78 matches found
CVE-2020-0761
creationtimestamp| type| source ---|---|--- 2020-09-10 06:36:29+00:00| published-proof-of-concept| https://t.me/xnotes/195...
KB4570333: Windows 10 Version 1809 and Windows Server 2019 September 2020 Security Update
The remote Windows host is missing security update 4570333. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary co...
KB4577070: Windows Server 2008 September 2020 Security Update
The remote Windows host is missing security update 4577070 or cumulative update 4577064. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory. CVE-2020-0648 - An elevation of...
KB4577053: Windows 7 and Windows Server 2008 R2 September 2020 Security Update
The remote Windows host is missing security update 4577053 or cumulative update 4577051. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory. CVE-2020-0648 - An elevation of...
CVE-2019-0761
A security feature bypass vulnerability exists when Internet Explorer fails to validate the correct Security Zone of requests for specific URLs, aka 'Internet Explorer Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0768...
CVE-2019-0761
A security feature bypass vulnerability exists when Internet Explorer fails to validate the correct Security Zone of requests for specific URLs, aka 'Internet Explorer Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0768...
CVE-2019-0761
Technical details for CVE-2019-0761 are not publicly available in the provided documents; the corpus mentions IE security feature bypass but does not disclose affected components, versions, root cause, or remediation. Monitor for updates.
Security Updates for Internet Explorer (March 2019)
The Internet Explorer installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge. The vulnerability cou...
KB4489884: Windows Server 2012 March 2019 Security Update
The remote Windows host is missing security update 4489884 or cumulative update 4489891. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that Windows Deployment Services TFTP Server handles objects in memory. An attacker who...
Microsoft Windows EOT Font Engine Information Disclosure (CVE-2018-0761)
An information disclosure vulnerability has been reported in the EOT component of Microsoft Windows operating systems. The vulnerability is due to improper handling of objects in the Windows EOT Font Engine. A remote attacker could exploit this vulnerability by enticing a user to open specially...
CVE-2018-0761
The Microsoft Windows Embedded OpenType EOT font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". This CVE ID is unique fro...
Information disclosure
The Microsoft Windows Embedded OpenType EOT font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". This CVE ID is unique fro...
Information disclosure
The Microsoft Windows Embedded OpenType EOT font engine in Microsoft Windows 7 SP1, Windows Server 2008 R2, and Windows Server 2012 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". Thi...
CVE-2018-0761
CVE-2018-0761 concerns the Windows EOT Font Engine information disclosure in Microsoft Windows, caused by improper handling of embedded fonts. Affects Windows 7 SP1 and Windows Server 2008 R2 (per NVD entry for CVE-2018-0761); related advisories describe the same class of vulnerability across Win...
KB4074587: Windows 7 and Windows Server 2008 R2 February 2018 Security Update
The remote Windows host is missing security update 4074587 or cumulative update 4074598. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability...
CVE-2017-0761
CVE-2017-0761 affects Android's media framework (libavc). It is a remote code execution vulnerability impacting Android 6.0/6.0.1, 7.0, 7.1.1, 7.1.2 and 8.0. The issue is documented in the Android Security Bulletin with patches released for the 2017-09-01/2017-09-05 patch levels; mitigation is to...
CVE-2016-0761
Cloud Foundry Garden-Linux versions prior to v0.333.0 and Elastic Runtime 1.6.x version prior to 1.6.17 contain a flaw in managing container files during Docker image preparation that could be used to delete, corrupt or overwrite host files and directories, including other container filesystems o...
CVE-2016-0761
CVE-2016-0761 affects Cloud Foundry Garden-Linux (versions prior to v0.333.0) and Elastic Runtime 1.6.x prior to 1.6.17. The flaw is in how container files are managed during Docker image preparation, which could allow deletion, corruption, or overwriting of host files and directories, including ...
CVE-2015-0761
Cisco AnyConnect Secure Mobility Client before 3.18009 and 4.x before 4.02052 on Linux does not properly implement unspecified internal functions, which allows local users to obtain root privileges via crafted vpnagent options, aka Bug ID CSCus86790...
CVE-2015-0761
Cisco AnyConnect Secure Mobility Client for Linux (Linux builds affected: before 3.1(8009) and before 4.0(2052)) contains a local privilege escalation due to improper implementation of internal functions, allowing an authenticated, local attacker to obtain root privileges by crafting vpnagent opt...