KLA10648 Multiple vulnerabilities in Internet Explorer

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer. Malicious users can exploit these vulnerabilities to Bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Multiple memory corruption...

The vulnerability of the Adobe AIR software platform, which allows a hacker to bypass the ASLR protection mechanism

The vulnerability of the Adobe AIR software platform is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass the ASLR protection mechanism...

The vulnerability of the Flash Player software platform, which allows a hacker to bypass the ASLR protection mechanism

The vulnerability of the Flash Player software is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass the ASLR protection mechanism...

The vulnerability of the Adobe AIR software platform, which allows a hacker to bypass the ASLR protection mechanism

The vulnerability of the Adobe AIR software platform is related to the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass the ASLR protection mechanism...

Microsoft Excel ASLR Bypass Vulnerability

Microsoft Excel, Excel Viewer and SharePoint Server are all products of Microsoft Corporation.Excel is a spreadsheet processing software in the Office suite.Excel Viewer is a free Office Excel spreadsheet viewer. SharePoint Server is an enterprise business collaboration platform. There is a...

kernel: Linux stack ASLR implementation Integer overflow

An integer overflow flaw was found in the way the Linux kernel randomized the stack for processes on certain 64-bit architecture systems, such as x86-64, causing the stack entropy to be reduced by four...

Flash Player < 11.7.700.269 / 12.0.0.70 Multiple Vulnerabilities (APSB14-07)

Binary data 8807.prm...

Android Debuggerd Debugger Device Memory Leak Vulnerability

debuggerd is a diagnostic daemon that comes with Android system for abnormal program exit. this process can detect program crash and output the process status information of the crashed program to the file and serial port. Debuggerd 4.0 Ice Cream Sandwich to Lollipop 5.x suffers from a security...

Microsoft refused to fix the 3 2-bit the IE vulnerability, the reason given is: 3 2-bit programs to be eliminated-vulnerability warning-the black bar safety net

! HP security expert Dustin Childs recently disclosed one that affects millions of 3 2-bit Windows systems the IE vulnerability. Looks pretty serious isn't it? However, Microsoft does not seem to intend to fix this vulnerability...... This is a based on ASLR, address space layout randomization of...

UBUNTU-CVE-2015-5073

Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an...

OracleVM 3.3 : kernel-uek (OVMSA-2015-0072)

The remote OracleVM system is missing necessary patches to address critical security updates : - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308309 CVE-2015-2830 - x86, mm/ASLR: Fix stack randomization on 64-bit systems Hector Marco-Gisbert Orabug: 213079...

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-68.3.3 - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308309 CVE-2015-2830 - x86, mm/ASLR: Fix stack randomization on 64-bit systems Hector Marco-Gisbert Orabug: 21307919 CVE-2015-1593 CVE-2015-1593...

Unbreakable Enterprise kernel security update

2.6.39-400.250.6 - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308308 CVE-2015-2830 - x86, mm/ASLR: Fix stack randomization on 64-bit systems Hector Marco-Gisbert Orabug: 21307918 CVE-2015-1593 CVE-2015-1593...

Unbreakable Enterprise kernel security update

kernel-uek 2.6.32-400.37.6 - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308307 CVE-2015-2830 - x86, mm/ASLR: Fix stack randomization on 64-bit systems Hector Marco-Gisbert Orabug: 21307917 CVE-2015-1593 CVE-2015-1593...

kernel: Linux stack ASLR implementation Integer overflow

An integer overflow flaw was found in the way the Linux kernel randomized the stack for processes on certain 64-bit architecture systems, such as x86-64, causing the stack entropy to be reduced by four...

kernel: Linux stack ASLR implementation Integer overflow

An integer overflow flaw was found in the way the Linux kernel randomized the stack for processes on certain 64-bit architecture systems, such as x86-64, causing the stack entropy to be reduced by four...

Google Chrome < 43.0.2357.124 Multiple Vulnerabilities

Binary data 8783.pasl...

Dude, where’s my heap?

Guest posted by Ivan Fratric, spraying 1TB of memory The ability to place controlled content to a predictable location in memory can be an important primitive in exploitation of memory corruption vulnerabilities. A technique that is commonly used to this end in browser exploitation is heap...

FreeBSD : Adobe Flash Player -- critical vulnerabilities (1e63db88-1050-11e5-a4df-c485083ca99c)

Adobe reports : Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux. These updates address vulnerabilities that could potentially allow an attacker to take control of the affected system. These updates resolve a vulnerability CVE-2015-3096 that could be...

flash-plugin: information leak leading to ASLR bypass (APSB15-11)

Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...