6032 matches found
Google Chrome Blink Cross-Site Scripting Vulnerability (CNVD-2016-12105)
Google Chrome is a web browser developed by Google Inc. Blink is a browser layout engine rendering engine jointly developed by Google Inc. and Opera Software of Norway. A cross-site scripting vulnerability exists in Blink in versions of Google Chrome prior to 55.0.2883.75. An attacker can exploit...
UBUNTU-CVE-2016-5292
During URL parsing, a maliciously crafted URL can cause a potentially exploitable crash. This vulnerability affects Firefox 50...
UBUNTU-CVE-2016-5291
A same-origin policy bypass with local shortcut files to load arbitrary local content from disk. This vulnerability affects Thunderbird 45.5, Firefox ESR 45.5, and Firefox 50...
Symantec Norton Mobile Security for Android Security Bypass Vulnerability
Symantec Norton Mobile Security for Android is the United States Symantec Symantec, Inc. based on the Android platform for mobile devices to provide security features of the software. A security bypass vulnerability exists in versions of Symantec Norton Mobile Security for Android prior to 3.16. ...
UBUNTU-CVE-2016-5287
A potentially exploitable use-after-free crash during actor destruction with service workers. This issue does not affect releases earlier than Firefox 49. This vulnerability affects Firefox 49.0.2...
Kerio Control Cross-Site Request Forgery Vulnerability
Kerio Control is a simple and fast unified threat management system. Cross-site request forgery vulnerabilities in Kerio Control version 9.1.3 can be exploited by an attacker to execute arbitrary script code in the context of an affected site, steal cookie-based authentication, disclose sensitive...
Crestron Electronics DM-TXRX-100-STR Security Restriction Bypass Vulnerability
The Crestron Electronics DM-TXRX-100-STR is a multimedia streaming codec. A security vulnerability exists in the Crestron Electronics DM-TXRX-100-STR 1.3039.00040. It could allow a remote attacker to bypass authentication by directly requesting a non-index.html page...
libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions
It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...
Fortinet FortiSwitch Weak Password Vulnerability
Fortinet FortiSwitch is a suite of secure switching platforms from Fortinet, Inc. designed for Ethernet infrastructure and current network edge configurations. A weak password vulnerability exists in Fortinet FortiSwitch versions prior to 3.4.1. An attacker could exploit the vulnerability to log ...
libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions
It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...
libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions
It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...
libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions
It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...
libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions
It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...
Contus HD Video Share (aka HDVideoShare) by Apptha [com_contushdvideoshare], 3.5 and below, Directory Traversal
Contus HD Video Share by Apptha comcontushdvideoshare, 3.5 and below, Directory Traversal...
Ruby REST Client Information Disclosure Vulnerability
Ruby is a cross-platform, object-oriented, dynamically typed programming language developed by Japanese software developer Yukihiro Matsumoto.REST Client aka rest-client is one of the simple HTTP and REST client. A security vulnerability exists in Ruby REST Client versions prior to 1.7.3. Since t...
AZL-6953 CVE-2014-9639 affecting package vorbis-tools for versions less than 1.4.0-35
Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service crash via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access...
AZL-6952 CVE-2014-9638 affecting package vorbis-tools for versions less than 1.4.0-35
oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service divide-by-zero error and crash via a WAV file with the number of channels set to zero...
Hardcoded credentials
The Pilot Below Deck Equipment BDE and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface...
CVE-2014-0326
The Pilot Below Deck Equipment BDE and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface...
PHP168 6.0 and below the version login. php memory major security vulnerability-vulnerability warning-the black bar safety net
A big problem, it is best not to ignore。。。。 The use of the code will be php Trojan is inserted into the cache/directory to easily get webshell, you can bulk. Use a search engine to search Powered by php168 v6 or what version of v5, v4, v3, v2, v1 will search to many, many more related site Since...