause a denial of
service (memory corruption and application crash) via vectors
involving form menus.

CVE-2010-1815
Use-after-free vulnerability in WebKit in Apple iOS before 4.1 on the
iPhone and iPod touch allows remote attackers to execute arbitrary
code or cause a denial of service (application crash) via vectors
involving scrollbars.

CVE-2010-3113
Google Chrome before 5.0.375.127 does not properly handle SVG
documents, which allows remote attackers to cause a denial of service
(memory corruption) or possibly have unspecified other impact via
unknown vectors.

CVE-2010-3114
The text-editing implementation in Google Chrome before 5.0.375.127
does not properly perform casts, which has unspecified impact and
attack vectors.

CVE-2010-3115
Google Chrome before 5.0.375.127 does not properly implement the
history feature, which might allow remote attackers to spoof the
address bar via unspecified vectors.

CVE-2010-3116
Google Chrome before 5.0.375.127 does not properly process MIME types,
which allows remote attackers to cause a denial of service (memory
corruption) or possibly have unspecified other impact via unknown
vectors.

CVE-2010-3257
Google Chrome before 6.0.472.53 does not properly perform focus
handling, which allows remote attackers to cause a denial of service
or possibly have unspecified other impact via unknown vectors, related
to a 'stale pointer' issue.

CVE-2010-3259
Google Chrome before 6.0.472.53 does not properly restrict read access
to images, which allows remote attackers to bypass the Same Origin
Policy and obtain potentially sensitive information via unspecified
vectors.

Solution:
Update your system with the appropriate patches or
software upgrades.

http://gitorious.org/webkitgtk/stable/blobs/master/WebKit/gtk/NEWS
http://www.vuxml.org/freebsd/e5090d2a-dbbe-11df-82f8-0015f2db7bde.html
Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2010-1780
http://lists.apple.com/archives/security-announce/2010//Jul/msg00001.html
http://lists.apple.com/archives/security-announce/2010//Sep/msg00002.html
http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html
http://www.mandriva.com/security/advisories?name=MDVSA-2011:039
http://www.redhat.com/support/errata/RHSA-2011-0177.html
SuSE Security Announcement: SUSE-SR:2011:002 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
http://www.ubuntu.com/usn/USN-1006-1
BugTraq ID: 42020
http://www.securityfocus.com/bid/42020
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10964
http://secunia.com/advisories/41856
http://secunia.com/advisories/42314
http://secunia.com/advisories/43068
http://secunia.com/advisories/43086
http://www.vupen.com/english/advisories/2010/2722
http://www.vupen.com/english/advisories/2011/0212
http://www.vupen.com/english/advisories/2011/0216
http://www.vupen.com/english/advisories/2011/0552
Common Vulnerability Exposure (CVE) ID: CVE-2010-1807
http://www.computerworld.com/s/article/9195058/Researcher_to_release_Web_based_Android_attack
http://lists.apple.com/archives/security-announce/2010//Sep/msg00001.html
BugTraq ID: 43047
http://www.securityfocus.com/bid/43047
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11964
http://www.vupen.com/english/advisories/2010/3046
Common Vulnerability Exposure (CVE) ID: CVE-2010-1812
http://lists.apple.com/archives/security-announce/2010//Nov/msg00002.html
BugTraq ID: 43079
http://www.securityfocus.com/bid/43079
XForce ISS Database: appleios-selections-code-exec(61699)
http://xforce.iss.net/xforce/xfdb/61699
Common Vulnerability Exposure (CVE) ID: CVE-2010-1814
BugTraq ID: 43083
http://www.securityfocus.com/bid/43083
XForce ISS Database: appleios-formmenus-code-exec(61701)
http://xforce.iss.net/xforce/xfdb/61701
Common Vulnerability Exposure (CVE) ID: CVE-2010-1815
BugTraq ID: 43081
http://www.securityfocus.com/bid/43081
XForce ISS Database: appleios-scrollbars-code-exec(61702)
http://xforce.iss.net/xforce/xfdb/61702
Common Vulnerability Exposure (CVE) ID: CVE-2010-3113
BugTraq ID: 44199
http://www.securityfocus.com/bid/44199
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11901
Common Vulnerability Exposure (CVE) ID: CVE-2010-3114
BugTraq ID: 44201
http://www.securityfocus.com/bid/44201
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11577
Common Vulnerability Exposure (CVE) ID: CVE-2010-3115
BugTraq ID: 44203
http://www.securityfocus.com/bid/44203
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11953
Common Vulnerability Exposure (CVE) ID: CVE-2010-3116
BugTraq ID: 44200
http://www.securityfocus.com/bid/44200
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11909
Common Vulnerability Exposure (CVE) ID: CVE-2010-3257
BugTraq ID: 44204
http://www.securityfocus.com/bid/44204
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:12138
Common Vulnerability Exposure (CVE) ID: CVE-2010-3259
BugTraq ID: 44206
http://www.securityfocus.com/bid/44206
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11221
CopyrightCopyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 39644 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Registrierung eines neuen Benutzers
Email:
Benutzerkennung:
Passwort:
Bitte schicken Sie mir den monatlichen Newsletter, der mich über die neuesten Services, Verbesserungen und Umfragen informiert.
Bitte schicken Sie mir eine Anfälligkeitstest Benachrichtigung, wenn ein neuer Test hinzugefügt wird.
   Datenschutz
Anmeldung für registrierte Benutzer
 
Benutzerkennung:   
Passwort:  

 Benutzerkennung oder Passwort vergessen?
Email/Benutzerkennung:




Startseite | Über uns | Kontakt | Partnerprogramme | Datenschutz | Mailinglisten | Missbrauch
Sicherheits Überprüfungen | Verwaltete DNS | Netzwerk Überwachung | Webseiten Analysator | Internet Recherche Berichte
Web Sonde | Whois

© 1998-2014 E-Soft Inc. Alle Rechte vorbehalten.