8 matches found
CVE-2023-53823
CVE-2023-53823 in the Linux kernel was fixed by introducing a disk-level mutex (rq_qos_mutex) to protect rq_qos APIs. The patch ensures rq_qos_exit() is not concurrently accessed with rq_qos_add() during disk removal/initialization and cgroup policy changes, mitigating races that could trigger nu...
PT-2018-8802 · Cisco · Cisco Firesight System
Name of the Vulnerable Software and Affected Versions: Cisco FireSIGHT System Software affected versions not specified Description: A vulnerability exists in the detection engine of the software, allowing an unauthenticated, remote attacker to bypass a file policy configured to block file transfe...
CVE-2016-6460
A vulnerability in the FTP Representational State Transfer Application Programming Interface REST API for Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass FTP malware detection rules and download malware over an FTP connection. Cisco Firepower System...
KLA10785 Code execution vulnerability in Microsoft Office
Multiple unspecified vulnerabilities was found in Microsoft Office. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Technical details You can mitigate this vulnerability via using Microsoft...
Microsoft Word RTF File 'listoverridecount'远程代码执行漏洞(MS12-079)
BUGTRAQ ID: 56834 CVECAN ID: CVE-2012-2539 Microsoft Word 属于办公软件是微软公司的一个文字处理器应用程序。 Microsoft Word 在解析listoverridecount相关的RTF(Rich Text Format)数据时存在漏洞。通过诱使用户浏览恶意网站或在e-mail邮件中打开特定格式的rtf文件,未经身份验证的远程攻击者可利用此漏洞以当前用户权限执行任意代码。 0 Microsoft Office 2003 Professional Edition Microsoft Office Word Viewer...
Microsoft issues PowerPoint zero-day warning
Microsoft has issued an advisory to warn about an under-attack zero-day vulnerability affecting its PowerPoint software. According to the pre-patch advisory, the flaw allows remote code execution if a user opens a booby-trapped PowerPoint file. The company described the attacks as “limited and...
Trojan exploiting Excel zero-day flaw
Reports have been circulating in the last couple of days about an unpatched vulnerability in Microsoft Excel, and the software giant has now confirmed the problem. The flaw allows attackers to run code on remote machines if they can entice a user into opening a malicious Excel file. Some security...
Microsoft Excel多个远程代码执行漏洞(MS08-014)
BUGTRAQ ID: 28095,28166,28170,27305 CVECAN ID: CVE-2008-0112,CVE-2008-0114,CVE-2008-0117,CVE-2008-0081 Excel是微软Office办公软件家族中的电子表格工具。 Excel导入文件时处理数据的方式、处理Style记录数据的方式、处理条件格式值和处理宏的方式存在多个代码执行漏洞,如果用户受骗打开了恶意的Excel文件,就会触发这些漏洞,导致执行任意指令。 Microsoft Excel Viewer 2003 Microsoft Excel 2003 SP2 Microsoft Exce...