OVAL Definitions - Class: Vulnerability Family: windows

Filter: Compliance Inventory Patch Vulnerability All
Title Definition Id Class Family
The drag-and-drop implementation in Google Chrome before 21.0.1180.57 on Mac OS X and Linux, and before 21.0.1180.60 on ... oval:org.mitre.oval:def:15658 Vulnerability windows
The drag-and-drop implementation in Mozilla Firefox 4.x through 13.0 and Firefox ESR 10.x before 10.0.6 allows remote at... oval:org.mitre.oval:def:16970 Vulnerability windows
The DRDA Services component in IBM DB2 UDB 9.5 before FP6a allows remote authenticated users to cause a denial of servic... oval:org.mitre.oval:def:14219 Vulnerability windows
The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before ... oval:org.mitre.oval:def:16672 Vulnerability windows
The ElementAnimations::EnsureStyleRuleFor function in Mozilla Firefox 4.x through 13.0, Firefox ESR 10.x before 10.0.6, ... oval:org.mitre.oval:def:16894 Vulnerability windows
The Engine Utilities component in IBM DB2 UDB 9.5 before FP6a uses world-writable permissions for the sqllib/cfg/db2sprf... oval:org.mitre.oval:def:14707 Vulnerability windows
The evalInSandbox implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.... oval:org.mitre.oval:def:15995 Vulnerability windows
The event-management implementation in Mozilla Firefox before 3.6.20, SeaMonkey 2.x, Thunderbird 3.x before 3.1.12, and ... oval:org.mitre.oval:def:14512 Vulnerability windows
The extension functionality in Google Chrome before 26.0.1410.43 does not verify that use of the permissions API is cons... oval:org.mitre.oval:def:16674 Vulnerability windows
The extension implementation in Google Chrome before 17.0.963.46 does not properly handle sandboxed origins, which might... oval:org.mitre.oval:def:14906 Vulnerability windows
The extension system in Google Chrome before 22.0.1229.79 does not properly handle modal dialogs oval:org.mitre.oval:def:15857 Vulnerability windows
The extensions implementation in Google Chrome before 13.0.782.107 does not properly validate the URL for the home page,... oval:org.mitre.oval:def:14298 Vulnerability windows
The FCSP dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of ... oval:org.mitre.oval:def:16529 Vulnerability windows
The file-download implementation in Mozilla Firefox before 27.0 and SeaMonkey before 2.24 does not properly restrict the... oval:org.mitre.oval:def:23990 Vulnerability windows
The FilePath::ReferencesParent function in files/file_path.cc in Google Chrome before 29.0.1547.57 on Windows does not p... oval:org.mitre.oval:def:18381 Vulnerability windows
The Firefox sandbox in Adobe Flash Player before 10.3.183.67 and 11.x before 11.6.602.171 on Windows does not properly r... oval:org.mitre.oval:def:20081 Vulnerability windows
The Flash plug-in in Google Chrome before 27.0.1453.116 does not properly determine whether a user wishes to permit came... oval:org.mitre.oval:def:16693 Vulnerability windows
The format-number functionality in the XSLT implementation in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.... oval:org.mitre.oval:def:16234 Vulnerability windows
The fragment_set_tot_len function in epan/reassemble.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not ... oval:org.mitre.oval:def:16048 Vulnerability windows
The FrameLoader::notifyIfInitialDocumentAccessed function in core/loader/FrameLoader.cpp in Blink, as used in Google Chr... oval:org.mitre.oval:def:20552 Vulnerability windows
The getUserMedia permission implementation in Mozilla Firefox before 22.0 references the URL of a top-level document ins... oval:org.mitre.oval:def:16791 Vulnerability windows
The get_dht function in jdmarker.c in libjpeg-turbo through 1.3.0, as used in Google Chrome before 31.0.1650.48 and othe... oval:org.mitre.oval:def:21152 Vulnerability windows
The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo through 1.3.0, as used in Google Chrome befor... oval:org.mitre.oval:def:21236 Vulnerability windows
The gfxSkipCharsIterator::SetOffsets function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbir... oval:org.mitre.oval:def:16979 Vulnerability windows
The glBufferData function in the WebGL implementation in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.... oval:org.mitre.oval:def:16912 Vulnerability windows
The gPluginHandler.handleEvent function in the plugin handler in Mozilla Firefox before 18.0, Firefox ESR 17.x before 17... oval:org.mitre.oval:def:16866 Vulnerability windows
The g_markup_escape_text function in the SILC protocol plug-in in libpurple 2.10.0 and earlier, as used in Pidgin and po... oval:org.mitre.oval:def:18034 Vulnerability windows
The HTML parser in Google Chrome before 12.0.742.112 does not properly address "lifetime and re-entrancy issues," which ... oval:org.mitre.oval:def:14479 Vulnerability windows
The HTTPS implementation in Google Chrome before 28.0.1500.71 does not ensure that headers are terminated by \r\n\r\n (c... oval:org.mitre.oval:def:17033 Vulnerability windows
The http_payload_subdissector function in epan/dissectors/packet-http.c in the HTTP dissector in Wireshark 1.6.x before ... oval:org.mitre.oval:def:16820 Vulnerability windows
Total number of results : 7592
Page : 1 11 21 31 41 51 61 71 81 91 101 111 121 131 141 151 154 155 156 157 158 159 160 161 162 163 (This Page) 164 165 166 167 168 169 170 171 172 173 174 181 191 201 211 221 231 241 251

OVAL Definitions By Referenced Objects

How does it work?   User agreement and privacy statement   About & Contact
CVE is a registred trademark of the MITRE Corporation and the authoritive source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritive source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritive source of OVAL content is MITRE's OVAL web site.
Warning: This site and all data are provided as is. It is not guaranteed that all information is accurate and complete. Use any information provided on this site at your own risk. By using this site you accept that you know that these data are provided as is and not guaranteed to be accurate, correct or complete. All trademarks appearing on this site are the property of their respective owners in the US or other countries. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss. PLEASE SEE nvd.nist.gov and oval.mitre.org for more details about OVAL language and definitions.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor/web site owner/maintainer be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Use of OVAL and all related data is subject to terms of use defined by Mitre at http://oval.mitre.org/oval/about/termsofuse.html