52 matches found
Microsoft Windows Kernel 'Win32k.sys' CVE-2018-8565 Local Information Disclosure Vulnerability
Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to disclose sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Versi...
KB4467700: Windows Server 2008 November 2018 Security Update
The remote Windows host is missing security update 4467700 or cumulative update 4467706. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability...
Microsoft Windows Server 2012 Multiple Vulnerabilities (KB4025343)
This host is missing a critical security update according to Microsoft KB4025343 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-8565
Windows PowerShell in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a remote code execution vulnerability when PSObject wraps a CIM Instance, aka "Windows PowerShel...
CVE-2017-8565
CVE-2017-8565 is a Windows PowerShell remote code execution vulnerability triggered when PSObject wraps a CIM Instance. Connected sources describe in detail that deserialization via PSObject, LosFormatter, ObjectStateFormatter (and related gadget chains) can enable remote code execution in PowerS...
CVE-2016-8565
Siemens ALM (Automation License Manager) vulnerable to a remote path-traversal flaw in all versions before 5.3 SP3 Update 1. A remote attacker can send crafted packets to ALM to write/rename files, create or delete directories. Remediation: update to ALM version 5.3 SP3 Update 1; restrict access ...
Siemens Automation License Manager Vulnerabilities
OVERVIEW Siemens has identified vulnerabilities in Siemen’s Automation License Manager ALM. These vulnerabilities were reported directly to Siemens by Sergey Temnikov and Vladimir Dashchenko from Critical Infrastructure Defence Team, Kaspersky Lab. Siemens has produced a new version to mitigate...
CVE-2015-8565
CVE-2015-8565 is a Joomla! directory traversal vulnerability impacting Joomla! 3.2.0–3.3.x and 3.4.x before 3.4.6. Root cause: improper sanitization/external input handling allows reading arbitrary files. Impact is unspecified in some sources; remediation is to upgrade to Joomla! 3.4.6 or later. ...
Joomla! < 3.4.6 Multiple Vulnerabilities
According to its self-reported version number, the Joomla! installation running on the remote web server is prior to 3.4.6. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists due to improper sanitization of session values. An unauthenticated,...
CVE-2014-8565
CVE-2014-8565 concerns McAfee FRP/EEFF encryption components (FRP 4.3.0.x; EEFF 3.2.x–4.2.x). The vulnerability arises from using a hard-coded salt in the offsite encryption options (Removable Media and CD/DVD access), enabling local users to brute-force passwords more easily. This is documented ...
CVE-2014-8565
...
cURL/libcURL 7.x < 7.39.0 'curl_easy_duphandle()' Out-of-Bounds Read Issue
Binary data 8565.prm...