Adobe Acrobat Pro DC ImageConversion XPS Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Adobe Acrobat Pro DC EMF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

Adobe Acrobat Pro DC XFA removeInstance Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handlin...

Adobe Acrobat 2017 Security Updates (APSB18-09) - Windows

Adobe Acrobat 2017 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobat";...

(0Day) Delta Industrial Automation DOPSoft DPA File TagTotalSize Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation DOPSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

Microsoft Office Graph Serialized Data Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Graph. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing o...

Microsoft Edge Undo Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft Internet Explorer Remote Code Execution Vulnerability (CNVD-2018-09474)

Microsoft Windows Server 2012 and others are a series of operating systems released by Microsoft Corporation, U.S.A. Internet Explorer IE is one of the web browsers that comes with the Windows operating system. A remote code execution vulnerability exists in Microsoft IE versions 10 and 11, which...

Cisco WebEx Recorder and Player WRF File Length Field Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Cisco WebEx Recorder and Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

Microsoft ChakraCore Scripting Engine Remote Memory Corruption Vulnerability (CNVD-2018-11133)

Microsoft ChakraCore is the core of the JavaScript engine used by Edge, a web browser from Microsoft. A remote code execution vulnerability exists in Microsoft ChakraCore. A remote attacker could exploit this vulnerability to execute arbitrary code in the context of the current user, resulting in...

Microsoft Internet Explorer Arbitrary Code Execution Vulnerability (CNVD-2018-10669)

Microsoft Windows Server 2012 and others are a series of operating systems released by Microsoft Corporation, U.S.A. Internet Explorer IE is one of the web browsers that comes with the Windows operating system. A remote code execution vulnerability exists in the way the scripting engine handles I...

Microsoft ChakraCore and Edge Remote Code Execution Vulnerability (CNVD-2018-10206)

Microsoft Edge is a web browser developed by Microsoft.Chakra Engine is a JavaScript scripting engine.ChakraCore is the core of the open source Chakra JavaScript scripting engine used in Edge, and can also be used as a stand-alone JavaScript engine. ChakraCore is the core of an open source Chakra...

Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability

Internet Explorer is a web browser from Microsoft. A scripting engine memory corruption vulnerability exists in Microsoft Internet Explorer. The vulnerability is caused due to a problem in the way the scripting engine handles objects in memory. A remote attacker could use this vulnerability to...

CVE-2018-10806

An issue was discovered in Frog CMS 0.9.5. There is a reflected Cross Site Scripting Vulnerability via the filecurrentname parameter to the admin/?/plugin/filemanager/rename URI. This can be used in conjunction with CSRF...

Microsoft Office Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

Frog CMS Cross-Site Scripting Vulnerability (CNVD-2018-09306)

Frog CMS is a content management system CMS developed by software developer Philippe Archambault. The system provides tools for page templates, user rights management, and document management. A cross-site scripting vulnerability exists in Frog CMS version 0.9.5. A remote attacker can exploit thi...

Foxit Reader U3D Clod Progressive Mesh Declaration Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D...

Foxit Reader U3D CLOD Base Mesh Continuation Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D...

Foxit Reader U3D Texture Width Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D...

Foxit Reader PDF Parsing Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PDF...