Lucene search
K

88 matches found

Kaspersky
Kaspersky
added 2018/02/13 12:0 a.m.204 views

KLA11197 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain priveleges and obtain sensitive information. Below is a complete list of vulnerabilities: 1. Remote code execution vulnerability in Microsoft Office...

9.3CVSS8.8AI score0.2043EPSS
Exploits0References26
Tenable Nessus
Tenable Nessus
added 2018/02/13 12:0 a.m.118 views

Security Updates for Microsoft Office Products (February 2018)

The Microsoft Office Products are missing security updates. It is, therefore, affected by the following vulnerabilities : - A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully...

9.3CVSS7.6AI score0.19536EPSS
Exploits0References9
CVE
CVE
added 2017/11/16 11:0 p.m.45 views

CVE-2017-0853

CVE-2017-0853 is an information-disclosure vulnerability in Android’s Media framework affecting 7.0, 7.1.1, 7.1.2 and 8.0 on Pixel/Nexus devices. Connected CNVD entry confirms a Media framework information-disclosure issue; Pixel bulletin explicitly lists CVE-2017-0853 in the Media framework with...

9.1CVSS7AI score0.00483EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2017/09/06 9:29 p.m.26 views

CVE-2015-0853

svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$xeyes...

9.3CVSS7.5AI score0.03311EPSS
Exploits1References1
NVD
NVD
added 2017/09/06 9:29 p.m.13 views

CVE-2015-0853

svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$xeyes...

9.3CVSS8.7AI score0.03311EPSS
Exploits1References5
Cvelist
Cvelist
added 2017/09/06 9:0 p.m.19 views

CVE-2015-0853

svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$xeyes...

8.8AI score0.03311EPSS
Exploits1References5
CVE
CVE
added 2017/09/06 9:0 p.m.46 views

CVE-2015-0853

CVE-2015-0853 affects svn-workbench 1.6.2 and earlier. The vulnerability allows local users to execute arbitrary commands via the Command Shell menu item when in trunk/$(xeyes). Root cause described as command execution vulnerability in svn-workbench; no exploitation details or affected versions ...

9.3CVSS8.6AI score0.03311EPSS
Exploits1References5Affected Software1
Debian CVE
Debian CVE
added 2017/09/06 9:0 p.m.32 views

CVE-2015-0853

Removed by vendor...

9.3CVSS8.8AI score0.03311EPSS
Exploits1
OpenVAS
OpenVAS
added 2017/07/28 12:0 a.m.24 views

Netscape Enterprise Server Authentication Buffer Overflow Vulnerability

Netscape Enterprise Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

10CVSS7.2AI score0.03395EPSS
Exploits0References2
CVE
CVE
added 2017/05/11 2:1 p.m.27 views

CVE-2004-0853

This CVE-2004-0853 entry is rejected and not used.

7.4AI score
Exploits0
CVE
CVE
added 2016/01/15 2:0 a.m.46 views

CVE-2016-0853

Advantech WebAccess (HMI/SCADA) before version 8.1 is affected by CVE-2016-0853, enabling remote attackers to obtain sensitive information via crafted input. The advisory notes the issue is tied to input handling and results in information disclosure. Advantech released WebAccess 8.1 to address v...

7.5CVSS7.6AI score0.02264EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2014/02/25 9:0 p.m.36 views

CVE-2014-0853

The CVE-2014-0853 issue affects IBM Rational Focal Point 6.4.x and 6.5.x prior to 6.5.2.3, and 6.6.x prior to 6.6.1. The vulnerability involves multiple cross-site scripting (XSS) flaws in the ForwardController and AttributeEditor scripts, allowing remote authenticated users to inject arbitrary w...

3.5CVSS5.2AI score0.00936EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2013/12/07 9:0 p.m.71 views

CVE-2013-0853

CVE-2013-0853 refers to a vulnerability in FFmpeg/libav where the wavpack_decode_frame function in libavcodec/wavpack.c could be triggered by crafted WavPack data, causing an out-of-bounds array access (likely due to an off-by-one error). The issue is exploitable remotely and is due to memory cor...

9.3CVSS6.8AI score0.02447EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2013/12/07 9:0 p.m.28 views

CVE-2013-0853

The wavpackdecodeframe function in libavcodec/wavpack.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted WavPack data, which triggers an out-of-bounds array access, possibly due to an off-by-one error...

6.7AI score0.02447EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2013/12/07 9:0 p.m.53 views

CVE-2013-0853

The wavpackdecodeframe function in libavcodec/wavpack.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted WavPack data, which triggers an out-of-bounds array access, possibly due to an off-by-one error...

9.3CVSS6.7AI score0.02447EPSS
Exploits0
securityvulns
securityvulns
added 2013/11/18 12:0 a.m.50 views

[SECURITY] [DSA 2793-1] libav security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2793-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 09, 2013 http://www.debian.org/security/faq -...

9.3CVSS1.5AI score0.03618EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/11/08 12:0 a.m.21 views

Debian: Security Advisory (DSA-2793-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.7AI score0.03618EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/01/17 12:0 a.m.38 views

Fedora 18 : java-1.7.0-openjdk-1.7.0.9-2.3.4.fc18 (2013-0853)

This update fixes rhbz895035 , which consists of a set of flaws that potentially allow arbitrary code execution including remotely via applets. It is strongly recommended that all Java users in Fedora immediately update to this release. Note that Tenable Network Security has extracted the precedi...

10CVSS9.3AI score0.97612EPSS
Exploits38References4
OpenVAS
OpenVAS
added 2012/10/22 12:0 a.m.38 views

Gentoo Security Advisory GLSA 201210-06 (libav)

The remote host is missing updates announced in advisory GLSA 201210-06. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

10CVSS9.6AI score0.04686EPSS
Exploits2References3
OSV
OSV
added 2012/08/20 6:55 p.m.5 views

CVE-2012-0853

The decodeTonalComponents function in the Actrac3 codec atrac3.c in libavcodec in FFmpeg 0.7.x before 0.7.12, and 0.8.x before 0.8.11; and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service infinite loop...

7.5AI score
Exploits0References7
Rows per page
Query Builder