1300 matches found
KLA11846 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of...
Windows 7 and Windows Server 2008 R2 August 2017 Security Updates
The remote Windows host is missing security update 4034679 or cumulative update 4034664. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when Microsoft Windows improperly handles NetBIOS packets. An attacker who successfully exploited this...
Windows Server 2012 August 2017 Security Updates
The remote Windows host is missing security update 4034666 or cumulative update 4034665. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when Microsoft Windows improperly handles NetBIOS packets. An attacker who successfully exploited this...
Windows 8.1 and Windows Server 2012 R2 August 2017 Security Updates
The remote Windows host is missing security update 4034672 or cumulative update 4034681. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when Microsoft Windows improperly handles NetBIOS packets. An attacker who successfully exploited this...
KB4034660: Windows 10 Version 1511 August 2017 Cumulative Update
The remote Windows host is missing security update 4034660. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when Microsoft Windows improperly handles NetBIOS packets. An attacker who successfully exploited this vulnerability could cause a target...
KB4034658: Windows 10 Version 1607 and Windows Server 2016 August 2017 Cumulative Update
The remote Windows host is missing security update 4034658. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when Microsoft Windows improperly handles NetBIOS packets. An attacker who successfully exploited this vulnerability could cause a target...
Security update for the Microsoft JET Database Engine remote code execution vulnerability in Windows Server 2008: August 8, 2017
Security update for the Microsoft JET Database Engine remote code execution vulnerability in Windows Server 2008: August 8, 2017 Summary A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system. An attacker who...
[SECURITY] Fedora 24 Update: sqlite-3.13.0-2.fc24
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...
[SECURITY] Fedora 25 Update: sqlite-3.14.2-2.fc25
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...
UBUNTU-CVE-2017-2519
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial o...
CVE-2016-7249
Microsoft SQL Server 2016 does not properly perform a cast of an unspecified pointer, which allows remote authenticated users to gain privileges via unknown vectors, aka "SQL RDBMS Engine Elevation of Privilege Vulnerability."...
[SECURITY] Fedora 24 Update: sqlite-3.13.0-1.fc24
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL databas...
[SECURITY] Fedora 24 Update: bugzilla-5.0.3-1.fc24
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
KesionCMS ASP版 /item/?c-5,key-1.html SQL注入漏洞
0x01漏洞简介 KesionCMS ASP版在/item/?c-5,key-1.html存在伪静态注入漏洞。 0x02漏洞详情 很明显的一处注入;但是好像需要闭合,先提交了证明下注入 http://.../item/?c-5,key-1%27.html Microsoft JET Database Engine 错误 '80040e14' 语法错误 在查询表达式 'Verific=1 and deltf=0 And Title Like '%1'%' Order by ID Desc' 中。 /item/Index.asp,行 618 0x03修复方案 过滤。...
[SECURITY] Fedora 23 Update: bugzilla-4.4.11-1.fc23
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
[SECURITY] Fedora 22 Update: bugzilla-4.4.10-1.fc22
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
[SECURITY] Fedora 21 Update: bugzilla-4.4.10-1.fc21
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2015-06846)
Oracle MySQL Server is an open source relational database management system from Oracle. This database system is characterized by high performance, low cost, good reliability and so on. An unspecified vulnerability exists in Oracle MySQL Server 5.6.23 and earlier versions. Allows an authenticated...
[SECURITY] Fedora 23 Update: bugzilla-4.4.10-1.fc23
Bugzilla is a popular bug tracking system used by multiple open source proj ects It requires a database engine installed - either MySQL, PostgreSQL or Oracl e. Without one of these database engines local or remote, Bugzilla will not work - see the Release Notes for details...
CentOS 7 : sqlite (CESA-2015:1635)
An updated sqlite package that fixes three security issues is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available...