88 matches found
KLA11197 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain priveleges and obtain sensitive information. Below is a complete list of vulnerabilities: 1. Remote code execution vulnerability in Microsoft Office...
Security Updates for Microsoft Office Products (February 2018)
The Microsoft Office Products are missing security updates. It is, therefore, affected by the following vulnerabilities : - A remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle objects in memory. An attacker who successfully...
CVE-2017-0853
CVE-2017-0853 is an information-disclosure vulnerability in Android’s Media framework affecting 7.0, 7.1.1, 7.1.2 and 8.0 on Pixel/Nexus devices. Connected CNVD entry confirms a Media framework information-disclosure issue; Pixel bulletin explicitly lists CVE-2017-0853 in the Media framework with...
CVE-2015-0853
svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$xeyes...
CVE-2015-0853
svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$xeyes...
CVE-2015-0853
svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$xeyes...
CVE-2015-0853
CVE-2015-0853 affects svn-workbench 1.6.2 and earlier. The vulnerability allows local users to execute arbitrary commands via the Command Shell menu item when in trunk/$(xeyes). Root cause described as command execution vulnerability in svn-workbench; no exploitation details or affected versions ...
CVE-2015-0853
Removed by vendor...
Netscape Enterprise Server Authentication Buffer Overflow Vulnerability
Netscape Enterprise Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2004-0853
This CVE-2004-0853 entry is rejected and not used.
CVE-2016-0853
Advantech WebAccess (HMI/SCADA) before version 8.1 is affected by CVE-2016-0853, enabling remote attackers to obtain sensitive information via crafted input. The advisory notes the issue is tied to input handling and results in information disclosure. Advantech released WebAccess 8.1 to address v...
CVE-2014-0853
The CVE-2014-0853 issue affects IBM Rational Focal Point 6.4.x and 6.5.x prior to 6.5.2.3, and 6.6.x prior to 6.6.1. The vulnerability involves multiple cross-site scripting (XSS) flaws in the ForwardController and AttributeEditor scripts, allowing remote authenticated users to inject arbitrary w...
CVE-2013-0853
CVE-2013-0853 refers to a vulnerability in FFmpeg/libav where the wavpack_decode_frame function in libavcodec/wavpack.c could be triggered by crafted WavPack data, causing an out-of-bounds array access (likely due to an off-by-one error). The issue is exploitable remotely and is due to memory cor...
CVE-2013-0853
The wavpackdecodeframe function in libavcodec/wavpack.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted WavPack data, which triggers an out-of-bounds array access, possibly due to an off-by-one error...
CVE-2013-0853
The wavpackdecodeframe function in libavcodec/wavpack.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted WavPack data, which triggers an out-of-bounds array access, possibly due to an off-by-one error...
[SECURITY] [DSA 2793-1] libav security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2793-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 09, 2013 http://www.debian.org/security/faq -...
Debian: Security Advisory (DSA-2793-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 18 : java-1.7.0-openjdk-1.7.0.9-2.3.4.fc18 (2013-0853)
This update fixes rhbz895035 , which consists of a set of flaws that potentially allow arbitrary code execution including remotely via applets. It is strongly recommended that all Java users in Fedora immediately update to this release. Note that Tenable Network Security has extracted the precedi...
Gentoo Security Advisory GLSA 201210-06 (libav)
The remote host is missing updates announced in advisory GLSA 201210-06. SPDX-FileCopyrightText: 2012 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...
CVE-2012-0853
The decodeTonalComponents function in the Actrac3 codec atrac3.c in libavcodec in FFmpeg 0.7.x before 0.7.12, and 0.8.x before 0.8.11; and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service infinite loop...