The vulnerability of the Microsoft Office Compatibility Pack allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Office Compatibility Pack is related to incorrect data processing. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted document from a remote location...

The vulnerability of the Microsoft Office Compatibility Pack allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Office Compatibility Pack is related to incorrect data processing. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted document from a remote location...

The vulnerabilities of Cisco IOS, Cisco IOS XE, and the Cisco Unified Communications Management system allow a perpetrator to cause service interruptions.

The vulnerability of SIP protocol implementations in Cisco IOS, Cisco IOS XE, and the Cisco Unified Communications Manager system is related to insufficient processing of input data. Exploiting this vulnerability allows a malicious actor to cause service interruptions such as device restarts or...

CVE-2016-4463

A stack exhaustion flaw was found in the way Xerces-C XML parser handled deeply nested DTDs. An attacker could potentially use this flaw to crash an application using Xerces-C by tricking it into processing specially crafted data...

The vulnerability of the Junos operating system, which allows a hacker to trigger a service failure

The vulnerability of the Junos operating system is related to incorrect data processing. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures using VXLAN packets...

The vulnerability of the Safari browser, which allows a hacker to replace the user interface

The vulnerability of Safari browser is related to incorrect data processing. Exploiting this vulnerability allows a malicious actor to replace the user interface through a web page that replaces the actual text...

The vulnerability of Safari browser and iOS operating system allows attackers to track users.

The vulnerability of the WebKit component in the Safari browser and the iOS operating system is related to improper data processing. Exploiting this vulnerability allows a malicious actor to remotely track users...

CVE-2016-1981

QEMU aka Quick Emulator built with the e1000 NIC emulation support is vulnerable to an infinite loop issue. It could occur while processing data via transmit or receive descriptors, provided the initial receive/transmit descriptor head TDH/RDH is set outside the allocated descriptor buffer. A...

Libnsgif 0.1.2 Stack Overflow / Out-Of-Bounds Read Exploit

Libnsgif version 0.1.2 suffers from stack overflow and out-of-bounds read vulnerabilities. Overview ======== Libnsgif1 is a decoding library for GIF images. It is primarily developed and used as part of the NetSurf project. As of version 0.1.2, libnsgif is vulnerable to a stack overflow...

Department of Education Lambasted Over Database Vulnerabilities

Like the Office of Personnel Management before it, the Department of Education has failed to heed repeated warnings that its systems contain multiple weaknesses. In a House Committee on Oversight and Government Reform hearing held this week, Congressman and committee chair Jason Chaffetz R-Utah...

[SECURITY] Fedora 21 Update: mingw-xerces-c-3.1.1-11.fc21

Xerces-C is a validating XML parser written in a portable subset of C++. Xerces-C makes it easy to give your application the ability to read and write XML data. A shared library is provided for parsing, generating, manipulating, and validating XML documents. Xerces-C is faithful to the XML 1.0...

socat – Multipurpose Relay (SOcket CAT)

socat socat is a relay for bidirectional data transfer between two independent data channels. Each of these data channels may be a file, pipe, device serial line etc. or a pseudo terminal, a socket UNIX, IP4, IP6 – raw, UDP, TCP, an SSL socket, proxy CONNECT connection, a file descriptor stdin...

(Pwn2Own) Microsoft Internet Explorer Protected Mode Bypass Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2014-2342

Triangle MicroWorks SCADA Data Gateway vulnerable to DoS via crafted DNP3 packets. Affected: versions before 3.00.0635. Root cause: incorrect input validation leading to uncontrolled resource consumption (IP-connected DoS; serial connections also impacted with physical access). Impact: denial of ...

[SECURITY] Fedora 19 Update: libmicrohttpd-0.9.33-1.fc19

GNU libmicrohttpd is a small C library that is supposed to make it easy to run an HTTP server as part of another application. Key features that distinguish libmicrohttpd from other projects are: C library: fast and small API is simple, expressive and fully reentrant Implementation is http 1.1...

Mozilla Firefox < 25.0 Multiple Vulnerabilities

Binary data 8044.prm...

Microsoft Office Excel Remote Code Execution Vulnerabilities (2858300)

This host is missing an important security update according to Microsoft Bulletin MS13-073. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Microsoft Office Excel Viewer Remote Code Execution Vulnerabilities (2858300)

This host is missing an important security update according to Microsoft Bulletin MS13-073. OpenVAS Vulnerability Test $Id: secpodmsexcelviewerms13-073.nasl 6115 2017-05-12 09:03:25Z teissa $ Microsoft Office Excel Viewer Remote Code Execution Vulnerabilities 2858300 Authors: Antu Sanadi Copyrigh...

(Pwn2Own) Microsoft Internet Explorer Protected Mode Bypass Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2013-1579

The rtpsutiladdbitmap function in epan/dissectors/packet-rtps.c in the RTPS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly implement certain nested loops for processing bitmap data, which allows remote attackers to cause a denial of service infinite loop via a...