Vulnerabilities > Microsoft > Windows > Critical

DATE CVE VULNERABILITY TITLE RISK
2012-05-16 CVE-2012-0664 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime
Heap-based buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted text track in a movie file.
network
apple microsoft CWE-119
critical
9.3
2012-05-16 CVE-2012-0663 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime
Multiple stack-based buffer overflows in Apple QuickTime before 7.7.2 on Windows allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TeXML file.
network
apple microsoft CWE-119
critical
9.3
2012-05-16 CVE-2012-0265 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime
Stack-based buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted pathname for a file.
network
apple microsoft CWE-119
critical
9.3
2012-05-04 CVE-2012-0779 Object Type Confusion Remote Code Execution vulnerability in Adobe Flash Player
Adobe Flash Player before 10.3.183.19 and 11.x before 11.2.202.235 on Windows, Mac OS X, and Linux; before 11.1.111.9 on Android 2.x and 3.x; and before 11.1.115.8 on Android 4.x allows remote attackers to execute arbitrary code via a crafted file, related to an "object confusion vulnerability," as exploited in the wild in May 2012.
network
adobe apple linux microsoft google
critical
9.3
2012-03-28 CVE-2012-0772 Buffer Errors vulnerability in Adobe AIR and Flash Player
An unspecified ActiveX control in Adobe Flash Player before 10.3.183.18 and 11.x before 11.2.202.228, and AIR before 3.2.0.2070, on Windows does not properly perform URL security domain checking, which allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors.
network
low complexity
adobe microsoft CWE-119
critical
10.0
2012-03-05 CVE-2012-0768 Resource Management Errors vulnerability in Adobe Flash Player and Flash Player for Android
The Matrix3D component in Adobe Flash Player before 10.3.183.16 and 11.x before 11.1.102.63 on Windows, Mac OS X, Linux, and Solaris; before 11.1.111.7 on Android 2.x and 3.x; and before 11.1.115.7 on Android 4.x allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
network
low complexity
adobe apple linux microsoft sun google CWE-399
critical
10.0
2012-02-21 CVE-2011-4187 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Novell Iprint
Buffer overflow in the GetDriverSettings function in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a long realm field, a different vulnerability than CVE-2011-3173.
network
low complexity
novell microsoft CWE-119
critical
10.0
2012-02-21 CVE-2011-4186 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Novell Iprint
Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a crafted client-file-name parameter in a printer-url, a different vulnerability than CVE-2011-1705.
network
novell microsoft CWE-119
critical
9.3
2012-02-21 CVE-2011-4185 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Novell Iprint
The GetPrinterURLList2 method in the ActiveX control in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2008-2431 and CVE-2008-2436.
network
low complexity
novell microsoft CWE-119
critical
10.0
2011-12-16 CVE-2011-4369 Unspecified vulnerability in Adobe Acrobat and Acrobat Reader
Unspecified vulnerability in the PRC component in Adobe Reader and Acrobat 9.x before 9.4.7 on Windows, Adobe Reader and Acrobat 9.x through 9.4.6 on Mac OS X, Adobe Reader and Acrobat 10.x through 10.1.1 on Windows and Mac OS X, and Adobe Reader 9.x through 9.4.6 on UNIX allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, as exploited in the wild in December 2011.
network
low complexity
adobe apple microsoft unix
critical
10.0