ROS-20251117-03

Vulnerability of the xdrtrrqmessage function of the protocol.cpp module of the Red Database Management System is related to dereferencing of a null pointer. Data" is related to dereferencing of a null pointer. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a...

PT-2025-31631 · 'Ред Софт' · Ред База Данных

Уязвимость функции dsqlPass модуля RecordSourceNodes.cpp системы управления базами данных «Ред База Данных» связана неправильной реализацией требований. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании...

PT-2024-41478 · Ооо 'Ред Софт' · Ред База Данных

Уязвимость конструктора класса PhysHdr в модуле CryptoManager.cpp системы управления базами данных «Ред База Данных» связана с тем, что в некоторых случаях при переключении базы данных в режим инкрементального резервного копирования подключение к этой базе завершалось ошибкой. Эксплуатация...

PT-2024-41479 · Ооо 'Ред Софт' · Ред База Данных

Уязвимость метода TracePluginImpl::writePacket модуля TracePluginImpl.cpp системы управления базами данных «Ред База Данных» связана с использованием бинарного аудита при включенном параметре cancel on error . Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, даже при...

CVE-2021-42293

Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege Vulnerability...

CVE-2021-42293

Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege Vulnerability...

Microsoft Office 2013 Elevation of Privilege Vulnerability (KB5002104)

This host is missing an important security update according to Microsoft KB5002104 Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

Microsoft Office 2016 Privilege Escalation Vulnerability (KB5002099)

This host is missing an important security update according to Microsoft KB5002099 Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

Description of the security update for Office 2016: December 14, 2021 (KB5002099)

Description of the security update for Office 2016: December 14, 2021 KB5002099 Summary This security update resolves a Microsoft Jet Red database engine and access connectivity engine elevation of privilege vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilitie...

KLA12389 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in...

Microsoft Windows Multiple Vulnerabilities (KB5003172)

This host is missing a critical security update according to Microsoft KB5003172 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-28455

Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability...

CVE-2021-28455

Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability...

Remote code execution

Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability...

EUVD-2021-15134

Microsoft Jet Red Database Engine and Access Connectivity Engine Remote Code Execution Vulnerability...

Security update 2021-05-11

...

KLA12174 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, spoof user interface, obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of...

KLA12175 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft SharePoint c...

Oracle Releases Critical Patch Update

Oracle has released its Critical Patch Update for October 2009 to address 38 vulnerabilities across several database and server products. The update contains the following security fixes: 16 for the Oracle Database 3 for the Oracle Application Server 8 for the Oracle E-Business Suite and...

Unprivileged DB users can see APEX password hashes

Name Unprivileged DB users can see APEX password hashes Systems Affected APEX 3.0 optional component of 11.1.0.7 installation Severity High Risk Category Password Disclosure Vendor URL http://www.oracle.com/ Author Alexander Kornbrust ak at red-database-security.com CVE CVE-2009-0981 Advisory 14...