OVAL Definitions - Class: Vulnerability

Filter: Compliance Inventory Patch Vulnerability All
Title Definition Id Class Family
Adobe Flash Player, Acrobat Reader, and Acrobat Remote Code Execution Vulnerability oval:org.mitre.oval:def:6852 Vulnerability windows
Adobe Reader and Acrobat CoolType.dll Font Parsing Buffer Overflow Vulnerability oval:org.mitre.oval:def:11586 Vulnerability windows
Allows remote attackers to bypass the Origin Policy in Google Chrome version less than oval:org.mitre.oval:def:6813 Vulnerability windows
Apple iTunes Crafted itpc: URL Buffer Overflow Vulnerability oval:org.mitre.oval:def:7178 Vulnerability windows
Apple iTunes Crafted itpc: URL Buffer Overflow Vulnerability oval:org.mitre.oval:def:6988 Vulnerability windows
Apple iTunes DLL Loading Arbitrary Code Execution Vulnerability oval:org.mitre.oval:def:7217 Vulnerability windows
Apple iTunes JavaScriptCore Page Transitions Denial Of Service Vulnerability oval:org.mitre.oval:def:7061 Vulnerability windows
Apple iTunes Log File Insecure File Operation Local Privilege Escalation Vulnerability oval:org.mitre.oval:def:7604 Vulnerability windows
Apple iTunes Webkit Unspecified Vulnerability oval:org.mitre.oval:def:7221 Vulnerability windows
Apple Quicktime Picture Viewer DLL Search Path Vulnerability oval:org.mitre.oval:def:6747 Vulnerability windows
Apple Quicktime QTPlugin.ocx ActiveX IPersistPropertyBag2::Read Function _Marshaled_pUnk Memory Corruption oval:org.mitre.oval:def:7523 Vulnerability windows
Apple Safari Search Path Arbitrary Code Execution Vulnerability oval:org.mitre.oval:def:11956 Vulnerability windows
Array index error vulnerability in RealNetworks RealPlayer 11.0 through 11.1 oval:org.mitre.oval:def:6703 Vulnerability windows
Cross-site data leakage issue in Google Chrome version less than or equal to oval:org.mitre.oval:def:11757 Vulnerability windows
Cross-site request forgery in Google Chrome version before oval:org.mitre.oval:def:11140 Vulnerability windows
Cross-site scripting (XSS) vulnerability related to chrome://net-internals [^] URI in Google Chrome version before 4.1.2... oval:org.mitre.oval:def:11244 Vulnerability windows
Cross-site scripting (XSS) vulnerability allows remote attackers in Google Chrome version before oval:org.mitre.oval:def:11418 Vulnerability windows
CSRSS Local Elevation of Privilege Vulnerability oval:org.mitre.oval:def:7536 Vulnerability windows
Denial of service (memory corruption) in Microsoft Indeo codec oval:org.mitre.oval:def:11677 Vulnerability windows
Denial of service found in Google Chrome version before oval:org.mitre.oval:def:11925 Vulnerability windows
Denial of service in Google Chrome before 5.0.375.55 related to the "drag + drop" functionality oval:org.mitre.oval:def:12083 Vulnerability windows
DEPRECATED: Mozilla Multiple Products on Mac OS X data: URL Crafted Font Remote DoS oval:org.mitre.oval:def:11550 Vulnerability windows
Developer tools vulnerability in Google Chrome version before oval:org.mitre.oval:def:12041 Vulnerability windows
Directory Authentication Bypass Vulnerability oval:org.mitre.oval:def:6942 Vulnerability windows
Google Chrome before 5.0.375.55 does not properly follow the Safe Browsing specification's requirements for canonicaliza... oval:org.mitre.oval:def:12113 Vulnerability windows
Google Chrome Counter Node Handling Unspecified Memory Corruption oval:org.mitre.oval:def:11736 Vulnerability windows
Google Chrome Console Implementation Race Condition Unspecified Issue oval:org.mitre.oval:def:7354 Vulnerability windows
Google Chrome Clipboard Copy Restriction Weakness Unspecified Issue oval:org.mitre.oval:def:12052 Vulnerability windows
Google Chrome Document API Parsing Use-after-free DoS oval:org.mitre.oval:def:7462 Vulnerability windows
Google Chrome Extension History Access Prompting Weakness Information Disclosure oval:org.mitre.oval:def:7371 Vulnerability windows
Total number of results : 105
Page : 1 (This Page) 2 3 4

OVAL Definitions By Referenced Objects

How does it work?   User agreement and privacy statement   About & Contact
CVE is a registred trademark of the MITRE Corporation and the authoritive source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritive source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritive source of OVAL content is MITRE's OVAL web site.
Warning: This site and all data are provided as is. It is not guaranteed that all information is accurate and complete. Use any information provided on this site at your own risk. By using this site you accept that you know that these data are provided as is and not guaranteed to be accurate, correct or complete. All trademarks appearing on this site are the property of their respective owners in the US or other countries. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss. PLEASE SEE nvd.nist.gov and oval.mitre.org for more details about OVAL language and definitions.
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor/web site owner/maintainer be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Use of OVAL and all related data is subject to terms of use defined by Mitre at http://oval.mitre.org/oval/about/termsofuse.html