what you don't know can hurt you
Showing 1 - 1 of 1 RSS Feed

Files

Zero Day Initiative Advisory 10-204
Posted Oct 13, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-204 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle's Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the implementation of the color profile parser. When processing a the 'devs' tag structure out of a color profile, the parser will read a 32-bit integer and use it to calculate the size for a memory allocation. Due to the result being larger than 32 bits, an integer overflow will occur. This will lead to code execution under the context of the application.

tags | advisory, java, remote, overflow, arbitrary, code execution
advisories | CVE-2010-3566
MD5 | 6d728e2e5b79112cf8f720b93c75e93d
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Ethereum Smart Contracts Exploitation Using Right-To-Left Override Character
Posted May 23, 2019

tags | headline, flaw, cryptography
Mozilla Patches 24 Firefox Vulnerabilities
Posted May 23, 2019

tags | headline, flaw, patch, mozilla, firefox
Would You Pay $1 Million For A Laptop Full Of Malware?
Posted May 23, 2019

tags | headline, malware
Why A Windows Flaw Patched 9 Days Ago Is Still Spooking The Internet
Posted May 23, 2019

tags | headline, microsoft, flaw, patch
UK Says It Warned 16 NATO Allies Of Russian Hacking Activities
Posted May 23, 2019

tags | headline, hacker, government, britain, russia, fraud, cyberwar
Millions Of Golfers Land In Privacy Hazard After Cloud Misconfig
Posted May 22, 2019

tags | headline, privacy, data loss
Team Viewer Hit By Chinese Hackers In 2016
Posted May 22, 2019

tags | headline, hacker, privacy, china, data loss
Huawei Faces Break With UK Chip Giant ARM
Posted May 22, 2019

tags | headline, government, china, spyware, backdoor
Google G Suite Glitch Left Some Passwords Stored In Plain Text For 14 Years
Posted May 22, 2019

tags | headline, flaw, google, password
Unsecure Chtrbox AWS Database Exposes Data On 49 Million Instagram Influencers, Accounts
Posted May 21, 2019

tags | headline, privacy, amazon, data loss, facebook
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close