Foxit Reader TextBox Calculate Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

Foxit Reader ListBox Selection Change Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

Foxit Reader TextBox Validate Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

Foxit Reader CheckBox onBlur Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

Foxit Reader TextBox Format Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

Apple Safari performProxyCall Internal Object Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of pro...

Apple Safari Array Concat Uninitialized Buffer Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handlin...

The vulnerability of Microsoft Excel spreadsheet editors in the Microsoft Office 2016 software suite allows a hacker to execute arbitrary code in the context of the current user.

The vulnerability of Microsoft Excel in the Microsoft Office 2016 software suite is related to errors in processing objects in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code in the context of the current user...

Microsoft Chakra Array.splice Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Chakra as well as Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...

The vulnerability of the Internet Explorer browser, caused by errors in memory object handling, allows a hacker to execute arbitrary code.

The vulnerability of the Internet Explorer browser is related to errors in memory object handling. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the context of the current user...

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser allows a hacker to execute arbitrary code.

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser is related to errors in memory object handling. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

Microsoft Internet Explorer Table Row NULL Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

[slackware-security] ghostscript

New ghostscript packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/ghostscript-9.25-i586-1slack14.2.txz: Upgraded. This release fixes problems with argument handling, some unintended results of th...

Microsoft Word Remote Code Execution Vulnerability (CNVD-2018-18623)

Microsoft Word is a word processing software in the Office suite of the American Microsoft Microsoft company. A remote code execution vulnerability exists in Microsoft Word, which can be exploited by a remote attacker to execute arbitrary code in the context of the current user...

Cisco WebEx Network Recording Player ARF File Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Cisco WebEx Network Recording Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

Microsoft ChakraCore Scripting Engine Remote Memory Corruption Vulnerability (CNVD-2018-21204)

Microsoft ChakraCore is a core part of an open source JavaScript engine used in Edge. A remote memory corruption vulnerability exists in Microsoft ChakraCore Scripting Engine. A remote attacker can exploit this vulnerability to corrupt memory by executing arbitrary code in the context of the...

Fuji Electric V-Server Lite File Parsing Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Fuji Electric V-Server Lite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft ChakraCore and Edge Remote Code Execution Vulnerability (CNVD-2018-26971)

Microsoft Windows 10 and Windows Server 2019 are both products of the American company Microsoft. The former is a set of operating systems for personal computers, and the latter is a set of server operating systems.Edge is the default browser that comes with one of these systems.ChakraCore is the...

Microsoft ChakraCore and Edge Remote Code Execution Vulnerability (CNVD-2018-26983)

Microsoft Windows 10 and Windows Server 2019 are both products of the American company Microsoft. The former is a set of operating systems for personal computers, and the latter is a set of server operating systems.Edge is the default browser that comes with one of these systems.ChakraCore is the...

Internet Explorer Memory Corruption Vulnerability

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerabilit...