3670 matches found
Authenticated WMI Exec via Powershell
This module uses WMI execution to launch a payload instance on a remote machine. In order to avoid AV detection, all execution is performed in memory via psh-net encoded payload. Persistence option can be set to keep the payload looping while a handler is present to receive it. By default the...
Fedora 23 : subversion-1.9.3-1.fc23 (2015-afdb0e8aaa)
This update includes the latest stable release of Apache Subversion, version 1.9.3. User-visible changes: Client-side bugfixes: svn: fix possible crash in auth credentials cache cleanup: avoid unneeded memory growth during pristine cleanup diff: fix crash when repository is on server root fix...
Fedora 23 : ca-certificates-2015.2.6-1.0.fc23 (2015-f9e5ca4e6a)
This is an update to the set of CA certificates version 2.6 as released with NSS version 3.21 However, as in previous versions of the ca-certificates package, the CA list has been modified to keep several legacy CAs still trusted for compatibility reasons. Please refer to the project URL for...
Updated tomcat packages fix security vulnerabilities
Updated tomcat packages fix security vulnerabilities: Directory traversal vulnerability in RequestUtil.java in Apache Tomcat 7.x before 7.0.65 allows remote authenticated users to bypass intended SecurityManager restrictions and list a parent directory via a /.. slash dot dot in a pathname used b...
Vulnerability of the Office Web Apps Server web server, Microsoft Word and Word For Mac word processors, the Microsoft Office Compatibility Pack compatibility package, programs for reading Word Viewer doc files, the Microsoft SharePoint Server corporate application, which allows a hacker to execute arbitrary code.
The vulnerability in the Office Web Apps Server web server, Microsoft Word and Word For Mac text editors, the Microsoft Office Compatibility Pack, Word Viewer software for reading doc files, and the Microsoft SharePoint Server enterprise application is caused by a buffer overflow. Exploitation of...
Shopify: xss in the all widgets of shopifyapps.com
i found xss in all widgets.shopifyapps.com/ google dork:site:widgets.shopifyapps.com the parameter "padding" is vulnerable,xss payload - %0ax:expressionalert1%0a xss does work in inetrnet explorer browsers for ie10,ie11 in compatibility mode , for ie5,ie6,ie7 for ie8,ie9 javascript is disabled, t...
The vulnerability of Microsoft Word text editor, Office Web Apps Server web server, programs for reading Word Viewer doc files, Microsoft SharePoint Server corporate application suite, Microsoft Office software suite, Microsoft Office Compatibility Pack suite, which allows a hacker to execute arbitrary code.
The vulnerabilities of Microsoft Word text editor, Office Web Apps Server web server, Word Viewer document-reading programs, Microsoft SharePoint Server corporate application suite, Microsoft Office software suite, and the Microsoft Office Compatibility Pack suite are caused by buffer overflow...
The vulnerability of Microsoft Word text editor, Office Web Apps Server web server, programs for reading Word Viewer doc files, Microsoft SharePoint Server corporate application suite, Microsoft Office software suite, Microsoft Office Compatibility Pack suite, which allows a hacker to execute arbitrary code.
The vulnerabilities of Microsoft Word text editor, Office Web Apps Server web server, Word Viewer document-reading programs, Microsoft SharePoint Server corporate application suite, Microsoft Office software suite, and the Microsoft Office Compatibility Pack suite are caused by buffer overflow...
The vulnerability of the Microsoft Office Compatibility Pack, a suite of Microsoft Office programs, and the Microsoft Word text editor allows a perpetrator to execute arbitrary code.
The vulnerability of the Microsoft Office Compatibility Pack, the Microsoft Office suite of programs, and the Microsoft Word text editor is due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted Office document from a...
The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure or cause other effects.
The vulnerability of the LoadIC::UpdateCaches function in the ic/ic.cc file of the Google V8 browser module allows for unauthorized actors to cause service failures or other effects by using specially crafted JavaScript code. This vulnerability arises due to the lack of compatibility checks befor...
Microsoft Office Arbitrary Code Execution Vulnerability (CNVD-2016-01007)
Microsoft Word is a word processing tool in the Office suite of software from Microsoft. An arbitrary code execution vulnerability exists in Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016,Office Compatibility Pack SP3, which allows remote...
CVE-2016-0056
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."...
CVE-2016-0054
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, Office Compatibility Pack SP3, Excel Viewer, Excel Services on SharePoint Server 2007 SP3, Excel Services on SharePoint Server 2010 SP2, Excel Services on SharePoint...
CVE-2016-0052
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps Server 2013 SP1, and SharePoint Server 201...
CVE-2016-0052
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps Server 2013 SP1, and SharePoint Server 201...
Memory corruption
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps Server 2013 SP1, and SharePoint Server 201...
CVE-2016-0022
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps Server 2013 SP1, and SharePoint Server 201...
Memory corruption
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, Office Compatibility Pack SP3, Excel Viewer, Excel Services on SharePoint Server 2007 SP3, Excel Services on SharePoint Server 2010 SP2, Excel Services on SharePoint...
CVE-2016-0022
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps Server 2013 SP1, and SharePoint Server 201...
Microsoft Office Compatibility Pack Remote Code Execution Vulnerability (3134226)
This host is missing an important security update according to Microsoft Bulletin MS16-015. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...