3673 matches found
CVE-2020-16920
An elevation of privilege vulnerability exists when the Windows Application Compatibility Client Library improperly handles registry operations. An attacker who successfully exploited this vulnerability could gain elevated privileges. To exploit the vulnerability, an attacker would first need cod...
CVE-2020-16920
An elevation of privilege vulnerability exists when the Windows Application Compatibility Client Library improperly handles registry operations. An attacker who successfully exploited this vulnerability could gain elevated privileges. To exploit the vulnerability, an attacker would first need cod...
CVE-2020-16876
An elevation of privilege vulnerability exists when the Windows Application Compatibility Client Library improperly handles registry operations. An attacker who successfully exploited this vulnerability could gain elevated privileges. To exploit the vulnerability, an attacker would first need cod...
CVE-2020-16920 Windows Application Compatibility Client Library Elevation of Privilege Vulnerability
...
CVE-2020-16920
CVE-2020-16920 affects Windows via an elevation-of-privilege in the Windows Application Compatibility Client Library, tied to improper handling of registry operations. The vulnerability requires code execution on a victim system before exploitation, enabling a crafted application to gain elevated...
CVE-2020-16876 Windows Application Compatibility Client Library Elevation of Privilege Vulnerability
...
CVE-2020-16876
CVE-2020-16876 refers to an elevation of privilege in the Windows Application Compatibility Client Library due to improper handling of registry operations. The vulnerability requires code execution on the victim system and the attacker must subsequently run a specially crafted application to gain...
Microsoft Windows Multiple Vulnerabilities (KB4580327)
This host is missing a critical security update according to Microsoft KB4580327 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Windows Application Compatibility Client Library Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Application Compatibility Client Library improperly handles registry operations. An attacker who successfully exploited this vulnerability could gain elevated privileges. To exploit the vulnerability, an attacker would first need cod...
Windows Application Compatibility Client Library Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when the Windows Application Compatibility Client Library improperly handles registry operations. An attacker who successfully exploited this vulnerability could gain elevated privileges. To exploit the vulnerability, an attacker would first need cod...
KLA11978 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities...
PT-2020-4327 · Microsoft · Windows Application Compatibility Client Library +1
Name of the Vulnerable Software and Affected Versions: Windows Application Compatibility Client Library affected versions not specified Description: The issue is related to the improper handling of registry operations by the Windows Application Compatibility Client Library, which could allow an...
PT-2020-4275 · Microsoft · Windows Application Compatibility Client Library +1
Name of the Vulnerable Software and Affected Versions: Windows Application Compatibility Client Library affected versions not specified Description: The issue is related to errors in handling Windows registry operations by the Windows Application Compatibility Client Library. This could allow an...
OPENSUSE-SU-2020:1660-1 Security update for nodejs10
This update for nodejs10 fixes the following issues: - nodejs10 was updated to 10.22.1 LTS: - CVE-2020-8252: Fixed a buffer overflow in realpath bsc1176589. - CVE-2020-15095: Fixed an information leak through log files bsc1173937. - Explicitly add -fno-strict-aliasing to CFLAGS to fix compilation...
libvirt security and bug fix update
4.5.0-36 - virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support rhbz1823976 - virDevMapperGetTargetsImpl: quit early if device is not a devmapper target rhbz1823976 4.5.0-35 - qemu: dont take agent and monitor job for shutdown CVE-2019-20485 - qemu: dont hold a monitor and agent...
thunderbird security update
78.3.1-1.0.1 - Update to 68.12.0 build1 78.3.1-1 - Update to 78.3.1 build1 78.3.0-3 - Update to 78.3.0 build1 - Remove librdp.so as long as we cannot ship it in RHEL 78.2.1-1 - Update to 78.2.1 build1...
openSUSE Security Update : roundcubemail (openSUSE-2020-1516)
This update for roundcubemail fixes the following issues : roundcubemail was upgraded to 1.3.15 This is a security update to the LTS version 1.3. boo1175135 - Security: Fix cross-site scripting XSS via HTML messages with malicious svg content CVE-2020-16145 - Security: Fix cross-site scripting XS...
USN-4510-2: Samba vulnerability
USN-4510-1 fixed a vulnerability in Samba. This update provides the corresponding update for Ubuntu 14.04 ESM. Original advisory details: Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use this issue t...
Ubuntu 16.04 LTS / 18.04 LTS : Samba vulnerability (USN-4510-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4510-1 advisory. Tom Tervoort discovered that the Netlogon protocol implemented by Samba incorrectly handled the authentication scheme. A remote attacker could use thi...
CVE-2020-25575
An issue was discovered in the failure crate through 0.1.5 for Rust. It may introduce "compatibility hazards" in some applications, and has a type confusion flaw when downcasting. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. NOTE: This may overlap...