272 matches found
JVN#91002412: The installer of The Public Certification Service for Individuals "The JPKI user's software" may insecurely load Dynamic Link Libraries
The installer of The Public Certification Service for Individuals "The JPKI user's software" provided by Japan Agency for Local Authority Information Systems J-LIS contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. Impact Arbitrary code may be...
JVN#63012325: The installer of e-Tax Software may insecurely load Dynamic Link Libraries
The installer of e-Tax Software provided by National Tax Agency contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. Impact This vulnerability can be exploited when the following condition is met. If this vulnerability is exploited, arbitrary co...
JVN#45583702: Installer of PhishWall Client Internet Explorer version may insecurely load Dynamic Link Libraries
PhishWall Client Internet Explorer Version, provided by SecureBrain Corporation, is an anti-phishing and anti-MITB software. The installer of PhishWall Client Internet Explorer Version contains an issue with the DLL search path, which may lead to insecurely loading dynamic linking libraries. This...
LINE for Windows may insecurely load Dynamic Link Libraries
Overview LINE for Windows provided by LINE Corporation contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. Takashi Yoshikawa of Mitsui Bussan Secure Directions reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...
Adobe Flash Player for Mac <= 21.0.0.242 Multiple Vulnerabilities (APSB16-18)
The version of Adobe Flash Player installed on the remote Mac OS X host is equal or prior to version 21.0.0.242. It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption issues exist that allow an unauthenticated, remote attacker to cause a denial of service condition...
Adobe Flash Player <= 21.0.0.242 Multiple Vulnerabilities (APSB16-18)
The version of Adobe Flash Player installed on the remote Windows host is equal or prior to version 21.0.0.242. It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption issues exist that allow an unauthenticated, remote attacker to cause a denial of service condition ...
MS16-083: Security Update for Adobe Flash Player (3167685)
The remote Windows host is missing KB3167685. It is, therefore, affected by multiple vulnerabilities : - Multiple memory corruption issues exist that allow an unauthenticated, remote attacker to cause a denial of service condition or the execution of arbitrary code. CVE-2016-4122, CVE-2016-4123,...
Google Chrome < 50.0.2661.102 Multiple Vulnerabilities
Binary data 9371.pasl...
Flash Player < 11.2.202.621 / 18.0.0.352 / 21.0.0.242 Multiple Vulnerabilities (APSB16-15)
Binary data 9354.prm...
Adobe Flash Player <= 21.0.0.226 Multiple Vulnerabilities (APSB16-15)
The version of Adobe Flash Player installed on the remote Windows host is equal or prior to 21.0.0.226. It is, therefore, affected by multiple vulnerabilities : - Multiple type confusion errors exist that allow an attacker to execute arbitrary code. CVE-2016-1105, CVE-2016-4117 - Multiple...
Adobe AIR for Mac <= 21.0.0.198 Multiple Vulnerabilities (APSB16-15)
The version of Adobe AIR installed on the remote Mac OS X host is prior or equal to version 21.0.0.198. It is, therefore, affected by multiple vulnerabilities : - Multiple type confusion errors exist that allow an attacker to execute arbitrary code. CVE-2016-1105, CVE-2016-4117 - Multiple...
Google Chrome < 50.0.2661.102 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 50.0.2661.102. It is, therefore, affected by multiple vulnerabilities as referenced in the 201605stable-channel-update advisory. - The Zone::New function in zone.cc in Google V8 before 5.0.71.47, as used in Google Chrome...
Adobe Reader < 11.0.16 / 15.006.30172 / 15.016.20039 Multiple Vulnerabilities (APSB16-14) (Mac OS X)
The version of Adobe Reader installed on the remote Mac OS X host is prior to 11.0.16, 15.006.30172, or 15.016.20039. It is, therefore, affected by multiple vulnerabilities : - Multiple use-after-free errors exist that allow an attacker to execute arbitrary code. CVE-2016-1045, CVE-2016-1046,...
Adobe Acrobat < 11.0.16 / 15.006.30172 / 15.016.20039 Multiple Vulnerabilities (APSB16-14) (Mac OS X)
The version of Adobe Acrobat installed on the remote Mac OS X host is prior to 11.0.16 / 15.006.30172 / 15.016.20039. It is, therefore, affected by multiple vulnerabilities : - Multiple use-after-free errors exist that allow an attacker to execute arbitrary code. CVE-2016-1045, CVE-2016-1046,...
MS16-064: Security Update for Adobe Flash Player (3163207)
The remote Windows host is missing KB3163207. It is, therefore, affected by multiple vulnerabilities : - Multiple type confusion errors exist that allow an attacker to execute arbitrary code. CVE-2016-1105, CVE-2016-4117 - Multiple use-after-free errors exist that allow an attacker to execute...
Cisco WebEx Productivity Tools Search Path Handling Vulnerability
Cisco WebEx Productivity Tools is a set of tools for adding a user's application to a WebEx Meetings session. Cisco WebEx Productivity Tools fails to handle search paths correctly, allowing local attackers to build multiple malicious cryptsp.dll, dwmapi.dll, msimg32.dll, ntmarta.dll, propsys.dll,...
Microsoft windows DLL Load Arbitrary Code Execution Vulnerability
Microsoft Windows is an operating system developed by Microsoft. Microsoft Windows fails to properly parse shortcuts, allowing attackers to build malicious DLLs that are tricked into being loaded by applications and executed with application privileges...
Ecava IntegraXor < 3.60.4081 Path Subversion Arbitrary DLL Injection Code Execution
Binary data 8403.prm...
New Adobe Reader Zero-Day Vulnerability spotted in the wild
FireEye researchers recently came across a zero-day security flaw in Adobe Reader that's being actively exploited in the wild. The zero-day vulnerability is in Adobe PDF Reader 9.5.3, 10.1.5, 11.0.1 and earlier versions. According to researchers, once malware takes advantage of the flaw, its...
Adobe LiveCycle Designer Untrusted Search Path Vulnerability (Windows)
This host is installed with Adobe LiveCycle Designer and is prone to untrusted search path vulnerability. OpenVAS Vulnerability Test $Id: gbadobelivecycledesigneruntrustedsearchpathvulnwin.nasl 5963 2017-04-18 09:02:14Z teissa $ Adobe LiveCycle Designer Untrusted Search Path Vulnerability Windows...