CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

739 matches found

Prion•added 2015/08/17 12:0 a.m.•26 views

Memory corruption

FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted font file, a different vulnerability than CVE-2015-3804 and CVE-2015-5775...

6.8CVSS7.8AI score0.03643EPSS

Exploits0References6Affected Software2

Cvelist•added 2015/08/16 11:0 p.m.•18 views

CVE-2015-3804

9.4AI score0.03643EPSS

Exploits0References6

Cvelist•added 2015/08/16 11:0 p.m.•24 views

CVE-2015-5755

CoreText in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted font file, a different vulnerability than CVE-2015-5761...

9.4AI score0.03396EPSS

Exploits0References8

CVE•added 2015/08/16 11:0 p.m.•66 views

CVE-2015-5755

CVE-2015-5755 affects CoreText in Apple iOS < 8.4.1 and OS X

6.8CVSS8.7AI score0.03396EPSS

Exploits0References8Affected Software3

CVE•added 2015/08/16 11:0 p.m.•68 views

CVE-2015-3804

CVE-2015-3804 is an Apple FontParser memory‑corruption vulnerability affecting iOS versions prior to 8.4.1 and OS X versions prior to 10.10.5. The flaw exists in the processing of font files and can allow a remote attacker to cause memory corruption, leading to an application crash or arbitrary c...

7.5CVSS8.7AI score0.03643EPSS

Exploits0References6Affected Software1

CNVD•added 2015/07/12 12:0 a.m.•3 views

Microsoft Windows Adobe Font Driver 'atmfd.dll' Remote Lift Vulnerability

Microsoft Windows is a popular operating system. A remote elevation of privilege vulnerability exists in Microsoft Windows 'atmfd.dll', which allows remote attackers to exploit the vulnerability to construct a malicious font file that can be parsed by a user and can be elevated to execute arbitra...

7.7AI score

Exploits0References1

Gentoo Linux•added 2015/07/10 12:0 a.m.•25 views

t1utils: Arbitrary code execution

Background t1utils is a collection of simple Type 1 font manipulation programs. Description t1utils has a buffer overflow in the setcsstart function in t1disasm.c. Impact A remote attacker could cause a denial of service and possibly execute arbitrary code via a crafted font file. Workaround Ther...

7.5CVSS7.5AI score0.06905EPSS

Exploits1

NVD•added 2015/07/03 2:0 a.m.•16 views

CVE-2015-3719

TrueTypeScaler in FontParser in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted font file, a different vulnerability than CVE-2015-3694...

6.8CVSS7.4AI score0.03119EPSS

Exploits0References6

Prion•added 2015/07/03 2:0 a.m.•14 views

Memory corruption

6.8CVSS7.7AI score0.03119EPSS

Exploits0References6Affected Software2

NVD•added 2015/07/03 1:59 a.m.•16 views

CVE-2015-3694

FontParser in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted font file, a different vulnerability than CVE-2015-3719...

6.8CVSS7.4AI score0.03119EPSS

Exploits0References6

NVD•added 2015/07/03 1:59 a.m.•24 views

CVE-2015-3681

Apple Type Services ATS in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted font file, a different vulnerability than CVE-2015-3679, CVE-2015-3680, and CVE-2015-3682...

6.8CVSS7.4AI score0.02866EPSS

Exploits0References4

NVD•added 2015/07/03 1:59 a.m.•16 views

CVE-2015-3680

6.8CVSS7.4AI score0.02866EPSS

Exploits0References4

NVD•added 2015/07/03 1:59 a.m.•17 views

CVE-2015-3679

6.8CVSS7.4AI score0.02866EPSS

Exploits0References4

Prion•added 2015/07/03 1:59 a.m.•25 views

Memory corruption