116 matches found
CVE-2018-0946
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0945, CVE-2018-0951, CVE-2018-0953,...
Remote code execution
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-0946, CVE-2018-0951, CVE-2018-0953,...
CVE-2018-0946
CVE-2018-0946 describes a remote code execution vulnerability in the scripting engine memory handling, affecting Microsoft Edge and ChakraCore. The connected sources corroborate an RCE in the scripting engine (memory corruption). Exploitation is evidenced by exploit-db entries (e.g., 44758). The ...
Microsoft Windows Multiple Vulnerabilities (KB4103731)
This host is missing a critical security update according to Microsoft KB4103731 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EMC AlphaStor Library Manager < 4.0 build 910 - Opcode 0x4f Buffer Overflow (Metasploit)
require 'msf/core' class MetasploitModule 'EMC AlphaStor Library Manager Opcode 0x4f', 'Description' = %q This module exploits a stack based buffer overflow found in EMC Alphastor Library Manager version 'james fitts' , 'License' = MSFLICENSE, 'References' = 'URL',...
Adobe Acrobat Multiple Vulnerabilities - 01 (Jan 2016) - Mac OS X
Adobe Acrobat is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobat"; ifdescription...
CVE-2016-0946
Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors...
CVE-2016-0946
Technical details for CVE-2016-0946 are not publicly available in the provided documents. No concrete information on affected products, vectors, or fixes is present; monitor for updates.
Oracle: Security Advisory (ELSA-2008-0946)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OracleVM 2.1 : freetype (OVMSA-2009-0012)
The remote OracleVM system is missing necessary patches to address critical security updates : CVE-2009-0946 Multiple integer overflows in FreeType 2.3.9 and earlier allow remote attackers to execute arbitrary code via vectors related to large values in certain inputs in 1 smooth/ftsmooth.c, 2...
CVE-2014-0946
CVE-2014-0946 concerns IBM Operational Decision Manager (ODM) RES Console in Rule Execution Server. The vulnerability arises from missing Cache-Control HTTP headers, which could allow an attacker to obtain sensitive information from an unattended workstation. Affected products/versions include IB...
CVE-2014-0946
The RES Console in Rule Execution Server in IBM Operational Decision Manager 7.5 before FP3 IF37, 8.0 before MP1 FP2, and 8.5 before MP1 IF26 does not send appropriate Cache-Control HTTP headers, which allows remote attackers to obtain sensitive information by leveraging an unattended workstation...
Amazon Linux AMI : nvidia (ALAS-2012-67)
The NVIDIA UNIX driver before 295.40 allows local users to access arbitrary memory locations by leveraging GPU device-node read/write privileges. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux AMI Security Advisory...
EMC AlphaStor Library Control Program Multiple Buffer Overflows (CVE-2013-0946)
Multiple buffer overflow vulnerabilities has been reported in EMC AlphaStor Library Control Program LCP...
Oracle Linux 5 : ed (ELSA-2008-0946)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2008-0946 advisory. 0.2-39 - add fix for CVE-2008-3916 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has...
CVE-2013-0946
CVE-2013-0946 is an EMC AlphaStor vulnerability in the Library Control Program (LCP) for EMC AlphaStor 4.0 build 910 and earlier. The issue is a stack-based buffer overflow triggered while processing remote commands, allowing an unauthenticated remote attacker to potentially execute arbitrary cod...
CVE-2013-0946
Buffer overflow in the Library Control Program LCP in EMC AlphaStor 4.0 before build 910 allows remote attackers to execute arbitrary code via crafted commands...
Scientific Linux Security Update : freetype on SL3.x, SL4.x, SL5.x i386/x86_64
Tavis Ormandy of the Google Security Team discovered several integer overflow flaws in the FreeType 2 font engine. If a user loaded a carefully-crafted font file with an application linked against FreeType 2, it could cause the application to crash or, possibly, execute arbitrary code with the...
FreeBSD : NVIDIA UNIX driver -- access to arbitrary system memory (b91234e7-9a8b-11e1-b666-001636d274f3)
NVIDIA Unix security team reports : Security vulnerability CVE-2012-0946 in the NVIDIA UNIX driver was disclosed to NVIDIA on March 20th, 2012. The vulnerability makes it possible for an attacker who has read and write access to the GPU device nodes to reconfigure GPUs to gain access to arbitrary...
CVE-2012-0946
The NVIDIA UNIX driver before 295.40 allows local users to access arbitrary memory locations by leveraging GPU device-node read/write privileges...