82 matches found
CVE-2018-8540
A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka ".NET Framework Remote Code Injection Vulnerability." This affects Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 4.7/4.7.1/4.7.2, Microsoft...
CVE-2018-8540
A remote code execution vulnerability exists when the Microsoft .NET Framework fails to validate input properly, aka ".NET Framework Remote Code Injection Vulnerability." This affects Microsoft .NET Framework 4.6, Microsoft .NET Framework 3.5, Microsoft .NET Framework 4.7/4.7.1/4.7.2, Microsoft...
CVE-2018-8540
CVE-2018-8540 is a remote code execution vulnerability in Microsoft .NET Framework caused by improper input validation. Affected products include various .NET Framework versions (e.g., 4.6, 4.7.x, 3.5.x, 4.5.2, 4.6.2, 4.7.2, 3.5.1) and related Microsoft tools; multiple OpenVAS entries also refere...
Microsoft Windows Multiple Vulnerabilities (KB4471329)
This host is missing a critical security update according to Microsoft KB4471329 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Description of the Security Only update for .NET Framework 3.5 SP1 for Windows Server 2008 SP2 (KB 4470633)
Description of the Security Only update for .NET Framework 3.5 SP1 for Windows Server 2008 SP2 KB 4470633 Applies to: Microsoft .NET Framework 3.5 Service Pack 1 Summary This security update resolves a vulnerability in Microsoft .NET Framework that could allow remote code execution when Microsoft...
KB4471322: Windows 8.1 and Windows Server 2012 R2 December 2018 Security Update
The remote Windows host is missing security update 4471322 or cumulative update 4471320. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when the Internet Explorer VBScript execution policy does not properly restrict VBScript under specific...
Security and Quality Rollup updates for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows Server 2012 (KB 4471988)
Security and Quality Rollup updates for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows Server 2012 KB 4471988 Applies to: Microsoft .NET Framework 3.5, Microsoft .NET Framework 4.5.2, Microsoft .NET Framework 4.6, Microsoft .NET Framework 4.6.1, Microsoft .NET...
Security Bulletin: Multiple vulnerabilities in libpng affect IBM Cognos Metrics Manager (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)
Summary The vulnerabilities have been addressed in the libpng component of IBM Cognos Metrics Manager Vulnerability Details CVEID: CVE-2015-8126 DESCRIPTION: libpng is vulnerable to a buffer overflow, caused by improper bounds checking by the pngsetPLTE and pnggetPLTE functions. By persuading a...
Security Bulletin: Several vulnerabilities in the libpng component of IBM Cognos Business Intelligence Server (CVE-2015-8126, CVE-2015-8472, CVE-2015-8540)
Summary Several vulnerabilities has been addressed in the libpng component of IBM Cognos Business Intelligence Server. Vulnerability Details CVEID: CVE-2015-8126 DESCRIPTION: libpng is vulnerable to a buffer overflow, caused by improper bounds checking by the pngsetPLTE and pnggetPLTE functions. ...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM OS Images for Red Hat Linux Systems, IBM OS Images for AIX, and Windows. (CVE-2015-5041, CVE-2015-7575, CVE-2015-7981, CVE-2015-8126, CVE-2015-8472, and CVE-2015-8540)
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 and 7, that is used by IBM OS Images for Red Hat Linux Systems, AIX, and Windows. These issues were disclosed as part of the IBM Java SDK updates in January 2016 and includes the vulnerability commonly...
CVE-2014-8540
The CVE covers GitLab’s groups API in versions 6.x and 7.x up to 7.4.3, where remote authenticated guest users could modify ownership of arbitrary groups due to improper permission checks. Impact is ownership modification without authorization; CVSS vectors indicate low attack complexity with par...
CVE-2017-8540
creationtimestamp| type| source ---|---|--- 2017-05-30 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/42088 2023-06-14 21:10:03+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2024-12-24 20:27:47+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/2971335 2025-02-23...
Microsoft Malware Protection Engine Remote Code Execution (CVE-2017-8540)
A memory corruption vulnerability has been reported in Microsoft Malware Protection Engine. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file. A successful exploitation could lead to arbitrary code execution...
openSUSE Security Update : libpng15 (openSUSE-2017-477)
This update for libpng15 fixes the following issues : Security issues fixed : - CVE-2015-8540: read underflow in libpng bsc958791 - CVE-2016-10087: NULL pointer dereference in pngsettext2 bsc1017646 This update was imported from the SUSE:SLE-12-SP1:Update update project. %NASLMINLEVEL 70300 C...
SUSE SLED12 / SLES12 Security Update : libpng15 (SUSE-SU-2017:0950-1)
This update for libpng15 fixes the following issues: Security issues fixed : - CVE-2015-8540: read underflow in libpng bsc958791 - CVE-2016-10087: NULL pointer dereference in pngsettext2 bsc1017646 Note that Tenable Network Security has extracted the preceding description block directly from the...
SUSE-SU-2017:0950-1 Security update for libpng15
This update for libpng15 fixes the following issues: Security issues fixed: - CVE-2015-8540: read underflow in libpng bsc958791 - CVE-2016-10087: NULL pointer dereference in pngsettext2 bsc1017646...
SUSE SLES11 Security Update : libpng12-0 (SUSE-SU-2017:0901-1)
This update for libpng12-0 fixes the following issues: Security issues fixed : - CVE-2015-8540: read underflow in libpng bsc958791 - CVE-2016-10087: NULL pointer dereference in pngsettext2 bsc1017646 Note that Tenable Network Security has extracted the preceding description block directly from th...
SUSE-SU-2017:0901-1 Security update for libpng12-0
This update for libpng12-0 fixes the following issues: Security issues fixed: - CVE-2015-8540: read underflow in libpng bsc958791 - CVE-2016-10087: NULL pointer dereference in pngsettext2 bsc1017646...
SUSE-SU-2017:0860-1 Security update for libpng12
This update for libpng12 fixes the following issues: Security issues fixed: - CVE-2015-8540: read underflow in libpng bsc958791 - CVE-2016-10087: NULL pointer dereference in pngsettext2 bsc1017646...
CVE-2016-8540
CVE-2016-8540 entry is rejected/not used and does not represent an active vulnerability.