130 matches found
CVE-2022-0907
Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...
CVE-2022-0907
Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...
CVE-2022-0907
Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...
CVE-2022-0907
Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...
CVE-2022-0907
Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...
CVE-2022-0907
The CVE-2022-0907 entry concerns LibTIFF (libtiff) 4.3.0, where tiffcrop may dereference a NULL pointer due to an unchecked return value, enabling denial of service via a crafted TIFF file. The issue is rooted in a NULL pointer dereference in tiffcrop (and related paths handling TIFF data). For u...
CVE-2022-0907
Unchecked Return Value to NULL Pointer Dereference in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f2b656e2...
SUSE: Security Advisory (SUSE-SU-2018:0907-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-0907
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'...
CVE-2020-0907
CVE-2020-0907 is described as a remote code execution vulnerability in how Microsoft Graphics Components handles objects in memory. The connected MS KB and vendor feeds confirm this CVE is among a set of Windows updates (KB4549951 family) addressing multiple issues, but the provided documents do ...
CVE-2019-0907
The CVE-2019-0907 issue concerns the Windows Jet Database Engine and a remote code execution vulnerability caused by improper handling of objects in memory. An attacker could entice a user to open a specially crafted file to trigger arbitrary code execution on the victim’s system. Microsoft’s upd...
Microsoft Windows Multiple Vulnerabilities (KB4503291)
This host is missing a critical security update according to Microsoft KB4503291 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
Microsoft Windows JET Database Engine CVE-2019-0907 Remote Code Execution Vulnerability
Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...
Security Bulletin: Security vulnerability has been identified in IBM Systems Director, IBM Tivoli Monitoring shipped with IBM System Director Editions. (CVE-2014-0907)
Summary IBM Systems Director, IBM Tivoli Monitoring are shipped as components of IBM System Director Editions. Information about the security vulnerability affecting these components has been published in the security bulletin. Vulnerability Details Abstract IBM Systems Director, IBM Tivoli...
Security Bulletin: IBM Systems Director is affected by elevated privileges vulnerability (CVE-2014-0907)
Summary Vulnerability found in IBM Systems Director could allow a local user to gain elevated privilege. Vulnerability Details Abstract Vulnerability found in IBM Systems Director could allow a local user to gain elevated privilege. Content Vulnerability Details: CVE-ID: CVE-2014-0907 Description...
Security Bulletin: TSM client SetUID elevation of privilege (CVE-2014-0907)
Summary A vulnerability in the IBM Tivoli Storage Manager TSM AIX and HP-UX clients could allow a local user to gain elevated privilege. Vulnerability Details CVE ID: CVE-2014-0907 DESCRIPTION: The IBM Tivoli Storage Manager TSM AIX and HP-UX client binaries have been compiled in an insecure way....
Security Bulletin: IBM Tivoli Composite Application Manager for Transactions is affected by a Local escalation of privilege vulnerability (CVE-2014-0907)
Summary A vulnerability in IBM Tivoli Composite Application Manager for Transactions on Linux, Solaris and AIX could allow a local user to gain elevated privilege. Vulnerability Details CVE-ID: CVE-2014-0907 DESCRIPTION: The IBM Tivoli Composite Application Manager for Transactions products liste...
Security Bulletin: Local escalation of privilege vulnerability in IBM® DB2® (CVE-2014-0907).
Summary A vulnerability in IBM DB2 for Linux, Unix and Windows could allow a local user to gain elevated privilege. Vulnerability Details CVE ID: CVE-2014-0907 DESCRIPTION: The IBM DB2 products listed below contain a security vulnerability which allows a malicious user to gain root privilege. Thi...
Security Bulletin: Security vulnerabilities have been identified in IBM DB2 shipped with WebSphere Remote Server (CVE-2014-0907)
Summary IBM DB2 is shipped as a component of WebSphere Remote Server. Information about security vulnerabilities affecting IBM DB2 has been published in a security bulletin. Vulnerability Details For vulnerability details, see the Local escalation of privilege vulnerability in IBM DB2 CVE-2014-09...
CVE-2018-0907
Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, Microsoft Excel 2013 SP1, Microsoft Excel 2016, Microsoft Office 2016 Click-to-Run and Microsoft Office 2016 for Mac allow a security feature bypass vulnerability due to how macro settings are enforced, aka "Microsoft Office Excel Security Featu...