3789 matches found
CVE-2017-9369
The CVE-2017-9369 entry describes an information-disclosure vulnerability in BlackBerry QNX Software Development Platform (SDP) versions 6.6.0 and 6.5.0 SP1 and earlier. The issue arises from the default SDP configuration, where an attacker can gain information about the memory layout of higher-p...
Foxit Reader XFA Layout w Type Confusion Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the w method of XFA...
Foxit Reader XFA Layout pageSpan Type Confusion Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the pageSpan method...
PT-2017-16161 · Blackberry · Blackberry Qnx Software Development Platform
Name of the Vulnerable Software and Affected Versions: BlackBerry QNX Software Development Platform SDP version 6.6.0 Description: The issue is related to an information disclosure vulnerability in the default configuration of the QNX SDP. This vulnerability could allow an attacker to gain...
Foxit Reader XFA Layout page Type Confusion Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the page method of...
Axis 2100 Network Camera Cross-Site Scripting Vulnerability
Axis 2100 Network Camera is a wireless camera product from Axis, Sweden. web administration portal is one of the web administration pages. A cross-site scripting vulnerability exists in the web administration portal in Axis 2100 Network Camera version 2.03. A remote attacker can exploit this...
KLA11162 Multiple vulnerabilities in Foxit Reader
Multiple serious vulnerabilities have been found in Foxit Reader. Malicious users can exploit these vulnerabilities to obtain sensitive information and execute arbitrary code. Below is a complete list of vulnerabilities: 1. An out-of-bounds read vulnerability in the tile index member of SOT marke...
CVE-2017-15885
Reflected XSS in the web administration portal on the Axis 2100 Network Camera 2.03 allows an attacker to execute arbitrary JavaScript via the confLayoutOwnTitle parameter to view/view.shtml. NOTE: this might overlap CVE-2007-5214...
October 10, 2017—KB4041676 (OS Build 15063.674)
October 10, 2017—KB4041676 OS Build 15063.674 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where some UWP and Centennial apps show a gray icon and display the error...
Foxit PDF Reader JBIG2 Parser Information Disclosure Vulnerability(CVE-2016-8334)
Summary A large out of bounds read on the heap vulnerability in Foxit PDF Reader can potentially be abused for information disclosure. Combined with another vulnerability, it can be used to leak heap memory layout and in bypassing ASLR. Tested Versions Foxit Software Foxit Reader 8.0.2.805 Produc...
Linux kernel information disclosure vulnerability (CNVD-2017-33322)
The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. The waitid implementation of kernel/exit.c in the Linux kernel provides unintended access to Rusage data structures,...
The Great DOM Fuzz-off of 2017
Posted by Ivan Fratric, Project Zero Introduction Historically, DOM engines have been one of the largest sources of web browser bugs. And while in the recent years the popularity of those kinds of bugs in targeted attacks has somewhat fallen in favor of Flash which allows for cross-browser exploi...
Windows Server 2012 September 2017 Security Updates
The remote Windows host is missing security update 4038786 or cumulative update 4038799. It is, therefore, affected by multiple vulnerabilities : - A race condition that could lead to a remote code execution vulnerability exists in NetBT Session Services when NetBT fails to maintain certain...
KB4038783: Windows 10 Version 1511 September 2017 Cumulative Update
The remote Windows host is missing security update 4038783. It is, therefore, affected by multiple vulnerabilities : - A race condition that could lead to a remote code execution vulnerability exists in NetBT Session Services when NetBT fails to maintain certain sequencing requirements...
kernel: NFSv4 server does not properly validate layout type when processing NFSv4 pNFS LAYOUTGET operand
It was found that the NFSv4 server in the Linux kernel did not properly validate layout type when processing NFSv4 pNFS LAYOUTGET and GETDEVICEINFO operands. A remote attacker could use this flaw to soft-lockup the system and thus cause denial of service...
CVE-2017-14140
The movepages system call in mm/migrate.c in the Linux kernel doesn't check the effective uid of the target process. This enables a local attacker to learn the memory layout of a setuid executable allowing mitigation of ASLR...
DEBIAN-CVE-2017-14140
The movepages system call in mm/migrate.c in the Linux kernel before 4.12.9 doesn't check the effective uid of the target process, enabling a local attacker to learn the memory layout of a setuid executable despite ASLR...
CVE-2017-14140
The movepages system call in mm/migrate.c in the Linux kernel before 4.12.9 doesn't check the effective uid of the target process, enabling a local attacker to learn the memory layout of a setuid executable despite ASLR...
CVE-2017-14140
The movepages system call in mm/migrate.c in the Linux kernel before 4.12.9 doesn't check the effective uid of the target process, enabling a local attacker to learn the memory layout of a setuid executable despite ASLR...
CVE-2017-14140
The movepages system call in mm/migrate.c in the Linux kernel before 4.12.9 doesn't check the effective uid of the target process, enabling a local attacker to learn the memory layout of a setuid executable despite ASLR...