1155 matches found
PT-2019-2992 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: An information disclosure issue exists due to the Windows kernel's improper handling of objects in memory. This could allow an attacker to obtain information that could be used to further...
mercurial: Buffer underflow in mpatch.c:mpatch_apply()
mpatch.c in Mercurial before 4.6.1 mishandles integer addition and subtraction, aka OVE-20180430-0002...
GNU Binutils Input Validation Error Vulnerability
GNU Binutils GNU Binary Utilities or binutils is a set of programming language utility programs developed by the GNU Project. The programs are primarily designed to work with target files in a variety of formats, and provide connectors, assemblers, and other tools for target files and archives. A...
DEBIAN-CVE-2019-14444
applyrelocations in readelf.c in GNU Binutils 2.32 contains an integer overflow that allows attackers to trigger a write access violation in byteputlittleendian function in elfcomm.c via an ELF file, as demonstrated by readelf...
UBUNTU-CVE-2019-14444
applyrelocations in readelf.c in GNU Binutils 2.32 contains an integer overflow that allows attackers to trigger a write access violation in byteputlittleendian function in elfcomm.c via an ELF file, as demonstrated by readelf...
Oracle Java SE Security Updates (jul2019-5072835) 01 - Windows
Oracle Java SE is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Oracle Java SE Security Updates (jul2019-5072835) 01 - Linux
Oracle Java SE is prone to multiple vulnerabilities. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Adobe Releases Security Updates
Adobe has released security updates to address vulnerabilities in multiple products. An attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review Adobe Securit...
Adobe Releases Security Updates
Adobe has released security updates to address vulnerabilities in multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review the Ado...
Microsoft Releases March 2019 Security Updates
Microsoft has released updates to address multiple vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review...
Adobe Releases Security Updates
Adobe has released security updates to address a vulnerability in Adobe Acrobat and Reader. An attacker could exploit this vulnerability to obtain sensitive information. The Cybersecurity and Infrastructure Security Agency CISA encourages users and administrators to review Adobe Security Bulletin...
PT-2019-1447
Name of the Vulnerable Software and Affected Versions Microsoft SharePoint versions prior to the fixed version Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Foundation 2013 Microsoft SharePoint Server 2010, 2019 Description A remote code execution vulnerability exists in...
PT-2018-3680 · Google +9 · Libwebp +9
Name of the Vulnerable Software and Affected Versions: libwebp versions prior to 1.0.1 Description: A heap-based buffer overflow was found in the ApplyFilter function, which can be exploited by creating a specially crafted file, allowing a remote attacker to access confidential information. This...
Mozilla Releases Security Updates for Firefox
Mozilla has released security updates to address multiple vulnerabilities in Firefox and Firefox ESR. A remote attacker could exploit some of these vulnerabilities to take control of an affected system. NCCIC encourages users and administrators to review the Mozilla Security Advisories for Firefo...
HDF5 divide by zero error vulnerability (CNVD-2019-03442)
HDF5 is a free suite of tools for managing the storage of different types of data that can be managed, manipulated, viewed, analyzed, and generated in portable formats. A divide-by-zero error vulnerability exists in the 'applyfilters' function of the h5repackfilters.c file in HDF51.10.3 and earli...
UBUNTU-CVE-2018-17434
A SIGFPE signal is raised in the function applyfilters of h5repackfilters.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack...
PT-2018-1923 · Hdf +2 · Hdf5 +2
Name of the Vulnerable Software and Affected Versions: HDF5 versions 1.10.3 and earlier Description: A SIGFPE signal is raised in the apply filters function of h5repack filters.c due to incorrect protection against division by zero when parsing a crafted HDF file. This could allow a remote denial...
Adobe Releases Security Updates
Adobe has released security updates to address vulnerabilities in Adobe Acrobat and Reader. A remote attacker could exploit one of these vulnerabilities to take control of an affected system. NCCIC encourages users and administrators to review Adobe Security Bulletin APSB-18-34 and apply the...
ASUS GT-AC5300 Cross-Site Request Forgery Vulnerability
The ASUS GT-AC5300 is a wireless router from ASUS. A cross-site request forgery vulnerability exists in the ASUS GT-AC5300 using firmware version 3.0.0.4.38432738 and earlier. A remote attacker can exploit the vulnerability by sending a request to the startapply.htm page to change the administrat...
CVE-2018-17023
Cross-site request forgery CSRF vulnerability on ASUS GT-AC5300 routers with firmware through 3.0.0.4.38432738 allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via a request to startapply.htm...