The OVAL Repository5.62009-11-20T04:32:04.846-05:00WebKit in Apple Safari Multiple Unspecified Vulnerabilities.Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2008Apple SafariMultiple unspecified vulnerabilities in WebKit in Apple Safari before 4.0.4 on Windows allow remote FTP servers to execute arbitrary code, cause a denial of service (application crash), or obtain sensitive information via a crafted directory listing in a reply.Sharath SDRAFTDRAFTApple Safari Local HTML Files Information Disclosure Vulnerability.Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2008Apple SafariApple Safari before 4.0.4 does not properly implement certain (1) Open Image and (2) Open Link menu options, which allows remote attackers to read local HTML files via a crafted web site.Sharath SDRAFTDRAFTOPTIONS Request in WebKit in Apple Safari Cross-Site Request Forgery (CSRF) Vulnerability.Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2008Apple SafariWebKit in Apple Safari before 4.0.4 includes certain custom HTTP headers in the OPTIONS request during cross-origin operations with preflight, which makes it easier for remote attackers to conduct cross-site request forgery (CSRF) attacks via a crafted web page.Sharath SDRAFTDRAFTWebKit in Apple Safari Numeric Character References Remote Memory Corruption Vulnerability.Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2008Apple SafariApple Safari 4.0.3 does not properly block javascript: and data: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header that contains a javascript: URI, (2) entering a javascript: URI when specifying the content of a Refresh header, (3) injecting a Refresh header that contains JavaScript sequences in a data:text/html URI, or (4) entering a data:text/html URI with JavaScript sequences when specifying the content of a Refresh header.Sharath SDRAFTDRAFTApple Safari is installedMicrosoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2008Apple SafariThe operating system having Apple Safari installation.Sharath SDRAFTDRAFTWireshak Denial of Service vulnerability caused by packet-paltalk.c in the Paltalk dissectorMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Wiresharkpacket-paltalk.c in the Paltalk dissector in Wireshark 1.2.0 through 1.2.2, on SPARC and certain other platforms, allows remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace."Prabhu S ADRAFTDRAFTWireshark DoS Vulnerability due to the DCERPC/NT dissectorMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7WiresharkThe DCERPC/NT dissector in Wireshark 0.10.10 through 1.0.9 and 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a file that records a malformed packet trace. NOTE: some of these details are obtained from third party information."Prabhu S ADRAFTDRAFTWireshark Off-by-one error in the dissect_negprot_response function in packet-smb.c in the SMB dissector to cause DoS VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7WiresharkOff-by-one error in the dissect_negprot_response function in packet-smb.c in the SMB dissector in Wireshark 1.2.0 through 1.2.2 allows remote attackers to cause a denial of service (application crash) via a file that records a malformed packet trace. NOTE: some of these details are obtained from third party information."Prabhu S ADRAFTDRAFTWireshark Integer overflow vulnerability in wiretap/erf.cMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7WiresharkInteger overflow in wiretap/erf.c in Wireshark before 1.2.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted erf file, related to an "unsigned integer wrap vulnerability."Prabhu S ADRAFTDRAFTWireshark is intalled on the system.Microsoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7WiresharkWireshark is installed on the system.Prabhu S ADRAFTDRAFTMicrosoft Windows 2000 is installedMicrosoft Windows 2000The operating system installed on the system is Microsoft Windows 2000.Andrew ButtnerACCEPTEDJonathan BakerINTERIMACCEPTEDAndrew ButtnerINTERIMACCEPTEDACCEPTEDMicrosoft Office Word File Information Memory Corruption VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows Server 2008Microsoft Windows 7Microsoft Word 2002Microsoft Word 2003Microsoft Office Word Viewer 2003** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.Dragos PrisacaDRAFTDRAFTMicrosoft Word 2002 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Word 2002The application Microsoft Word 2002 is installed.Robert L. HollisDRAFTINTERIMACCEPTEDBrendan MilesINTERIMACCEPTEDACCEPTEDMicrosoft Word Viewer is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003The application Microsoft Word Viewer is installed.Robert L. HollisDRAFTINTERIMACCEPTEDACCEPTEDMicrosoft Word 2003 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003The application Microsoft Word 2003 is installed.Robert L. HollisINTERIMACCEPTEDJonathan BakerINTERIMACCEPTEDACCEPTEDExcel Field Sanitization VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows Server 2008Microsoft Windows 7Microsoft Excel 2002Microsoft Excel 2003Microsoft Excel 2007Microsoft Office Excel Viewer 2003Microsoft Office Excel ViewerMicrosoft Office Compatibility Pack** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.Dragos