Adobe Acrobat Reader DC Fields Format Action Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the handling of fields. A...

Adobe Reader DC AcroForm Heap Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within AcroForm. A...

Microsoft Windows JavaScript Regular Expression Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to search and replac...

Adobe Flash TextFormat tabStops Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the TextFormat...

Adobe Acrobat Reader DC Fields Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the handling of specific...

Python Untrusted Search Path Vulnerability

Python is an open source, object-oriented programming language from the Python Software Foundation. The language is extensible, supports modules and packages, and supports multiple platforms. An untrusted search path vulnerability exists in the python.exe file in Python 3.5.0 and earlier versions...

Microsoft Internet Explorer CTitleElement Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Slackware 14.0 / 14.1 / current : seamonkey (SSA:2015-274-03)

New seamonkey packages are available for Slackware 14.0, 14.1, and -current to fix security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2015-274-03. The text itself is copyright...

Python for Windows may insecurely load dynamic libraries

Overview Python for Windows contains an issue with the DLL search path, which may lead to insecurely loading a DLL called readline.pyd. Takashi Yoshikawa of Mitsui Bussan Secure Directions reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Earl...

(Pwn2Own) Adobe Flash Player DefineText Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

Microsoft Office Memory Corruption Vulnerability (CNVD-2015-05990)

Microsoft Office is an office software suite of products developed by the American Microsoft Corporation Microsoft. A memory corruption vulnerability exists when Microsoft Office software fails to properly handle objects in memory, which can be exploited by a remote attacker to execute arbitrary...

Microsoft Office Memory Corruption Vulnerability (CNVD-2015-05989)

Microsoft Office is an office software suite of products developed by the American Microsoft Corporation Microsoft. A memory corruption vulnerability exists when Microsoft Office software fails to properly handle objects in memory, which can be exploited by a remote attacker to execute arbitrary...

Microsoft Office Memory Corruption Vulnerability (CNVD-2015-05987)

Microsoft Office is an office software suite of products developed by the American Microsoft Corporation Microsoft. A memory corruption vulnerability exists when Microsoft Office software fails to properly handle objects in memory, which can be exploited by a remote attacker to execute arbitrary...

Microsoft Internet Explorer Memory Corruption Vulnerability (CNVD-2015-05911)

Microsoft Internet Explorer IE is a Web browser developed by the American company Microsoft and is the default browser that comes with the Windows operating system. A security vulnerability exists when Microsoft IE versions 7 through 11 fail to properly access objects in memory. The vulnerability...

Microsoft Internet Explorer Memory Corruption Vulnerability (CNVD-2015-05909)

Microsoft Internet Explorer IE is a Web browser developed by the American company Microsoft and is the default browser that comes with the Windows operating system. A security vulnerability exists when Microsoft IE versions 7 through 11 fail to properly access objects in memory. The vulnerability...

Microsoft Internet Explorer Memory Corruption Vulnerability (CNVD-2015-05906)

Microsoft Internet Explorer IE is a Web browser developed by the American company Microsoft and is the default browser that comes with the Windows operating system. A security vulnerability exists when Microsoft IE versions 9 through 10 fails to properly access objects in memory. The vulnerabilit...

Microsoft Internet Explorer CImgElement Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft Internet Explorer CTableColCalc Out-Of-Bounds Memory Access Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft Internet Explorer CAttrValue Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Fedora 23 : drupal6-ctools-1.14-1.fc23 (2015-14329)

See Ctools - Critical - Multiple Vulnerabilities - SA- CONTRIB-2015-141. This is an incremental security and bugfix release for ctools. Looking to fix future D6 CTools issues? Find japerry or merlinofchaos in drupal-scotch, drupal- contribute, or drupal-panels -- and become a maintainer for D6...