PT-2016-6204

Name of the Vulnerable Software and Affected Versions Apache ActiveMQ Artemis versions prior to 1.4.0 Description The issue allows remote authenticated users with permission to send messages to the Artemis broker to deserialize arbitrary objects and execute arbitrary code by leveraging gadget...

CVE-2016-0917

The SMB service in EMC VNXe VNXe3200 Operating Environment prior to 3.1.5.8711957 and VNXe3100/3150/3300 Operating Environment prior to 2.4.4.22638, VNX1 File OE before 7.1.80.3, VNX2 File OE before 8.1.9.155, and Celerra all supported versions does not prevent duplicate NTLM challenge-response...

Microsoft Office Memory Corruption Vulnerability (CNVD-2016-07684)

Microsoft Office is an office software suite product developed by Microsoft. Commonly used components are Word, Excel, Access, Powerpoint, FrontPage and so on. Microsoft Office processing office files fails to properly handle objects in memory, allowing remote attackers to exploit the vulnerabili...

CVE-2016-6351

The espdodma function in hw/scsi/esp.c in QEMU aka Quick Emulator, when built with ESP/NCR53C9x controller emulation support, allows local guest OS administrators to cause a denial of service out-of-bounds write and QEMU process crash or execute arbitrary code on the QEMU host via vectors involvi...

CVE-2016-5423

A flaw was found in the way PostgreSQL server handled certain SQL statements containing CASE/WHEN commands. A remote, authenticated attacker could use a specially crafted SQL statement to cause PostgreSQL to crash or disclose a few bytes of server memory or possibly execute arbitrary code...

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software arises from an overflow in the buffer of dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code

The vulnerability of the Flash Player software is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Little Snitch Heap Overflow Vulnerability

Little Snitch is a firewall software for Mac. Little Snitch suffers from a heap overflow vulnerability. A local attacker can exploit the vulnerability to elevate system privileges and execute arbitrary code...

Microsoft Office Web Apps Multiple Vulnerabilities (3170008)

This host is missing a critical security update according to Microsoft Bulletin MS16-088. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

The vulnerability of the Multimedia Toolkit QuickTime, allowing a hacker to execute arbitrary code or cause a service failure

The vulnerability of the Multimedia Toolkit QuickTime is caused by buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure using a specially crafted file...

The vulnerabilities in Acrobat software allow a malicious individual to compromise the confidentiality, integrity, and accessibility of protected information.

Double liberation in Acrobat allows criminals to execute arbitrary codes...

The vulnerability of the Flash Player software allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in Adobe Flash Player allows attackers to execute arbitrary code or cause a service failure a memory corruption error...

The vulnerability of the Flash Player software allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in Adobe Flash Player allows a malicious individual to execute arbitrary code or cause a service failure a memory corruption error...

The vulnerability of Adobe Pepper Flash software for Google Chrome allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability in Adobe Pepper Flash for Google Chrome allows an attacker to execute arbitrary code or cause a service failure a memory corruption error...

The vulnerability of the Microsoft SharePoint software package allows a remote attacker to execute arbitrary code and gain control over the system.

Microsoft SharePoint software has vulnerabilities related to errors that occur during the processing of specially crafted files. Exploiting these vulnerabilities allows a malicious intruder to execute arbitrary code and gain full control over the system...

The vulnerability of the Internet Explorer browser, which allows a malicious individual to execute arbitrary code or trigger a service failure.

The Internet Explorer browser contains an unspecified vulnerability related to memory-related errors. Exploiting this vulnerability allows malicious actors, operating remotely, to execute arbitrary code or cause a service failure through a specially created website...

Microsoft Windows ATMFD.dll Elevation of Privilege Vulnerability

Microsoft Windows is a series of operating systems released by Microsoft.Adobe Type Manager Font Driver is a font management driver from Adobe. An elevation of privilege vulnerability exists in the Adobe Type Manager Font Driver ATMFD.dll for Microsoft Windows, which arises from the program's...

BadTunnel: the impact of Win95 to Win10“Super-vulnerability”with CVE-2 0 1 6-3 2 1 3-the vulnerability warning-the black bar safety net

! Yesterday, Microsoft released a high-risk vulnerability patch the vulnerability by Tencent basaltic laboratory Creator to Yang Chinese circle of safety person of the TK, the leader of the Find, and named it“BadTunnel”, is currently the Windows history of the most wide-reaching vulnerabilities,...

CVE-2016-1421

A vulnerability in the web application for Cisco IP Phones could allow an unauthenticated, remote attacker to execute code with root privileges or cause a reload of an affected IP phone, resulting in a denial of service DoS condition. The vulnerability exists because the affected software fails t...

DEBIAN-CVE-2015-5723

Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local...