1712 matches found
CVE-2017-11221
CVE-2017-11221 affects Adobe Acrobat/Reader family (including DC/Continuous and Classic tracks). The vulnerability is a type confusion in the annotation functionality that could lead to arbitrary code execution on affected builds. The related OpenVAS entries reference APSB17-24 security updates f...
CVE-2017-11221
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable type confusion vulnerability in the annotation functionality. Successful exploitation could lead to arbitrary code execution...
Foxit Reader Annotations style Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within Annotation object's...
Foxit Reader Annotations lock Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within Annotation object's...
CVE-2017-3047
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable use after free vulnerability in the JavaScript engine's annotation-related API. Successful exploitation could lead to arbitrary code execution...
CVE-2017-3024
Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability when manipulating PDF annotations. Successful exploitation could lead to arbitrary code execution...
SUSE-SU-2017:0346-1 Security update for java-1_8_0-openjdk
This update for java-180-openjdk fixes the following issues: Oracle Critical Patch Update of January 2017 bsc1020905 Upgrade to version jdk8u121 icedtea 3.3.0: - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolution...
CVE-2016-6652
SQL injection vulnerability in Pivotal Spring Data JPA before 1.9.6 Gosling SR6 and 1.10.x before 1.10.4 Hopper SR4, when used with a repository that defines a String query using the @Query annotation, allows attackers to execute arbitrary JPQL commands via a sort instance with a function call...
Fedora 24 : php-symfony (2016-224edc14dd)
Version 2.7.13 2016-05-09 - security 18733 limited the maximum length of a submitted username fabpot - bug 18730 FrameworkBundle prevent calling get for servicecontainer service xabbuh - bug 18709 DependencyInjection top-level anonymous services must be public xabbuh - bug 18692 add Event...
Fedora 23 : php-symfony (2016-f36247d441)
Version 2.7.13 2016-05-09 - security 18733 limited the maximum length of a submitted username fabpot - bug 18730 FrameworkBundle prevent calling get for servicecontainer service xabbuh - bug 18709 DependencyInjection top-level anonymous services must be public xabbuh - bug 18692 add Event...
Fedora 22 : php-symfony (2016-4ad874e6c2)
Version 2.7.13 2016-05-09 - security 18733 limited the maximum length of a submitted username fabpot - bug 18730 FrameworkBundle prevent calling get for servicecontainer service xabbuh - bug 18709 DependencyInjection top-level anonymous services must be public xabbuh - bug 18692 add Event...
Adobe Reader DC Uninitialized Memory Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...
Memory corruption
Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted...
CVE-2016-0931
Adobe Reader and Acrobat before 11.0.14, Acrobat and Acrobat Reader DC Classic before 15.006.30119, and Acrobat and Acrobat Reader DC Continuous before 15.010.20056 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted...
PT-2016-1113 · Ibm +1 · Ibm Tivoli Common Reporting +7
Name of the Vulnerable Software and Affected Versions: IBM WebSphere Application Server versions affected versions not specified IBM Tivoli Common Reporting versions affected versions not specified IBM Sterling B2B Integrator versions affected versions not specified IBM Sterling Integrator versio...
Mail.ru: [otus.p.mail.ru] Full Path Disclosure
Не факт, что вам удастся это исправить, так как проблема в стороннем ПО - "brat rapid annotation tool" Который доступен по ссылке otus.p.mail.ru/brat Стоит немного погулять по директориям и увидим раскрытие путей: Could not write statistics cache file to directory...
chromium-browser: use-after-free in PDFium
Use-after-free vulnerability in the CPDFSDKPageView implementation in fpdfsdk/src/fsdkmgr.cpp in PDFium, as used in Google Chrome before 46.0.2490.71, allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact by leveraging mishandling of...
CVE-2015-6756
Use-after-free vulnerability in the CPDFSDKPageView implementation in fpdfsdk/src/fsdkmgr.cpp in PDFium, as used in Google Chrome before 46.0.2490.71, allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact by leveraging mishandling of...
UBUNTU-CVE-2015-6756
Use-after-free vulnerability in the CPDFSDKPageView implementation in fpdfsdk/src/fsdkmgr.cpp in PDFium, as used in Google Chrome before 46.0.2490.71, allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact by leveraging mishandling of...
CVE-2015-6756
Use-after-free vulnerability in the CPDFSDKPageView implementation in fpdfsdk/src/fsdkmgr.cpp in PDFium, as used in Google Chrome before 46.0.2490.71, allows remote attackers to cause a denial of service heap memory corruption or possibly have unspecified other impact by leveraging mishandling of...