Microsoft Office Compatibility Pack Remote Code Execution Vulnerabilities (3134226)

This host is missing a critical security update according to Microsoft Bulletin MS16-015. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MGASA-2016-0054 Updated mbedtls/hiawatha/belle-sip/linphone/pdns packages fix security vulnerability

Note: this package was called polarssl, but is now called mbed tls. The PolarSSL software is now called mbed TLS. Heap-based buffer overflow in mbed TLS formerly PolarSSL 1.3.x before 1.3.14 allows remote SSL servers to cause a denial of service client crash and possibly execute arbitrary code vi...

Updated mbedtls/hiawatha/belle-sip/linphone/pdns packages fix security vulnerability

Note: this package was called polarssl, but is now called mbed tls. The PolarSSL software is now called mbed TLS. Heap-based buffer overflow in mbed TLS formerly PolarSSL 1.3.x before 1.3.14 allows remote SSL servers to cause a denial of service client crash and possibly execute arbitrary code vi...

Microsoft Office CVE-2016-0052 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability because it fails to properly handle objects in memory. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in deni...

RHEL 6 : jboss-ec2-eap (RHSA-2016:0124)

Updated jboss-ec2-eap packages that add one enhancement and resolve one security issue are now available for Red Hat JBoss Enterprise Application Platform 6.4.6 on Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. A Common Vulnerabilit...

[slackware-security] php

New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/php-5.6.17-i486-1slack14.1.txz: Upgraded. This release fixes bugs and security issues. IMPORTANT: READ BELOW ABOUT POTENTIALLY...

The vulnerability of the Microsoft Office Compatibility Pack, the Microsoft Excel Viewer, and the Microsoft Excel spreadsheet editor allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Office Compatibility Pack, the Microsoft Excel Viewer for viewing electronic spreadsheets, and the Microsoft Excel spreadsheet editor are caused by buffer overflows. Exploitation of this vulnerability could allow a malicious actor to execute arbitrary code using...

The vulnerability of the Microsoft Office package, the Microsoft Office Compatibility Pack, and the Microsoft Word text editor allow a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Office package, the Microsoft Office Compatibility Pack, and the Microsoft Word text editor exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code via a specially crafted email messag...

The vulnerability of the Microsoft Excel Viewer, a spreadsheet viewer, and the Microsoft Excel spreadsheet editor, as well as the Microsoft Office Compatibility Pack, allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Excel Viewer, a spreadsheet viewer, and the Microsoft Excel spreadsheet editor, as well as the Microsoft Office Compatibility Pack, is caused by buffer overflow. Exploitation of this vulnerability can allow an attacker to execute arbitrary code using a specially...

The vulnerability of the Microsoft Office Compatibility Pack, the Microsoft Excel Viewer, and the Microsoft Excel spreadsheet editor allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Office Compatibility Pack, the Microsoft Excel Viewer for viewing electronic spreadsheets, and the Microsoft Excel spreadsheet editor are caused by buffer overflows. Exploitation of this vulnerability could allow a malicious actor to execute arbitrary code using...

The vulnerability of the Microsoft Office package, the Microsoft Office Compatibility Pack, and the Microsoft Word text editor allow a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Office package, the Microsoft Office Compatibility Pack, and the Microsoft Word text editor is due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted document...

FreeBSD -- Linux compatibility layer issetugid(2) system call

Problem Description: A programming error in the Linux compatibility layer could cause the issetugid2 system call to return incorrect information. Impact: If an application relies on output of the issetugid2 system call and that information is incorrect, this could lead to a privilege escalation...

FreeBSD-SA-16:10.linux

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-16:10.linux Security Advisory The FreeBSD Project Topic: Linux compatibility layer issetugid2 system call vulnerability Category: core Module: kernel Announced:...

CVE-2016-1612

The LoadIC::UpdateCaches function in ic/ic.cc in Google V8, as used in Google Chrome before 48.0.2564.82, does not ensure receiver compatibility before performing a cast of an unspecified variable, which allows remote attackers to cause a denial of service or possibly have unknown other impact vi...

CVE-2016-1612

Removed by vendor...

Veeam Backup & Replication add-on for Kaseya compatibility with Veeam Backup & Replication 9.x

The Kaseya plug-in for Veeam Backup & Replication was discontinued in 2019 and is no longer available nor supported by Veeam. Challenge Veeam Backup & Replication add-on for Kaseya needs to support Veeam Backup & Replication 9.x monitoring. Cause The names of Veeam Backup & Replication services...

The vulnerability of the Microsoft Excel Viewer, a spreadsheet viewer, and the Microsoft Office Compatibility Pack, a compatibility suite, allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Excel Viewer, a component of the Microsoft Office Compatibility Pack, and the Microsoft Excel spreadsheet editor is due to buffer overflow. Exploitation of this vulnerability could allow an attacker to execute arbitrary code using a specially crafted Office...

FreeBSD -- Linux compatibility layer setgroups(2) system call

Problem Description: A programming error in the Linux compatibility layer setgroups2 system call can lead to an unexpected results, such as overwriting random kernel memory contents. Impact: It is possible for a local attacker to overwrite portions of kernel memory, which may result in a privileg...

FreeBSD -- Linux compatibility layer incorrect futex handling

Problem Description: A programming error in the handling of Linux futex robust lists may result in incorrect memory locations being accessed. Impact: It is possible for a local attacker to read portions of kernel memory, which may result in a privilege escalation...

FreeBSD-SA-16:04.linux

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-16:04.linux Security Advisory The FreeBSD Project Topic: Linux compatibility layer setgroups2 system call vulnerability Category: core Module: kernel Announced:...