PrisacaDRAFTDRAFTExcel Index Parsing VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows Server 2008Microsoft Windows 7Microsoft Excel 2002Microsoft Excel 2003Microsoft Excel 2007Microsoft Office Excel Viewer 2003Microsoft Office Excel ViewerMicrosoft Office Compatibility Pack** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.Dragos PrisacaDRAFTDRAFTExcel Featheader Record Memory Corruption VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows Server 2008Microsoft Windows 7Microsoft Excel 2002Microsoft Excel 2003Microsoft Excel 2007Microsoft Office Excel Viewer 2003Microsoft Office Excel ViewerMicrosoft Office Compatibility Pack** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.Dragos PrisacaDRAFTDRAFTExcel SxView Memory Corruption VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows Server 2008Microsoft Windows 7Microsoft Excel 2002Microsoft Excel 2003Microsoft Office Excel Viewer 2003** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.Dragos PrisacaDRAFTDRAFTExcel Cache Memory Corruption VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows Server 2008Microsoft Windows 7Microsoft Excel 2002Microsoft Excel 2003Microsoft Office Excel Viewer 2003** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.Dragos PrisacaDRAFTDRAFTExcel Formula Parsing Memory Corruption VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows Server 2008Microsoft Windows 7Microsoft Excel 2002Microsoft Excel 2003Microsoft Excel 2007Microsoft Office Excel Viewer 2003Microsoft Office Excel ViewerMicrosoft Office Compatibility Pack** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.Dragos PrisacaDRAFTDRAFTMicrosoft Excel 2003 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Excel 2003The application Microsoft Excel 2003 is installed.Robert L. HollisINTERIMACCEPTEDJonathan BakerINTERIMACCEPTEDBrendan MilesINTERIMACCEPTEDACCEPTEDMicrosoft Excel Viewer 2007 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Excel Viewer 2007The application Microsoft Excel Viewer 2007 is installed.Kyle KeyDRAFTINTERIMACCEPTEDBrendan MilesINTERIMBrendan MilesACCEPTEDACCEPTEDMicrosoft Excel 2002 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Excel 2002The application Microsoft Excel 2002 is installed.Robert L. HollisDRAFTJohn HoylandINTERIMACCEPTEDJonathan BakerINTERIMACCEPTEDBrendan MilesINTERIMACCEPTEDACCEPTEDMicrosoft Excel Viewer 2003 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Excel Viewer 2003The application Microsoft Excel Viewer 2003 is installed.Robert L. HollisINTERIMACCEPTEDSudhir GandheINTERIMACCEPTEDBrendan MilesINTERIMBrendan MilesACCEPTEDACCEPTEDMicrosoft Office Compatibility Pack is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Office Compatibility PackThe application Microsoft Office Compatibility Pack is installed.Robert L. HollisDRAFTINTERIMACCEPTEDBrendan MilesINTERIMACCEPTEDACCEPTEDMicrosoft Excel 2007 is installedMicrosoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 2000Microsoft Excel 2007The application Microsoft Excel 2007 is installed.Robert L. HollisDRAFTINTERIMACCEPTEDDragos PrisacaINTERIMACCEPTEDBrendan MilesINTERIMACCEPTEDACCEPTEDAdobe Reader and Acrobat allows attackers to cause a DoS via unspecified vectors.Microsoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatInteger overflow in Adobe Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows attackers to cause a denial of service via unspecified vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat allow memory corruptionMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat allow to execute arbitrary code via a crafted PDF fileMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatHeap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows remote attackers to execute arbitrary code via a crafted PDF file that triggers memory corruption, as exploited in the wild in October 2009. NOTE: some of these details are obtained from third party information.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat denial of service (application crash) via a PDFMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatStack consumption vulnerability in Adobe Reader and Acrobat 9.1.3, 9.1.2, 9.1.1, and earlier 9.x versions; 8.1.6 and earlier 8.x versions; and possibly 7.1.4 and earlier 7.x versions allows remote attackers to cause a denial of service (application crash) via a PDF file with a large number of [ (open square bracket) characters in the argument to the alert method. NOTE: some of these details are obtained from third party information.Chandan SDRAFTINTERIMINTERIMMicrosoft Silverlight and Microsoft .NET Framework CLR VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2003Microsoft Windows Server 2008Microsoft .NET FrameworkMicrosoft SilverlightThe Common Language Runtime (CLR) in Microsoft .NET Framework 2.0, 2.0 SP1, 2.0 SP2, 3.5, and 3.5 SP1, and Silverlight 2, does not properly handle interfaces, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP), (2) a crafted Silverlight application, (3) a crafted ASP.NET application, or (4) a crafted .NET Framework application, aka "Microsoft Silverlight and Microsoft .NET Framework CLR Vulnerability."Dragos PrisacaDRAFTINTERIMINTERIMAdobe Reader and Acrobat allow arbitrary code executionMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 do not properly validate input, which might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-2998.