57 matches found
CVE-2021-40574
The binary MP4Box in Gpac from 0.9.0-preview to 1.0.1 has a double-free vulnerability in the gftextgetutf8line function in loadtext.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges...
Microsoft Windows Multiple Vulnerabilities (KB4586830)
This host is missing a critical security update according to Microsoft KB4586830 SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
KLA11943 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. Elevation of privilege vulnerability on...
Adobe Reader 2017 Security Update (APSB20-05) - Mac OS X
Adobe Reader 2017 is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you c...
KLA11639 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, bypass security restrictions, spoof user interface, cause denial of service. Below is a complete list of...
Adobe Acrobat 2017 Security Updates (APSB19-02) - Windows
Adobe Acrobat 2017 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobat";...
MGASA-2018-0098 Updated glibc packages fix security vulnerabilities
An issue in the code handling RPATHs was fixed that could have been exploited by an attacker to execute code loaded from arbitrary libraries CVE-2017-16997. A privilege escalation bug in the realpath function when the getcwd system call doesn't return a valid absolute pathname CVE-2018-1000001...
Icecream Apps Insecure File Permissions / Privilege Escalation
Exploit Title: Multiple Icecream Apps Local Privilege Escalation Date: 13/09/2016 Exploit Author: Tulpa Contact: [email protected] Author website: www.tulpa-security.com Vendor Homepage: icecreamapps.com Software Versions Affected: Icecream Ebook Reader 4.21 | Icecream Screen Recorder 4.21...
Centreon <= 2.5.3 Multiple Vulnerabilities - Active Check
Centreon is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:centreon:centreon"; ifdescription...
HP Service Manager / HP ServiceCenter multiple security vulnerabilities
Code execution, privilege escalation, information leakage, XSS...
CentOS Update for firefox CESA-2013:0820 centos5
Check for the Version of firefox OpenVAS Vulnerability Test CentOS Update for firefox CESA-2013:0820 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...
CentOS Update for thunderbird CESA-2011:0474 centos4 i386
Check for the Version of thunderbird OpenVAS Vulnerability Test CentOS Update for thunderbird CESA-2011:0474 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
GLSA-200707-01 : Firebird: Buffer overflow
The remote host is affected by the vulnerability described in GLSA-200707-01 Firebird: Buffer overflow Cody Pierce from TippingPoint DVLabs has discovered a buffer overflow when processing 'connect' requests with an overly large 'pcnctcount' value. Impact : An unauthenticated remote attacker coul...
USN-68-1: enscript vulnerabilities
Erik Sjölund discovered several vulnerabilities in enscript which could cause arbitrary code execution with the privileges of the user calling enscript. Quotes and other shell escape characters in titles and file names were not handled in previous versions. CAN-2004-1184 Previous versions support...
USN-25-1: libgd2 vulnerability
CAN-2004-0990 described several more buffer overflows which had been discovered in libgd2's PNG handling functions. However, it was determined that the update from USN-11-1 was not sufficient to prevent every possible attack, so another update is required. If an attacker tricked a user into loadi...
Tower Toppler 0.99.1 - 'Display' Local Buffer Overflow
source: https://www.securityfocus.com/bid/7028/info It has been reported that a buffer overflow exists in Tower Toppler. A local user may be able to exploit this issue to execute code with the privileges of the toppler program. !/usr/bin/perl [email protected] playing a game hi bob $len = 1024;...
Microsoft Visual Studio VB-TSQL debugger object vbsdicli.exe contains buffer overflow via NewSPID method
Overview A vulnerability in an object included with Visual Studio 6.0 Enterprise Edition may allow an attacker to execute code with the privileges of an interactively logged in user. Description The VB-TSQL debugger object included in Visual Studio 6.0 Enterprise Edition contains a buffer overflo...