Little Snitch Heap Overflow Vulnerability

Little Snitch is a firewall software for Mac. Little Snitch suffers from a heap overflow vulnerability. A local attacker can exploit the vulnerability to elevate system privileges and execute arbitrary code...

Microsoft Office Web Apps Multiple Vulnerabilities (3170008)

This host is missing a critical security update according to Microsoft Bulletin MS16-088. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

The vulnerability of the Multimedia Toolkit QuickTime, allowing a hacker to execute arbitrary code or cause a service failure

The vulnerability of the Multimedia Toolkit QuickTime is caused by buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure using a specially crafted file...

The vulnerability of the Flash Player software allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in Adobe Flash Player allows attackers to execute arbitrary code or cause a service failure a memory corruption error...

The vulnerability of Adobe Pepper Flash software for Google Chrome allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in Adobe Pepper Flash for Google Chrome allows an attacker to execute arbitrary code or cause a service failure a memory corruption error...

The vulnerability of the Flash Player software allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in Adobe Flash Player allows a malicious individual to execute arbitrary code or cause a service failure a memory corruption error...

The vulnerabilities in Acrobat software allow a malicious individual to compromise the confidentiality, integrity, and accessibility of protected information.

Double liberation in Acrobat allows criminals to execute arbitrary codes...

The vulnerability of the Microsoft SharePoint software package allows a remote attacker to execute arbitrary code and gain control over the system.

Microsoft SharePoint software has vulnerabilities related to errors that occur during the processing of specially crafted files. Exploiting these vulnerabilities allows a malicious intruder to execute arbitrary code and gain full control over the system...

The vulnerability of the Internet Explorer browser, which allows a malicious individual to execute arbitrary code or trigger a service failure.

The Internet Explorer browser contains an unspecified vulnerability related to memory-related errors. Exploiting this vulnerability allows malicious actors, operating remotely, to execute arbitrary code or cause a service failure through a specially created website...

Microsoft Windows ATMFD.dll Elevation of Privilege Vulnerability

Microsoft Windows is a series of operating systems released by Microsoft.Adobe Type Manager Font Driver is a font management driver from Adobe. An elevation of privilege vulnerability exists in the Adobe Type Manager Font Driver ATMFD.dll for Microsoft Windows, which arises from the program's...

BadTunnel: the impact of Win95 to Win10“Super-vulnerability”with CVE-2 0 1 6-3 2 1 3-the vulnerability warning-the black bar safety net

! Yesterday, Microsoft released a high-risk vulnerability patch the vulnerability by Tencent basaltic laboratory Creator to Yang Chinese circle of safety person of the TK, the leader of the Find, and named it“BadTunnel”, is currently the Windows history of the most wide-reaching vulnerabilities,...

CVE-2016-1421

A vulnerability in the web application for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service DoS condition. The vulnerability exists because the affected software fails t...

DEBIAN-CVE-2015-5723

Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local...

DEBIAN-CVE-2015-5260

Heap-based buffer overflow in SPICE before 0.12.6 allows guest OS users to cause a denial of service heap-based memory corruption and QEMU-KVM crash or possibly execute arbitrary code on the host via QXL commands related to the surfaceid parameter...

Multiple vulnerabilities in HPE Matrix Operating Environment and Systems Insight Manager (CNVD-2016-03741)

HPE Matrix Operating Environment is a set of cloud management software designed for infrastructure services.HPE Systems Insight Manager is a set of management software for HP servers and storage devices, which provides multi-system management, fault management and event handling, and rights...

Apple OS X El Capitan Intel Graphics Driver Buffer Overflow Vulnerability

Apple OS X El Capitan is an operating system on Apple devices. A buffer overflow vulnerability in Intel Graphics Driver in Apple OS X El Capitan allows attackers to exploit the vulnerability to execute arbitrary code with kernel privileges...

Apple iOS Accessibility Buffer Overflow Vulnerability

Apple iOS is an operating system on Apple phones. A buffer overflow vulnerability exists in Accessibility in Apple iOS, which allows an attacker to exploit the vulnerability to execute arbitrary code with system privileges...

IBM Domino Authentication Bypass Vulnerability

IBM Domino is a suite of platforms for hosting social business applications from IBM in the United States. An unspecified security vulnerability exists in IBM Domino, which allows remote attackers to bypass the authentication process and execute arbitrary code with system privileges...

CVE-2016-4090

Technical details about CVE-2016-4090 are not publicly available in the provided connected documents. Monitor for updates from the sources referenced in the Initial Description; no explicit vulnerability specifics (exploit vectors, impacted versions, or fixes) are given here.

CVE-2016-1125

Technical details about CVE-2016-1125 are not publicly available in the provided Connected documents; no affected products, versions, impact details, or remediation are disclosed here. Monitor for updates.