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat Multiple VulnerabilitiesMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatMultiple cross-site scripting (XSS) vulnerabilities in Adobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, for Mozilla Firefox, Microsoft Internet Explorer 6 SP1, Google Chrome, Opera 8.5.4 build 770, and Opera 9.10.8679 on Windows allow remote attackers to inject arbitrary JavaScript and conduct other attacks via a .pdf URL with a javascript: or res: URI with (1) FDF, (2) XML, and (3) XFDF AJAX parameters, or (4) an arbitrarily named name=URI anchor identifier, aka "Universal XSS (UXSS)."Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat cause Denial of Service VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 do not properly validate input, which allows attackers to cause a denial of service via unspecified vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat cause arbitrary code execution via unspecified vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatHeap-based buffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 might allow attackers to execute arbitrary code via unspecified vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat allows attackers to bypass intended file-extensionMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatUnspecified vulnerability in Adobe Acrobat 9.x before 9.2 allows attackers to bypass intended file-extension restrictions via unknown vectors.Chandan SDRAFTINTERIMINTERIMMicrosoft .NET Framework Type Verification VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2003Microsoft Windows Server 2008Microsoft .NET FrameworkMicrosoft .NET Framework 2.0, 2.0 SP1, and 3.5 does not properly enforce a certain type-equality constraint in .NET verifiable code, which allows remote attackers to execute arbitrary code via (1) a crafted XAML browser application (XBAP), (2) a crafted ASP.NET application, or (3) a crafted .NET Framework application, aka "Microsoft .NET Framework Type Verification Vulnerability."Dragos PrisacaDRAFTINTERIMINTERIMAdobe Reader and Acrobat 'format bug' remote arbitrary code executionMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 on Unix, when Debug mode is enabled, allow attackers to execute arbitrary code via unspecified vectors, related to a "format bug."Chandan SDRAFTINTERIMINTERIMATL COM Initialization VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2003Microsoft Windows Server 2008The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1; and Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2; does not properly restrict use of OleLoadFromStream in instantiating objects from data streams, which allows remote attackers to execute arbitrary code via a crafted HTML document with an ATL (1) component or (2) control, related to ATL headers and bypassing security policies, aka "ATL COM Initialization Vulnerability."Dragos PrisacaDRAFTINTERIMINTERIMAdobe Reader and Acrobat allow arbitrary code execution and DoSMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 do not properly validate input, which might allow attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-3458.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat allow attackers to execute arbitrary code via unspecified vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatArray index error in Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 might allow attackers to execute arbitrary code via unspecified vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat social engineering attack via unknown vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAn unspecified certificate in Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 might allow remote attackers to conduct a "social engineering attack" via unknown vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat DoS via long sequence of # (hash) charactersMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Acrobat Reader Plugin before 8.0.0, and possibly the plugin distributed with Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2, when used with Internet Explorer, Google Chrome, or Opera, allows remote attackers to cause a denial of service (memory consumption) via a long sequence of # (hash) characters appended to a PDF URL, related to a "cross-site scripting issue."Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat cause execution of arbitrary code vulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatInteger overflow in Adobe Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 might allow attackers to execute arbitrary code via unspecified vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat bypass intended Trust Manager restrictions via unspecified vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 do not properly validate input, which might allow attackers to bypass intended Trust Manager restrictions via unspecified vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat denial of service via a crafted documentMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 do not properly perform XMP-XML entity expansion, which allows remote attackers to cause a denial of service via a crafted document.