118 matches found
ZDI-11-123: Microsoft PowerPoint TimeCommandBehaviorContainer Remote Code Execution Vulnerability
ZDI-11-123: Microsoft PowerPoint TimeCommandBehaviorContainer Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-123 April 12, 2011 -- CVE ID: CVE-2011-0655 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Microsoft -- Affected Products: Microsoft...
MS11-021 / MS11-022 / MS11-023: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2489279 / 2489283 / 2489293) (Mac OS X)
The remote Mac OS X host is running a version of Microsoft Office that is affected by several vulnerabilities. If an attacker can trick a user on the affected host into opening a specially crafted Office file, these issues could be leveraged to execute arbitrary code subject to the user's...
Microsoft Office PowerPoint Remote Code Execution Vulnerabilities (2489283)
This host is missing a critical security update according to Microsoft Bulletin MS11-022. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Google Chrome Multiple Vulnerabilities - (Windows)
This host is installed with Google Chrome and is prone to multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodgooglechromemultvulnwin01.nasl 5394 2017-02-22 09:22:42Z teissa $ Google Chrome Multiple Vulnerabilities - Windows Authors: Antu Sanadi Copyright: Copyright c 2010 SecPod,...
CVE-2010-0655
CVE-2010-0655 describes a use-after-free vulnerability in Google Chrome prior to 4.0.249.78. The flaw allows user-assisted remote attackers to cause a crash (DoS) and, in some cases, may enable arbitrary code execution via vectors related to the display of a blocked popup window during navigation...
CVE-2010-0655
creationtimestamp| type| source ---|---|--- 2010-01-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/33664...
RHEL 3 / 4 / 5 : acroread (RHSA-2008:0144)
Updated acroread packages that fix several security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Adobe Reader allows users to view and print documents in portable documen...
CVE-2009-0655
Lenovo Veriface III allows physically proximate attackers to login to a Windows account by presenting a "plain image" of the authorized user...
CVE-2009-0655
CVE-2009-0655 : Lenovo Veriface III vulnerability allowing physically proximate attackers to login to a Windows account by presenting a "plain image" of the authorized user. Documents describe an authentication bypass with potential full compromise of confidentiality, integrity, and availability....
Gentoo Security Advisory GLSA 200803-01 (acroread)
The remote host is missing updates announced in advisory GLSA 200803-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200407-01 (esearch)
The remote host is missing updates announced in advisory GLSA 200407-01. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 200803-01 (acroread)
The remote host is missing updates announced in advisory GLSA 200803-01. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[Advisory Update]Adobe Reader/Acrobat Remote PDF Print Silently Vulnerability
UPDATEAdobe Reader/Acrobat Remote PDF Print Silently Vulnerability by [email protected] http://ruder.cdut.net, updated on 2008.05.06 Summary: A design error vulnerability exists in Adobe Reader and Adobe Acrobat Professional. A remote attacker who successfully exploit this...
Critical: Red Hat Security Advisory: acroread security update
Updated acroread packages that fix several security issues are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having critical security impact by the Red Hat Security Response Team. The Adobe Reader allows users to view and print documents in portable documen...
SuSE 10 Security Update : Acrobat Reader (ZYPP Patch Number 5010)
This version update to 8.1.2 fixes numerous bugs, including some security problems. CVE-2008-0667 / CVE-2008-0655 / CVE-2008-0726 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if...
CVE-2007-5659
Multiple buffer overflows in Adobe Reader and Acrobat 8.1.1 and earlier allow remote attackers to execute arbitrary code via a PDF file with long arguments to unspecified JavaScript methods. NOTE: this issue might be subsumed by CVE-2008-0655...
Code injection
Adobe Reader and Acrobat 8.1.1 and earlier allows remote attackers to execute arbitrary code via a crafted PDF file that calls an insecure JavaScript method in the EScript.api plug-in. NOTE: this issue might be subsumed by CVE-2008-0655...
Buffer overflow
Multiple buffer overflows in Adobe Reader and Acrobat 8.1.1 and earlier allow remote attackers to execute arbitrary code via a PDF file with long arguments to unspecified JavaScript methods. NOTE: this issue might be subsumed by CVE-2008-0655...
CVE-2007-5666
Adobe Acrobat/Reader (Windows, older than 8.1.2) is affected by an untrusted search path vulnerability where a malicious Security Provider library placed in the reader’s working directory can cause arbitrary code execution with local access. Publicly noted CVEs include CVE-2007-5666, with related...
CVE-2007-5663
CVE-2007-5663 affects Adobe Acrobat/Reader ≤ 8.1.1, where a crafted PDF can trigger an insecure JavaScript method in the EScript.api plug‑in to execute arbitrary code remotely. The issue is documented across multiple OpenVAS/Nessus sources and Red Hat advisories, which indicate that updates to at...