125 matches found
PT-2021-14397 · Fleet · Fleet
Name of the Vulnerable Software and Affected Versions: Fleet versions prior to 3.7.0 Description: The issue allows a malicious actor with a valid node key to send a badly formatted request, causing the Fleet server to exit and resulting in denial of service. This is only possible while a live que...
Service Update 0.24 for Microsoft Dynamics 365 9.0
Service Update 0.24 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.24 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.24. MORE INFORMATION Update package| Version number ---|---...
PT-2020-17390 · Openbsd · Opensmtpd
Name of the Vulnerable Software and Affected Versions: OpenSMTPD versions prior to 6.8.0p1 Description: The issue allows remote attackers to cause a denial of service, resulting in a daemon crash, via a crafted pattern of client activity. This occurs because the filter state machine does not...
Service Update 0.23 for Microsoft Dynamics 365 9.0
Service Update 0.23 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.23 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.23. MORE INFORMATION Update package| Version number ---|---...
Service Update 0.22 for Microsoft Dynamics 365 9.0
Service Update 0.22 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.22 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.22. MORE INFORMATION Update package| Version number ---|---...
Service Update 0.21 for Microsoft Dynamics 365 9.0
Service Update 0.21 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.21 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.21. MORE INFORMATION Update package| Version number ---|---...
Service Update 0.20 for Microsoft Dynamics 365 9.0
Service Update 0.20 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.20 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.20. MORE INFORMATION Update package| Version number ---|---...
PT-2020-5542 · Artifex +7 · Ghostscript +7
Name of the Vulnerable Software and Affected Versions: Ghostscript version 9.50 Description: The issue is related to a Division by Zero error in the bj10v print page function, located in contrib/japanese/gdev10v.c, which can be exploited by a remote attacker to cause a denial of service via a...
Service Update 0.15 for Microsoft Dynamics 365 9.0
Service Update 0.15 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.15 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.15. MORE INFORMATION Update package| Version number ---|---...
MGASA-2020-0248 Updated cups packages fix security vulnerability
Updated cups packages fix security vulnerabilities: It was discovered that CUPS incorrectly handled certain language values. A local attacker could possibly use this issue to cause CUPS to crash, leading to a denial of service, or possibly obtain sensitive information CVE-2019-2228. Stephan...
Service Update 0.16 for Microsoft Dynamics 365 9.0
Service Update 0.16 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.16 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.16. MORE INFORMATION Update package| Version number ---|---...
Service Update 0.14 for Microsoft Dynamics 365 9.0
Service Update 0.14 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.14 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.14. MORE INFORMATION Update package| Version number ---|---...
Cisco Unity Connection Directory Traversal Vulnerability (CNVD-2020-04829)
Cisco Unity Connection UC is a set of voice messaging platforms from the American company Cisco Cisco. The platform can use voice commands to make calls or listen to messages hands-free. A directory traversal vulnerability exists in Cisco Unity Connection version 11.5SU7 and versions prior to...
June 11, 2019—KB4503286 (OS Build 17134.829)
June 11, 2019—KB4503286 OS Build 17134.829 The Windows 10 April 2018 Update will reach end of service on November 12, 2019 for Home and Pro editions. We will begin updating devices running the Windows 10 April 2018 Update starting July 16, 2019 to help ensure that these devices remain in a servic...
Ivanti LANDESK Management Suite SQL Injection Vulnerability
Ivanti LANDESK Management Suite LDMS is a suite of endpoint security management software from Ivanti, USA. A SQL injection vulnerability exists in Ivanti LDMS version 10.0.1.168 Service Update 5. The vulnerability stems from a database-based application that lacks validation of externally entered...
Ivanti LANDESK Management Suite Arbitrary File Upload Vulnerability
The Ivanti LANDESK Management Suite allows you to manage all client systems easily and efficiently. An arbitrary file upload vulnerability exists in the upl/asyncupload.asp web API endpoint in Ivanti LANDESK Management Suite 10.0.1.168 Service Update 5. An attacker can exploit this vulnerability ...
CVE-2019-12374
A SQL Injection vulnerability exists in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 due to improper username sanitization in the Basic Authentication implementation in core/provisioning.secure/ProvisioningSecure.asmx in Provisioning.Secure.dll...
Hardcoded credentials
Use of a hard-coded encryption key in Ivanti LANDESK Management Suite LDMS, aka Endpoint Manager 10.0.1.168 Service Update 5 may lead to full managed endpoint compromise by an authenticated user with read privileges...
CVE-2018-16156
In PaperStream IP TWAIN 1.42.0.5685 Service Update 7, the FJTWSVIC service running with SYSTEM privilege processes unauthenticated messages received over the FjtwMkicFjicube32 named pipe. One of these message processing functions attempts to dynamically load the UninOldIS.dll library and executes...
Opera Privacy Statement Update 2019
Privacy Opera Privacy Statement Update 2019 Share February 7th, 2019 This is an outdated article. Please read Opera Privacy Statement Update 2022 instead. We have recently updated our end-user license agreements and our terms of service have been updated as well. We are also about to update our...