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat cause denial of service via unknown vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatUnspecified vulnerability in an ActiveX control in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 on Windows allows remote attackers to cause a denial of service via unknown vectors.Chandan SDRAFTINTERIMINTERIMLocal Security Authority Subsystem Service Integer Overflow VulnerabilityMicrosoft Windows XPMicrosoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2003Microsoft Windows Server 2008Integer underflow in the NTLM authentication feature in the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows remote attackers to cause a denial of service (reboot) via a malformed packet, aka "Local Security Authority Subsystem Service Integer Overflow Vulnerability."Dragos PrisacaDRAFTINTERIMINTERIMInteger Overflow in X.509 Object Identifiers VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2003Microsoft Windows Server 2008Microsoft ASN.1 LibraryInteger overflow in the CryptoAPI component in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows man-in-the-middle attackers to spoof arbitrary SSL servers and other entities via an X.509 certificate that has a malformed ASN.1 Object Identifier (OID) and was issued by a legitimate Certification Authority, aka "Integer Overflow in X.509 Object Identifiers Vulnerability."Dragos PrisacaDRAFTINTERIMINTERIMAdobe Reader and Acrobat allow attackers to execute arbitrary code via unspecified vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatBuffer overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 might allow attackers to execute arbitrary code via unspecified vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat cause DoS and Arbitrary ExecutionMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allow attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-2996.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat allows attackers to cause a denial of service via unknown vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAn unspecified ActiveX control in Adobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 does not properly validate input, which allows attackers to cause a denial of service via unknown vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat DoS or possibly execute arbitrary code via unspecified vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatInteger overflow in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allows attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat cause arbitrary code execution via unspecified vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatMultiple heap-based buffer overflows in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 might allow attackers to execute arbitrary code via unspecified vectors.Chandan SDRAFTINTERIMINTERIMNull Truncation in X.509 Common Name VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2003Microsoft Windows Server 2008Microsoft ASN.1 LibraryThe CryptoAPI component in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, as used by Internet Explorer and other applications, does not properly handle a '\0' character in a domain name in the subject's Common Name (CN) field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, aka "Null Truncation in X.509 Common Name Vulnerability," a related issue to CVE-2009-2408.Dragos PrisacaDRAFTINTERIMINTERIMAdobe Reader and Acrobat cause Multiple VulnerabilitiesMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatThe JavaScript for Acrobat API in Adobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 does not properly implement the (1) Privileged Context and (2) Safe Path restrictions for unspecified JavaScript methods, which allows remote attackers to create arbitrary files, and possibly execute arbitrary code, via the cPath parameter in a crafted PDF file. NOTE: some of these details are obtained from third party information.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat getPlus_HelperSvc.exe) local elevation of privilegesMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatNOS Microsystems getPlus Download Manager for Adobe 1.6.2.36, and possibly other versions, installs NOS\bin\getPlus_HelperSvc.exe with insecure permissions (Everyone:Full Control), which allows local users to gain SYSTEM privileges by replacing getPlus_HelperSvc.exe with a Trojan horse program, as demonstrated by use of getPlus Download Manager within Adobe Reader. NOTE: the scope of this issue is limited because the program is deleted and the associated service is not automatically launched after a successful installation and reboot.Chandan SDRAFTINTERIMINTERIMMicrosoft .NET Framework Pointer Verification VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows 7Microsoft Windows Server 2003Microsoft Windows Server 2008Microsoft .NET FrameworkMicrosoft .NET Framework 1.0 SP3, 1.1 SP1, and 2.0 SP1 does not properly validate .NET verifiable code, which allows