OMRON CX-Supervisor SCS File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OMRON CX-Supervisor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing ...

OMRON CX-Supervisor SCS File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OMRON CX-Supervisor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing ...

Microsoft Edge CSS var Function Type Confusion Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

OMRON CX-Supervisor SCS File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OMRON CX-Supervisor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing ...

OMRON CX-Supervisor SCS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OMRON CX-Supervisor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing ...

Adobe Acrobat Pro DC TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft Chakra Array.splice Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Chakra. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing ...

Microsoft Windows Remote Assistance XML External Entity Processing Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft ChakraCore Remote Code Execution Vulnerability (CNVD-2018-05887)

Microsoft ChakraCore is the core of the JavaScript engine used by Edge, a web browser from Microsoft. A remote code execution vulnerability exists in Microsoft ChakraCore. A remote attacker could exploit this vulnerability to execute arbitrary code in the context of the current user, corrupting...

Microsoft Office Arbitrary Code Execution Vulnerability (CNVD-2018-05885)

Microsoft Office is an office software suite of products developed by the U.S. company Microsoft Microsoft. Commonly used components are Word, Excel, Access, Powerpoint, FrontPage and so on. A remote code execution vulnerability exists in Microsoft Office, which stems from the program's failure t...

Slackware 14.0 / 14.1 / 14.2 / current : curl (SSA:2018-074-01)

New curl packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-074-01. The text itself is copyright C Slackware Linux,...

Microsoft Windows Shell Remote Code Execution Vulnerability (CNVD-2018-05838)

Microsoft Windows 10 and others are a series of operating systems released by Microsoft Corporation in the U.S. A Windows Shell is an interface under Windows that interacts with the user and allows the user to perform public tasks such as accessing the file system, exporting executable programs,...

Microsoft Access Arbitrary Code Execution Vulnerability

Microsoft Access is a relational database management system in the Office suite of the U.S. Microsoft Microsoft Corporation. A remote code execution vulnerability exists in Microsoft Access due to the program's failure to properly handle objects in memory. A remote attacker can exploit this...

Microsoft Edge and ChakraCore Remote Memory Corruption Vulnerability (CNVD-2018-06694)

Microsoft Windows 10 and others are a series of operating systems released by Microsoft Corporation.Edge is one of the browsers that comes with the system.ChakraCore is the core of an open source JavaScript engine used in Edge, and can also be used as a standalone JavaScript engine.... ChakraCore...

Microsoft Edge and ChakraCore Remote Memory Corruption Vulnerability (CNVD-2018-06698)

Microsoft Windows 10 is a next-generation cross-platform operating system from Microsoft.Edge is one of the browsers that comes with the system.ChakraCore is the core of an open-source JavaScript engine that is used in Edge, and can also be used as a stand-alone JavaScript engine. engine. A memor...

Microsoft Edge and ChakraCore Remote Memory Corruption Vulnerability (CNVD-2018-06699)

Microsoft Windows 10 and others are a series of operating systems released by Microsoft Corporation.Edge is one of the browsers that comes with the system.ChakraCore is the core of an open source JavaScript engine used in Edge, and can also be used as a standalone JavaScript engine.... ChakraCore...

Microsoft Edge Scripting Engine Memory Corruption Vulnerability (CNVD-2018-07039)

Edge is Microsoft's browser for Windows 10. Microsoft Edge suffers from a Scripting Engine Memory Corruption vulnerability. The vulnerability arises due to a problem in the way the scripting engine handles objects in memory. An attacker can exploit the vulnerability to execute arbitrary code in t...

Microsoft Edge and ChakraCore Remote Memory Corruption Vulnerability (CNVD-2018-06695)

Microsoft Windows 10 and others are a series of operating systems released by Microsoft Corporation.Edge is one of the browsers that comes with the system.ChakraCore is the core of an open source JavaScript engine used in Edge, and can also be used as a standalone JavaScript engine.... ChakraCore...

Microsoft Edge and ChakraCore Remote Memory Corruption Vulnerability (CNVD-2018-06696)

Microsoft Windows 10 is a next-generation cross-platform operating system from Microsoft.Edge is one of the default browsers that comes with the system.ChakraCore is the core of an open-source JavaScript engine that is used in Edge, and is also available as a separate JavaScript engine. A remote...

Slackware 14.0 / 14.1 / 14.2 / current : samba (SSA:2018-072-02)

New samba packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security a issue. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-072-02. The text itself is copyright C Slackware Linu...