1567 matches found
Microsoft Windows Graphics Remote Code Execution Vulnerability
Microsoft Windows is the popular computer operating system. A remote code execution vulnerability exists in Microsoft Windows due to a font library that does not properly handle constructed embedded fonts. This vulnerability could be exploited by an attacker to take full control of an affected...
Office OLE Multiple DLL Side Loading Vulnerabilities
Multiple DLL side loading vulnerabilities were found in various COM components. These issues can be exploited by loading various these components as an embedded OLE object. When instantiating a vulnerable object Windows will try to load one or more DLLs from the current working directory. If an...
Snort Back Orifice BOPing - ver 2 (CVE-1999-0660)
BOPing is a network scanner for computers where the Back Orifice remote administration program is installed. Use of this scanner might be a preliminary step before attempting to take control over the system using the Back Orifice program.This protection detects and blocks use of the BOPing scanne...
Scripting Engine Memory Corruption Vulnerability
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully...
Microsoft Releases Security Updates
Microsoft has released 11 updates to address vulnerabilities in Microsoft software. Exploitation of one of these vulnerabilities could allow a remote attacker to take control of an affected system. US-CERT encourages users and administrators to review Microsoft Security Bulletins MS16-084 through...
Adobe Releases Security Updates
Adobe has released security updates to address vulnerabilities in Acrobat, Flash Player, Reader, and XMP Tookit for Java. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system Users and administrators are encouraged to review Adobe Securit...
The vulnerability of the Windows operating system allows a malicious intruder to compromise the confidentiality, integrity, and accessibility of protected information.
A vulnerability that allows for remote execution of code exists in the Windows event log system and is related to the processing of specially crafted files. Exploiting this vulnerability enables remote execution of code provided that the user opens a specially crafted event log file. If the user...
The vulnerability of the Windows operating system, which allows a hacker to increase their privileges
The vulnerability in the Auxiliary Functions Driver AFD allows for an increase in privilege levels. Exploiting this vulnerability enables a malicious individual to execute arbitrary code and gain full control over the system. After that, they can install programs, view, modify, or delete data, as...
Vulnerability of Microsoft Office software, which allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information
A vulnerability that allows for remote execution of code exists in vulnerable components and is related to the processing of specially crafted font files. Exploiting this vulnerability enables remote execution of code, provided that the user opens a specially crafted file or webpage. Exploiting...
The vulnerability in Microsoft OneNote’s software allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.
A vulnerability that allows for remote execution of code exists in Microsoft OneNote and is related to the processing of specially crafted files. Exploiting this vulnerability enables a malicious individual to execute arbitrary code within the context of the current user. If a user with...
The vulnerability in Microsoft.NET Framework software allows a malicious attacker to compromise the confidentiality, integrity, and accessibility of protected information.
A vulnerability that allows for remote execution of code exists in the Microsoft .NET Framework. This vulnerability is related to incorrect handling of localized resource identifiers. Exploiting this vulnerability enables a malicious individual to gain full control over the system. They can then...
The vulnerability of the Microsoft Lync Attendee User software allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the GDI+ component in Microsoft Lync Attendee User allows for remote execution of code, provided that the user opens a specially crafted image. Exploiting this vulnerability enables a malicious individual to gain full control over the system. They can then install programs,...
The vulnerability of Microsoft Lync Server software allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the GDI+ component of the Microsoft Lync Attendee User program, related to the processing of specially crafted images, allows for remote execution of code when a user opens a specially crafted image. Exploiting this vulnerability enables a malicious individual to gain full...
Vulnerability of Microsoft Office Web Apps, which allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information
The vulnerability of Microsoft Office Web Apps allows for the execution of code remotely. If a user with administrative privileges accesses the system, a malicious individual can gain full control over the system. They can install programs, view, modify, or delete data, as well as create new...
The vulnerability of the Windows operating system, allowing a perpetrator to execute arbitrary code
The vulnerability in GDI+, related to the processing of specially crafted images, allows for remote execution of code provided that the user opens a specially crafted image. Exploiting this vulnerability enables a malicious individual to gain full control over the system. They can then install...
The vulnerability of the Microsoft Lync Attendee User software allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.
A vulnerability that allows for remote execution of code exists in vulnerable components and is related to the processing of specially crafted font files. Exploiting this vulnerability enables remote execution of code, provided that the user opens a specially crafted file or webpage. Exploiting...
The vulnerability of Microsoft Lync Server software allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.
A vulnerability that allows for remote execution of code exists in vulnerable components and is related to the processing of specially crafted font files. Exploiting this vulnerability enables remote execution of code, provided that the user opens a specially crafted file or webpage. Exploiting...
Vulnerability of Microsoft Office software, which allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information
The vulnerability in GDI+, related to the processing of specially crafted images, allows for remote execution of code provided that the user opens a specially crafted image. Exploiting this vulnerability enables a malicious individual to gain full control over the system. They can then install...
Vulnerability of Microsoft Word software, which allows a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information
A vulnerability that allows for remote execution of code exists in Microsoft Office and is related to the processing of certain properties of Microsoft Word files. If a user with administrative privileges accesses the system, a malicious individual can gain full control over the system. They can...
The vulnerability in Microsoft Publisher’s software allows a malicious individual to compromise the confidentiality, integrity, and accessibility of protected information.
A vulnerability that allows for remote execution of code exists in Microsoft Publisher. This vulnerability is related to the processing of specially crafted files. Exploiting this vulnerability enables a malicious individual to execute arbitrary code with the privileges of the current user. If a...