remote attackers to obtain unintended access to stack memory, and execute arbitrary code, via (1) a crafted XAML browser application (XBAP), (2) a crafted ASP.NET application, or (3) a crafted .NET Framework application, aka "Microsoft .NET Framework Pointer Verification Vulnerability."Dragos PrisacaDRAFTINTERIMINTERIMMicrosoft Windows Server 2008 R2 x64 Edition is installedMicrosoft Windows Server 2008The operating system installed on the system is Microsoft Windows Server 2008 R2 x64 EditionDragos PrisacaDRAFTINTERIMTodd DolinskyINTERIMMicrosoft .NET Framework 2.0 Service Pack 1 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft .NET FrameworkMicrosoft .NET Framework 2.0 Service Pack 1 is installedDragos PrisacaDRAFTINTERIMINTERIMMicrosoft Windows Server 2008 x64 Edition Service Pack 2 is installedMicrosoft Windows Server 2008The operating system installed on the system is Microsoft Windows Server 2008 x64 Edition Service Pack 2Dragos PrisacaDRAFTINTERIMACCEPTEDTodd DolinskyINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft .NET Framework 2.0 Service Pack 2 is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft .NET FrameworkMicrosoft .NET Framework 2.0 Service Pack 2 is installedDragos PrisacaDRAFTINTERIMINTERIMMicrosoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installedMicrosoft Windows Server 2008The operating system installed on the system is Microsoft Windows Server 2008 Itanium Edition Service Pack 2Dragos PrisacaDragos PrisacaDRAFTINTERIMACCEPTEDACCEPTEDMicrosoft Windows Vista (32-bit) Service Pack 2 is installedMicrosoft Windows VistaThe operating system installed on the system is Microsoft Windows Vista (32-bit) Service Pack 2Dragos PrisacaDragos PrisacaDRAFTINTERIMACCEPTEDTodd DolinskyINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows Server 2008 R2 Itanium-Based Edition is installedMicrosoft Windows Server 2008The operating system installed on the system is Microsoft Windows Server 2008 R2 Itanium EditionDragos PrisacaDRAFTINTERIMINTERIMMicrosoft Windows 7 x64 Edition is installedMicrosoft Windows 7The operating system installed on the system is Microsoft Windows 7 x64 EditionPai PengDRAFTINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows Server 2008 Itanium-Based Edition is installedMicrosoft Windows Server 2008The operating system installed on the system is Microsoft Windows Server 2008 Itanium EditionJeff ItoDRAFTINTERIMACCEPTEDACCEPTEDMicrosoft Windows Server 2008 (32-bit) Service Pack 2 is installedMicrosoft Windows Server 2008The operating system installed on the system is Microsoft Windows Server 2008 (32-bit) Service Pack 2Dragos PrisacaDRAFTINTERIMACCEPTEDTodd DolinskyINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows Vista x64 Edition Service Pack 2 is installedMicrosoft Windows VistaThe operating system installed on the system is Microsoft Windows Vista x64 Edition Service Pack 2Dragos PrisacaDragos PrisacaDRAFTINTERIMACCEPTEDTodd DolinskyINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows Server 2008 x64 Edition is installedMicrosoft Windows Server 2008The operating system installed on the system is Microsoft Windows Server 2008
x64 EditionSudhir GandheDRAFTAndrew ButtnerINTERIMACCEPTEDTodd DolinskyINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows Vista x64 Edition Service Pack 1 is installedMicrosoft Windows VistaThe operating system installed on the system is Microsoft Windows Vista x64 Edition Service Pack 1Sudhir GandheDRAFTAndrew ButtnerINTERIMACCEPTEDTodd DolinskyINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows Server 2008 (32-bit) is installedMicrosoft Windows Server 2008The operating system installed on the system is Microsoft Windows Server 2008 (32-bit)Sudhir GandheDRAFTAndrew ButtnerINTERIMACCEPTEDTodd DolinskyINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows XP x64 Edition SP2 is installedMicrosoft Windows XPA version of Microsoft Windows XP Professional x64 Edition Service Pack 2 is installed.Sudhir GandheDRAFTINTERIMACCEPTEDAndrew ButtnerINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows Server 2003 SP2 (x64) is installedMicrosoft Windows Server 2003A version of Microsoft Windows Server 2003 SP2 (x64) is installed.Sudhir GandheDRAFTINTERIMACCEPTEDAndrew ButtnerINTERIMACCEPTEDDragos PrisacaINTERIMACCEPTEDTodd DolinskyINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows Vista x64 Edition is installedMicrosoft Windows VistaThe operating system installed on the system is Microsoft Windows Vista x64 EditionJonathan BakerDRAFTINTERIMACCEPTEDSudhir GandheINTERIMAndrew ButtnerACCEPTEDTodd DolinskyINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft .NET Framework 1.1 Service Pack 1 is InstalledMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft .NET FrameworkMicrosoft .NET Framework 1.1 Service Pack 1 is InstalledSudhir GandheDRAFTINTERIMACCEPTEDACCEPTEDACCEPTEDMicrosoft Windows Server 2003 (ia64) SP2 is installedMicrosoft Windows Server 2003A version of Microsoft Windows Server 2003 (ia64) Service Pack 2 is installed.Robert L. HollisDRAFTINTERIMACCEPTEDAndrew ButtnerINTERIMACCEPTEDACCEPTEDAdobe Reader and Acrobat cause DoS (memory corruption) or execute arbitrary code via unspecified vectors.Microsoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Reader and Acrobat 9.x before 9.2, 8.x before 8.1.7, and possibly 7.x through 7.1.4 allow attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat memory corruption or possibly execute arbitrary code via unspecified vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatAdobe Reader and Acrobat 7.x before 7.1.4, 8.x before 8.1.7, and 9.x before 9.2 allow attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2009-2985.