Microsoft Windows VBScript Filter Function Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

The vulnerability of JavaScript ChakraCore and Microsoft Edge browsers, related to improper handling of objects in memory, allows attackers to execute arbitrary code.

The vulnerability of JavaScript ChakraCore and Microsoft Edge browsers is related to improper handling of objects in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with the privileges of the current user...

The vulnerability of JavaScript ChakraCore and Microsoft Edge browsers, related to improper handling of objects in memory, allows attackers to execute arbitrary code.

The vulnerability of JavaScript ChakraCore and Microsoft Edge browsers is related to improper handling of objects in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with the privileges of the current user...

The vulnerability of JavaScript ChakraCore and Microsoft Edge browsers, related to improper handling of objects in memory, allows attackers to execute arbitrary code.

The vulnerability of JavaScript ChakraCore and Microsoft Edge browsers is related to improper handling of objects in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code with the privileges of the current user...

The vulnerability in Internet Explorer, caused by an operation that goes beyond the buffer boundaries in memory, allows a malicious actor to gain the privileges of the current user.

The vulnerability of the Internet Explorer browser is related to improper handling of objects in memory. Exploiting this vulnerability can allow a remote attacker to gain privileges as the current user...

Vulnerability of the JavaScript ChakraCore kernel, Internet Explorer and Microsoft Edge browsers, caused by operations beyond the buffer in memory, allowing attackers to gain control of the current user’s rights

The vulnerability in the JavaScript ChakraCore engine, as well as in browsers Internet Explorer and Microsoft Edge, arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to gain privileges of the current user...

The vulnerability of Microsoft Excel’s spreadsheet editor lies in its improper handling of objects in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Excel spreadsheet editors is related to incorrect handling of objects in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

The vulnerability in Internet Explorer, caused by an operation that goes beyond the buffer boundaries in memory, allows a malicious actor to gain the privileges of the current user.

The vulnerability of the Internet Explorer browser arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to gain privileges of the current user...

Vulnerability of the JavaScript ChakraCore kernel and Microsoft Edge browsers, caused by operations beyond the buffer in memory, allowing attackers to gain control of the current user’s rights

The vulnerability of JavaScript ChakraCore and Microsoft Edge browsers arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to gain privileges of the current user...

Linux/x86 - symlink /bin/sh sh Shellcode (36 bytes)

/The shellcode calls the symlink and makes the link to the /bin/sh in the current dir. size = 36 bytes OS = Linux i386 written by /rootteam/dev0id rootteam.void.ru BITS 32 jmp short callit doit: pop esi xor eax,eax mov byte esi+7,al mov byte esi+10,al mov byte al,83 lea ebx,esi lea ecx,esi+8 int...

CVE-2018-5374

The Dbox 3D Slider Lite plugin through 1.2.2 for WordPress has SQL Injection via settings\sliders.php currentsliderid parameter...

CVE-2018-5372

The Testimonial Slider plugin through 1.2.4 for WordPress has SQL Injection via settings\sliders.php currentsliderid parameter...

Microsoft Office Memory Corruption Vulnerability (CNVD-2018-00736)

Microsoft Office is an office software suite of products developed by the U.S. company Microsoft Microsoft. Commonly used components are Word, Excel, Access, Powerpoint, FrontPage and so on. There is a memory corruption vulnerability in Microsoft Office, which arises from the program's failure to...

Microsoft Office Remote Code Execution Vulnerability (CNVD-2018-00889)

Microsoft Office is a suite of office software products developed by Microsoft.Equation Editor is one of the formula editors. A remote code execution vulnerability exists in Equation Editor in Microsoft Office, which stems from the program failing to properly handle objects in memory. The...

Microsoft Word Remote Code Execution Vulnerability (CNVD-2018-00901)

Microsoft Office 2007 and so on are the United States Microsoft Microsoft company developed office software suite of products. word is one of the set of word processing software. Word in Microsoft Office suffers from a remote code execution vulnerability that stems from the program's failure to...

VulnCheck KEV: CVE-2018-0802

Microsoft Office contains a memory corruption vulnerability due to the way objects are handled in memory. Successful exploitation allows for remote code execution in the context of the current user. This vulnerability is known to be chained with CVE-2018-0798...

Microsoft Chakra Memory Allocator Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Chakra. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within Chakra's memory...

Microsoft Edge Scripting Engine Memory Corruption (CVE-2018-0774)

A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to the way that the scripting engine handles objects in memory in Microsoft Edge. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the curre...

Cisco WebEx ARF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco WebEx Network Recording Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

Cisco WebEx ARF File DLL Planting Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco WebEx Network Recording Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...