65 matches found
CVE-2020-25244
A vulnerability has been identified in LOGO! Soft Comfort All versions V8.4. The software insecurely loads libraries which makes it vulnerable to DLL hijacking. Successful exploitation by a local attacker could lead to a takeover of the system where the software is installed...
PT-2024-4516 · FFmpeg +2 · Ffmpeg +2
Name of the Vulnerable Software and Affected Versions: Ffmpeg versions v.n6.1-3-g466799d4f5 Description: The issue is related to a buffer overflow vulnerability in the config eq output function, located in the libavfilter/asrc afirsrc.c component. This vulnerability allows a local attacker to...
Microsoft Office Elevation of Privilege Vulnerability (CNVD-2024-28705)
Microsoft Office is an office software suite of products from the U.S. company Microsoft Microsoft. The product's common components include Word, Excel, Access, Powerpoint, FrontPage, etc.. Microsoft Office has an elevation of privilege vulnerability that can be exploited by an attacker to gain...
CVE-2023-35137
An improper authentication vulnerability in the authentication module of the Zyxel NAS326 firmware version V5.21AAZF.14C0 and NAS542 firmware version V5.21ABAG.11C0 could allow an unauthenticated attacker to obtain system information by sending a crafted URL to a vulnerable device...
CVE-2023-46705
in OpenHarmony v3.2.2 and prior versions allow a local attacker causes system information leak through type confusion...
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
Microsoft WDAC OLE DB provider for SQL Server is an API from Microsoft Corporation USA that allows access to data from a variety of sources in a unified way. A remote code execution vulnerability exists in Microsoft WDAC OLE DB provider for SQL Server, which can be exploited by an attacker to...
CVE-2023-38026 SpotCam Co., Ltd. SpotCamFHD - Use of Hard-coded Cryptographic Key -2
SpotCam Co., Ltd. SpotCam FHD 2 has a vulnerability of using hard-coded uBoot credentials. An remote attacker can exploit this vulnerability to access the system to perform arbitrary system operations or disrupt service...
CVE-2021-3506
An out-of-bounds OOB memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel. A bounds check failure allows a local attacker to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this...
Component Object Model Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists when Component Object Model COM client uses special case IIDs. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; view, change, or delete data; ...
Memory Corruption Vulnerability in InotouchEditor
InotouchEditor is an HMI programming software produced by Shenzhen Huichuan Technology Co. InotouchEditor suffers from a memory corruption vulnerability when handling afs project files, which can be exploited by an attacker to gain control of the user's system or crash the program...
CVE-2013-0220
The 1 sssautofscmdgetautomntent and 2 sssautofscmdgetautomntbyname function in responder/autofs/autofssrvcmd.c and the 3 sshcmdparserequest function in responder/ssh/sshsrvcmd.c in System Security Services Daemon SSSD before 1.9.4 allow remote attackers to cause a denial of service out-of-bounds...
MS05-019: Vulnerabilities in TCP/IP Could Allow Remote Code Execution (893066)
The remote host runs a version of Windows that has a flaw in its TCP/IP stack. The flaw could allow an attacker to execute arbitrary code with SYSTEM privileges on the remote host, or to perform a denial of service attack against the remote host. Proof of concept code is available to perform a...
a2ps: Multiple vulnerabilities
Background a2ps is an Any to Postscript filter that can convert to Postscript from many filetypes. fixps is a script that fixes errors in Postscript files. psmandup produces a Postscript file for printing in manual duplex mode. Description Javier Fernandez-Sanguino Pena discovered that the a2ps...
Horde 1.2.x/2.1.3 and Imp 2.2.x/3.1.2 - File Disclosure
source: https://www.securityfocus.com/bid/3067/info A vulnerability has been discovered in Horde Imp which may allow an attacker to access arbitrary system files. The issue occurs due to insufficient sanity checks on user-supplied URI parameters. By specifying a malicious INBOX file in a request,...
Security Update for Windows Server 2008 (KB2646524)
A security issue has been identified that could allow an authenticated local attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...
Security Update for Windows 7 (KB2393802)
A security issue has been identified that could allow an authenticated local attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...
Security Update for Windows Vista (KB982214)
A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...
Security Update for Windows Vista (KB2709162)
A security issue has been identified that could allow an authenticated local attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...
Security Update for Windows XP (KB981852)
A security issue has been identified that could allow an authenticated local attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...
Security Update for Windows XP x64 Edition (KB2641653)
A security issue has been identified that could allow an authenticated local attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...