330 matches found
KB4038781: Windows 10 September 2017 Cumulative Update
The remote Windows host is missing security update 4038781. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when Microsoft Windows PDF Library improperly handles objects in memory. The vulnerability could corrupt memory in a way that enables...
UBUNTU-CVE-2017-15587
An integer overflow was discovered in pdfreadnewxrefsection in pdf/pdf-xref.c in Artifex MuPDF 1.11...
The vulnerability of the Microsoft Windows PDF Library on Windows operating systems allows a hacker to execute arbitrary code.
The vulnerability of the Microsoft Edge browser’s PDF library in Windows operating systems is related to incorrect handling of objects in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user. This vulnerability can be exploite...
September 12, 2017—KB4038793 (Security-only update)
September 12, 2017—KB4038793 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue in NPS server where EAP TLS authentication was broken. Re-release...
Microsoft Windows PDF Library JPEG2000 Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows PDF Library. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...
Poppler PDF library JPEG 2000 levels Code Execution Vulnerability(CVE-2017-2820)
Summary An exploitable integer overflow vulnerability exists in the JPEG 2000 image parsing functionality of freedesktop.org Poppler 0.53.0. A specially crafted PDF file can lead to an integer overflow causing out of bounds memory overwrite on the heap resulting in potential arbitrary code...
CVE-2017-8737
Microsoft Windows PDF Library in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Windows PDF Library handles object...
CVE-2017-8728
Microsoft Windows PDF Library in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Windows PDF Library handles object...
CVE-2017-8728
Microsoft Windows PDF Library in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Windows PDF Library handles object...
CVE-2017-8737
Microsoft Windows PDF Library in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Windows PDF Library handles object...
Remote code execution
Microsoft Windows PDF Library in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Windows PDF Library handles object...
Remote code execution
Microsoft Windows PDF Library in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Windows PDF Library handles object...
CVE-2017-8728
Microsoft Windows PDF Library in Microsoft Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to the way that Windows PDF Library handles object...
CVE-2017-8728
CVE-2017-8728 is a Windows PDF Library remote code execution vulnerability affecting Windows 8.1/RT 8.1, Windows Server 2012/2012 R2, Windows 10 (1511–1703) and Windows Server 2016. The issue stems from the Windows PDF Library handling objects in memory, enabling arbitrary code execution in the c...
Microsoft Windows PDF Library Remote Code Execution Vulnerability (CNVD-2017-33458)
Microsoft Windows 8.1 and so on are the United States Microsoft Microsoft company released the operating system. PDF library is one of the PDF library. A remote code execution vulnerability exists in PDF Library in Microsoft Windows, which stems from the program failing to properly handle objects...
Microsoft Windows PDF Library Remote Code Execution Vulnerability (CNVD-2017-33459)
Microsoft Windows 8.1 and so on are the United States Microsoft Microsoft company released the operating system. PDF library is one of the PDF library. A remote code execution vulnerability exists in PDF Library in Microsoft Windows, which stems from the program failing to properly handle objects...
Microsoft Windows Multiple Vulnerabilities (KB4038781)
This host is missing a critical security update according to Microsoft KB4038781 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft Windows Multiple Vulnerabilities (KB4038783)
This host is missing a critical security update according to Microsoft KB4038783 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
September 12, 2017—KB4038786 (Security-only update)
September 12, 2017—KB4038786 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where the WordPad application can sometimes crash on launch. The...
Debian DLA-1074-1 : poppler security update
Several buffer and integer overflow issues were discovered in Poppler, a PDF library, that could lead to application crash or possibly other unspecified impact via maliciously crafted files. For Debian 7 'Wheezy', these problems have been fixed in version 0.18.4-6+deb7u2. We recommend that you...