88 matches found
KLA11477 OSI vulnerability in Microsoft SQL Server
An information disclosure vulnerability in Microsoft SQL Server Analysis Services can be exploited remotely via specially crafted query to obtain sensitive information. Original advisories CVE-2019-0819 Related products Microsoft-SQL-Server CVE list CVE-2019-0819 warning KB list 4494351 4494352...
Microsoft Office Multiple Remote Code Execution Vulnerabilities (Jan 2018) - Mac OS X
This host is missing an important security update for Microsoft Office 2016 on Mac OS X according to Microsoft security update January 2018 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
CVE-2018-0819
CVE-2018-0819 affects Microsoft Office for Mac (Outlook for Mac) and is a spoofing vulnerability rooted in how email addresses are encoded/displayed. The issue allows an attacker to send a specially crafted email attachment that could cause spoofed addresses to bypass antivir/antispam tooling and...
CVE-2018-0819
Microsoft Office 2016 for Mac allows an attacker to send a specially crafted email attachment to a user in an attempt to launch a social engineering attack, such as phishing, due to how Outlook for Mac displays encoded email addresses, aka "Spoofing Vulnerability in Microsoft Office for Mac."...
CVE-2017-0819
A vulnerability in the Android media framework n/a. Product: Android. Versions: 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63045918...
CVE-2017-0819
The CVE-2017-0819 entry concerns a DoS vulnerability in Android’s media framework. The connected Pixel/Nexus security bulletin entry IPTV (Android security bulletin) lists CVE-2017-0819 under the Media framework with type NSI/DoS and indicates affected Android versions 7.0, 7.1.1, 7.1.2, and 8.0,...
CVE-2011-4933
CVE-2011-4933 is rejected; use CVE-2012-0819 instead.
CVE-2016-0819
The Qualcomm performance component in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01 allows attackers to gain privileges via a crafted application, aka internal bug 25364034...
CVE-2016-0819
The Qualcomm performance component in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01 allows attackers to gain privileges via a crafted application, aka internal bug 25364034...
CVE-2016-0819
CVE-2016-0819 affects the Qualcomm performance component in Android, with exploitation possible by a crafted application to gain privileges in the kernel. Affected versions are Android 4.x up to 4.4.3, 5.x up to 5.1.0 LMY49H, and 6.x before 2016-03-01. The issue is described as an elevation-of-pr...
CVE-2016-0819
The Qualcomm performance component in Android 4.x before 4.4.4, 5.x before 5.1.1 LMY49H, and 6.x before 2016-03-01 allows attackers to gain privileges via a crafted application, aka internal bug 25364034...
Oracle: Security Advisory (ELSA-2010-0819)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-2505-2 firefox regression
USN-2505-1 fixed vulnerabilities in Firefox. This update removed the deprecated "-remote" command-line switch that some older software still depends on. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Matthew Noorenberghe discovered that allowlisted...
openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2015:0404-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : MozillaFirefox / mozilla-nss (openSUSE-2015-185)
MozillaFirefox, mozilla-nss were updated to fix 18 security issues. MozillaFirefox was updated to version 36.0. These security issues were fixed : - CVE-2015-0835, CVE-2015-0836: Miscellaneous memory safety hazards - CVE-2015-0832: Appended period to hostnames can bypass HPKP and HSTS protections...
Security update for MozillaFirefox, mozilla-nss (important)
MozillaFirefox, mozilla-nss were updated to fix 18 security issues. MozillaFirefox was updated to version 36.0. These security issues were fixed: - CVE-2015-0835, CVE-2015-0836: Miscellaneous memory safety hazards - CVE-2015-0832: Appended period to hostnames can bypass HPKP and HSTS protections ...
CVE-2015-0819
The UITour::onPageEvent function in Mozilla Firefox before 36.0 does not ensure that an API call originates from a foreground tab, which allows remote attackers to conduct spoofing and clickjacking attacks by leveraging access to a UI Tour web site...
CVE-2015-0819
The UITour::onPageEvent function in Mozilla Firefox before 36.0 does not ensure that an API call originates from a foreground tab, which allows remote attackers to conduct spoofing and clickjacking attacks by leveraging access to a UI Tour web site...
CVE-2015-0819
The CVE-2015-0819 issue affects Mozilla Firefox and stems from UITour::onPageEvent not validating that an API call originates from a foreground tab. This can enable spoofing and clickjacking when a UITour page in a background tab is whitelisted. Affected releases are Firefox versions before 36.0;...
Autodesk AutoCAD不可信搜索路径权限提升漏洞
CVE ID:CVE-2014-0819 Autodesk AutoCAD是一款强大的大型计算机辅助绘图软件。 Autodesk AutoCAD不正确处理搜索路径,允许本地攻击者利用漏洞在当前工作目录存放木马DLL来提升权限。 0 Autodesk AutoCAD 2013 厂商补丁: Autodesk ----- 用户可联系厂商获得相应的升级或补丁程序: http://www.autodesk.com/products/autodesk-autocad/overview...