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat might allow remote attackers to execute arbitrary code via unknown vectors.Microsoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatUnspecified vulnerability in the Mozilla plug-in in Adobe Reader and Acrobat 8.x before 8.1.7, and possibly 7.x before 7.1.4 and 9.x before 9.2, might allow remote attackers to execute arbitrary code via unknown vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader and Acrobat cause denial of service or possibly execute arbitrary code via unknown vectorsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe AcrobatUnspecified vulnerability in the image decoder in Adobe Acrobat 9.x before 9.2, and possibly 7.x through 7.1.4 and 8.x through 8.1.7, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors.Chandan SDRAFTINTERIMINTERIMAdobe Reader 9 Series is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe Reader 9 Series is installedChandan SDRAFTINTERIMINTERIMAdobe Acrobat 8 Series is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe AcrobatAdobe Acrobat 8 Series is installedChandan SDRAFTINTERIMINTERIMAdobe Reader 8 Series is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe Reader 8 Series is installedChandan SDRAFTINTERIMINTERIMAdobe Reader 7 Series is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe ReaderAdobe Reader 7 Series is installedChandan SDRAFTINTERIMINTERIMAdobe Acrobat 7 Series is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe AcrobatAdobe Acrobat 7 Series is installedChandan SDRAFTINTERIMINTERIMAdobe Acrobat 9 Series is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows VistaMicrosoft Windows Server 2003Microsoft Windows Server 2008Microsoft Windows 7Adobe AcrobatAdobe Acrobat 9 Series is installedChandan SDRAFTINTERIMINTERIMSpoofed file extensions via a crafted filename containing Unicode character in Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0Microsoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxMozilla SeamonkeyMozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, does not properly handle a right-to-left override (aka RLO or U+202E) Unicode character in a download filename, which allows remote attackers to spoof file extensions via a crafted filename, as demonstrated by displaying a non-executable extension for an executable file.Prabhu S ADRAFTDRAFTHeap-based buffer overflow in the GIF image parser in Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0 via unspecified vectors.Microsoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxMozilla SeamonkeyHeap-based buffer overflow in the GIF image parser in Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, allows remote attackers to execute arbitrary code via unspecified vectors.Prabhu S ADRAFTDRAFTArbitrary code execution in Mozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0 ia a crafted regular expression in a Proxy Auto-configuration (PAC) file.Microsoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxMozilla SeamonkeyMozilla Firefox before 3.0.15 and 3.5.x before 3.5.4, and SeaMonkey before 2.0, allows remote attackers to execute arbitrary code via a crafted regular expression in a Proxy Auto-configuration (PAC) file.Prabhu S ADRAFTDRAFTMozilla Seamonkey is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla SeamonkeyThe installed browser on the system is Mozilla Seamonkey.Prabhu S ADRAFTDRAFTMozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard eventsMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxMozilla Firefox before 3.0.15, and 3.5.x before 3.5.4, allows remote attackers to read form history by forging mouse and keyboard events that leverage the auto-fill feature to populate form fields, in an attacker-readable form, with history entries.Prabhu S ADRAFTDRAFTUse-after-free vulnerability in Mozilla Firefox 3.5.x before 3.5.4 allows remote attackers to cause a denial of serviceMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxUse-after-free vulnerability in Mozilla Firefox 3.5.x before 3.5.4 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code by creating JavaScript web-workers recursively.Prabhu S ADRAFTDRAFTVulnerability in the XPCVariant::VariantDataToJS function in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4Microsoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla Firefoxcontent/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.Prabhu S ADRAFTDRAFTRemote bypass vulnerability in content/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 via the document.getSelection functionMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla Firefoxcontent/html/document/src/nsHTMLDocument.cpp in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows user-assisted remote attackers to bypass the Same Origin Policy and read an arbitrary content selection via the document.getSelection function.Prabhu S ADRAFTDRAFTvulnerabilities in liboggz, as used in Mozilla Firefox 3.5.x before 3.5.4 allow remote attackers to cause a denial of serviceMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxMultiple unspecified vulnerabilities in liboggz before cf5feeaab69b05e24, as used in Mozilla Firefox 3.5.x before 3.5.4, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors.Prabhu S ADRAFTDRAFTThe oggplay_data_handle_theora_frame in liboggplay in Mozilla Firefox 3.5.x before 3.5.4 to cuase denial of serviceMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxThe oggplay_data_handle_theora_frame function in media/liboggplay/src/liboggplay/oggplay_data.c in liboggplay, as used in Mozilla Firefox 3.5.x before 3.5.4, attempts to reuse an earlier frame data structure upon encountering a decoding error for the first frame, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly execute arbitrary code via a crafted .ogg video file.Prabhu S ADRAFTDRAFTVulnerabilities in libvorbis, as used in Mozilla Firefox 3.5.x before 3.5.4 to cause a denial of serviceMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxMultiple unspecified vulnerabilities in libvorbis, as used in Mozilla Firefox 3.5.x before 3.5.4, allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors. NOTE: this might overlap CVE-2009-2663.Prabhu S ADRAFTDRAFTMultiple vulnerabilities in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 to cause a denial of serviceMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxMultiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.Prabhu S ADRAFTDRAFTMultiple vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.4 to cause a denial of service.Microsoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxMultiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.Prabhu S ADRAFTDRAFTMozilla Firefox 3.0.x before 3.0.15 cause a denial of service in layout/base/nsCSSFrameConstructor.cppMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla Firefoxlayout/base/nsCSSFrameConstructor.cpp in the browser engine in Mozilla Firefox 3.0.x before 3.0.15 does not properly handle first-letter frames, which allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unspecified vectors.Prabhu S ADRAFTDRAFTMultiple vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.4Microsoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxMultiple unspecified vulnerabilities in the JavaScript engine in Mozilla Firefox 3.5.x before 3.5.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.Prabhu S ADRAFTDRAFTMozilla Firefox Floating Point Memory Allocation VulnerabilityMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxArray index error in Mozilla Firefox 3.0.x before 3.0.15 and 3.5.x before 3.5.4 allows remote attackers to execute arbitrary code via a long string that triggers incorrect memory allocation and a heap-based buffer overflow during conversion to a floating-point numberPrabhu S ADRAFTDRAFTMozilla Firefox is installedMicrosoft Windows 2000Microsoft Windows XPMicrosoft Windows Server 2003Microsoft Windows VistaMicrosoft Windows 7Mozilla FirefoxThe browser installed on the system is Mozilla FirefoxPrabhu S ADRAFTDRAFTMicrosoft Windows XP (x86) SP2 is installedMicrosoft Windows XPA version of Microsoft Windows XP (x86) Service Pack 2 is installed.Andrew ButtnerDRAFTINTERIMACCEPTEDAndrew ButtnerINTERIMACCEPTEDACCEPTEDMicrosoft Windows 7 (32-bit) is installedMicrosoft Windows 7The operating system installed on the system is Microsoft Windows 7 (32-bit)Pai PengDRAFTINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows Server 2003 SP1 (x86) is installedMicrosoft Windows Server 2003A version of Microsoft Windows Server 2003 Service Pack 1 (x86) is installed.Robert L. HollisDRAFTINTERIMACCEPTEDAndrew ButtnerINTERIMACCEPTEDACCEPTEDMicrosoft Windows XP (x86) SP3 is installedMicrosoft Windows XPA version of Microsoft Windows XP (x86) Service Pack 3 is installed.Sudhir GandheDRAFTINTERIMACCEPTEDACCEPTEDMicrosoft Windows Vista (32-bit) Service Pack 1 is installedMicrosoft Windows VistaThe operating system installed on the system is Microsoft Windows Vista (32-bit) Service Pack 1Sudhir GandheDRAFTAndrew ButtnerINTERIMACCEPTEDTodd DolinskyINTERIMINTERIMMicrosoft Windows 2000 SP4 or later is installedMicrosoft Windows 2000The operating system installed on the system is Microsoft Windows 2000 SP4 or later.Robert L. HollisDRAFTINTERIMACCEPTEDJonathan BakerINTERIMACCEPTEDACCEPTEDMicrosoft Windows Server 2003 SP2 (x86) is installedMicrosoft Windows Server 2003A version of Microsoft Windows Server 2003 Service Pack 2 (x86) is installed.Sudhir GandheDRAFTINTERIMRobert L. HollisACCEPTEDAndrew ButtnerINTERIMACCEPTEDACCEPTEDMicrosoft Windows Vista (32-bit) is installedMicrosoft Windows VistaThe operating system installed on the system is Microsoft Windows Vista (32-bit)Jonathan BakerDRAFTINTERIMACCEPTEDSudhir GandheINTERIMAndrew ButtnerACCEPTEDTodd DolinskyINTERIMINTERIMSafari.exeHKEY_LOCAL_MACHINESOFTWARE\Apple Computer, Inc.\SafariInstallDirHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WiresharkDisplayNameHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WiresharkDisplayVersionHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Office\10.0\Word\InstallRootHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Office\11.0\Word\InstallRootwordview.exewinword.exeHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Winword.exePathHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Office\11.0\Excel\InstallRootPathHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Office\10.0\Excel\InstallRootxlview.exeHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B025EE03392B4E348B1A777F7A5DCE169040480900063D11C8EF10054038389Cxlview.exeHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{90840409-6000-11D3-8CFE-0150048383C9}InstallLocationHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Office\12.0\MOCexcel.exeHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\Excel.exePathHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Office\12.0\Excel\InstallRootXLVIEW.EXEexcelcnv.exeEXCEL.EXEXLVIEW.EXEHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Office\12.0\Common\InstallRootPathEXCEL.EXEEXCEL.EXEHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows\CurrentVersionProgramFilesDirHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{C832BE8F-4B89-4579-A217-DB92E7A27915}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{27A3D328-D206-4106-8D33-1AA39B13394B}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{279D6C9A-652E-4833-BEFC-312CA8887857}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{B1F78FEF-3DB7-4C56-AF2B-5DCCC7C42331}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0002E554-0000-0000-C000-000000000046}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{3267123E-530D-4E73-9DA7-79F01D86A89F}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{DD8C2179-1B4A-4951-B432-5DE3D1507142}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{A9A7297E-969C-43F1-A1EF-51EBEA36F850}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{15721a53-8448-4731-8bfc-ed11e128e444}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4F1E5B1A-2A80-42ca-8532-2D05CB959537}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0002E55C-0000-0000-C000-000000000046}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0002E531-0000-0000-C000-000000000046}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{0002E532-0000-0000-C000-000000000046}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{4C85388F-1500-11D1-A0DF-00C04FC9E20F}Compatibility FlagsHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\{DB640C86-731C-484A-AAAF-750656C9187D}Compatibility Flagsmsv1_0.dllmsasn1.dllMscorlib.dllkernel32.dllMscorlib.dllHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows NT\CurrentVersionSystemRootHKEY_LOCAL_MACHINEDisplayVersionHKEY_LOCAL_MACHINESOFTWARE\Adobe\Adobe Acrobat\8.0\InstallerENU_GUIDHKEY_LOCAL_MACHINEDisplayVersionHKEY_LOCAL_MACHINESOFTWARE\Adobe\Acrobat Reader\8.0\InstallerENU_GUIDHKEY_LOCAL_MACHINEDisplayVersionHKEY_LOCAL_MACHINESOFTWARE\Adobe\Adobe Acrobat\9.0\InstallerENU_GUIDHKEY_LOCAL_MACHINEDisplayVersionHKEY_LOCAL_MACHINESOFTWARE\Adobe\Acrobat Reader\9.0\InstallerENU_GUIDHKEY_LOCAL_MACHINEDisplayVersionHKEY_LOCAL_MACHINESOFTWARE\Adobe\Adobe Acrobat\7.0\InstallerENU_GUIDHKEY_LOCAL_MACHINEDisplayVersionHKEY_LOCAL_MACHINESOFTWARE\Adobe\Acrobat Reader\7.0\InstallerENU_GUIDHKEY_LOCAL_MACHINESOFTWARE\mozilla.org\SeamonkeyCurrentVersionHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows NT\CurrentVersionCurrentVersionHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows NT\CurrentVersionCSDVersionHKEY_LOCAL_MACHINESOFTWARE\Microsoft\Windows NT\CurrentVersionProductNameHKEY_LOCAL_MACHINESYSTEM\CurrentControlSet\Control\Session Manager\EnvironmentPROCESSOR_ARCHITECTUREHKEY_LOCAL_MACHINESOFTWARE\Mozilla\Mozilla FirefoxCurrentVersion5.31.21.10Safari4.531.9.1^(0.10(\.1[0-9])?|1.0(\.[0-9])?|1.2(\.[0-2])?)$^1.2(\.[0-2])?$Wireshark [0-9]1.2.210.0.6856.011.0.8313.013.0.0.012.0.0.011.0.8313.010.0.6856.011.0.8316.012.0.6514.5000reg_dword10246.1.7600.164206.0.6001.220006.0.6001.180006.0.6000.211256.0.6000.169266.0.6000.160005.1.2600.58765.1.2600.36255.2.3790.45876.0.6001.225186.0.6001.183306.0.6002.181116.1.7600.205246.0.6002.222236.0.6000.200005.1.2600.36246.1.7600.200006.0.6001.183266.0.6002.181065.1.2600.58756.1.7600.205185.0.2195.73346.1.7600.164156.1.7600.160006.0.6000.169225.2.3790.45842.0.50727.30532.0.50727.14332.0.50727.3053.*2008 R2.*.*2008.*1.1.4322.2032^Service Pack [2-9]|\d{2,}$ia646.0.6002.180002.0.50727.42006.0.6002.220001.1.4322.24432.0.50727.44002.0.50727.18732.0.50727.3603^8\..*^7\..*^9\..*8.1.79.2.07.1.4^[01]\..* .*^([0-2]\..*|3\.0(\.1[0-4]|\.[0-9])?|3\.5(\.[0-3])?) .*^3\.0(\.1[0-4]|\.[0-9])? .*^3\.5(\.[0-3])? .*Windows 7Service Pack 35.1Service Pack 1^Service Pack [4-9]|\d{2,}$5.05.2x86Service Pack 2windows.*[Vv]ista.*amd64^[0-9]\..*^(3\.0(\.1[0-4]|\.[0-9])?|3\.5(\.[0-3])?) .*\OFFICE11\Microsoft Office\Office10\Microsoft Office\Office11\Microsoft Office\Office12\Microsoft.NET\Framework\v2.0.50727\System32\Microsoft.NET\Framework\v1.1.4322SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\