UBUNTU-CVE-2015-8451

Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe AIR SDK & Compiler before 20.0.0.204 allow attackers to execute arbitrary code or cause a denial o...

The vulnerability of the Windows operating system, which allows a perpetrator to trigger a service failure

The vulnerability of the IPSec implementation in the Windows operating system is related to resource management errors. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted IP packets remotely...

Microsoft Windows Schannel TLS Three Times Handshake Vulnerability

Microsoft Windows is a family of operating systems released by Microsoft Corporation in the U.S. Microsoft Schannel or Secure Channel is one of the Security Support Providers SSPs that implements the Secure Socket Layer SSL and Transport Layer Security TLS protocols and provides authentication...

flash-plugin: multiple code execution issues fixed in APSB15-28

Use-after-free vulnerability in Adobe Flash Player before 18.0.0.261 and 19.x before 19.0.0.245 on Windows and OS X and before 11.2.202.548 on Linux, Adobe AIR before 19.0.0.241, Adobe AIR SDK before 19.0.0.241, and Adobe AIR SDK & Compiler before 19.0.0.241 allows attackers to execute arbitrary...

The vulnerability of the Windows operating system, which allows a perpetrator to bypass the secure loading mechanism

The vulnerability of the Windows operating system’s kernel is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to bypass the trusted boot process by using a specially crafted BCD configuration...

Vulnerability of the Windows operating system, allowing a perpetrator to execute arbitrary code

The vulnerability of the Windows Shell component of the Windows operating system is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted web page...

CVE-2015-7635

The CVE-2015-7635 entry describes a use-after-free vulnerability in Adobe Flash Player (Windows/macOS: before 18.0.0.252 and 19.x before 19.0.0.207; Linux before 11.2.202.535) and Adobe AIR (before 19.0.0.213, including AIR SDK before/Compiler before 19.0.0.213). The underlying issue is a use-aft...

flash-plugin: multiple code execution issues fixed in APSB15-25

Adobe Flash Player before 18.0.0.252 and 19.x before 19.0.0.207 on Windows and OS X and before 11.2.202.535 on Linux, Adobe AIR before 19.0.0.213, Adobe AIR SDK before 19.0.0.213, and Adobe AIR SDK & Compiler before 19.0.0.213 allow attackers to execute arbitrary code or cause a denial of service...

MS KB2960358: Update for Disabling RC4 in .NET TLS

The remote host is missing an update for disabling the weak RC4 cipher suite in .NET TLS. Note that even though .NET Framework 4.6 itself is not affected, any Framework 4.5, 4.5.1, or 4.5.2 application that runs on a system that has 4.6 installed is affected. C Tenable Network Security, Inc...

The vulnerability of the Windows operating system allows a perpetrator to circumvent access restrictions to the file system and delete arbitrary files.

The vulnerability of the Windows operating system’s task scheduler is related to deficiencies in access control for certain functions. Exploiting this vulnerability allows a malicious individual to circumvent restrictions on access to the file system and delete arbitrary files...

Vulnerability of the Windows operating system, allowing a perpetrator to execute arbitrary code

The vulnerability of the Windows operating system’s event log exists due to insufficient checking of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely using a specially crafted JNT file...

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the ATML component in the Windows operating system is related to deficiencies in access control for certain functions. Exploiting this vulnerability can allow an attacker, operating locally, to enhance their privileges through a specially crafted application...

flash-plugin: information leaks and hardening bypass fixed in APSB15-23

Adobe Flash Player before 18.0.0.241 and 19.x before 19.0.0.185 on Windows and OS X and before 11.2.202.521 on Linux, Adobe AIR before 19.0.0.190, Adobe AIR SDK before 19.0.0.190, and Adobe AIR SDK & Compiler before 19.0.0.190 do not properly restrict discovery of memory addresses, which allows...

Microsoft Internet Explorer Tampering Vulnerability

Microsoft Internet Explorer IE is a Web browser developed by the American company Microsoft and is the default browser that comes with the Windows operating system. A tampering vulnerability exists in Microsoft IE versions 10 and 11 when accessing improperly labeled files. An attacker could explo...

PT-2015-2017 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient access restrictions to certain features in the Windows operating system. It can be exploited by a local attacker using a specially crafted application t...

Microsoft Internet Explorer Memory Corruption Vulnerability (CNVD-2015-05913)

Microsoft Internet Explorer IE is a Web browser developed by the American company Microsoft and is the default browser that comes with the Windows operating system. A security vulnerability exists when Microsoft IE versions 9 through 11 fail to properly access objects in memory. The vulnerability...

VulnCheck KEV: CVE-2015-2546

The kernel-mode driver in Microsoft Windows OS and Server allows local users to gain privileges via a crafted application...

Lenovo Caught Using Rootkit to Secretly Install Unremovable Software

Two years ago Chinese firm Lenovo got banned from supplying equipment for networks of the intelligence and defense services various countries due to hacking and spying concerns. Earlier this year, Lenovo was caught red-handed for selling laptops pre-installed with Superfish malware. One of the mo...

flash-plugin: multiple code execution flaws (APSB15-19)

Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allow attackers to execute arbitrary code or cause a denial of service memory corruption via...

flash-plugin: multiple code execution flaws (APSB15-19)

Buffer overflow in Adobe Flash Player before 18.0.0.232 on Windows and OS X and before 11.2.202.508 on Linux, Adobe AIR before 18.0.0.199, Adobe AIR SDK before 18.0.0.199, and Adobe AIR SDK & Compiler before 18.0.0.199 allows attackers to execute arbitrary code via unspecified vectors, a differen...