Adobe AIR for Mac <= 19.0.0.190 Multiple Vulnerabilities (APSB15-25)

The version of Adobe AIR installed on the remote Mac OS X host is equal or prior to version 19.0.0.190. It is, therefore, affected by multiple vulnerabilities : - An unspecified vulnerability exists related to the defense-in-depth feature in the Flash Broker API. No other details are available...

The vulnerability of the NX-OS network operating system allows a hacker to induce a maintenance failure.

The vulnerability of the NX-OS network operating system is related to resource management errors. Exploiting this vulnerability allows a malicious actor, who operates remotely and has completed the authentication process, to cause service failure by copying large files to the device’s file system...

The vulnerability of the Sblim-sfcb control mechanism allows a perpetrator to trigger a service failure.

The vulnerability of the lookupProviders function in the Sblim-sfcb management tool is related to pointer swapping errors. Exploiting this vulnerability allows a malicious actor to trigger a service failure using a specially crafted package containing a dummy class name...

The vulnerability of the Firefox browser, which allows a perpetrator to gain access to protected information or cause a service failure

The vulnerability of the gfx/2d/DataSurfaceHelpers.cpp component in the Firefox browser is caused by buffer overflow. Exploiting this vulnerability can allow an attacker to gain access to protected information or cause a service failure by using the CANVAS element to switch to 2D rendering mode,...

The vulnerability of the Firefox browser, which allows a hacker to replace the window’s content

The vulnerability of Firefox browsers is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to replace the window’s content using a specially crafted web page...

The vulnerability of the Firefox browser, which allows a hacker to execute arbitrary code or trigger a service failure.

The vulnerability of the WorkerPrivate::NotifyFeatures function in the Firefox browser is caused by synchronization errors when using a shared resource. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure due to errors in the implementation ...

The vulnerability of the Firefox browser, which allows a hacker to circumvent access restrictions to window elements

The vulnerability of the js/src/proxy/Proxy.cpp component of the Firefox browser is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to bypass access restrictions to window elements by using a specially crafted web page...

Security update for MozillaFirefox (important)

MozillaFirefox was updated to Firefox 41.0 bnc947003 Security issues fixed: MFSA 2015-96/CVE-2015-4500/CVE-2015-4501 Miscellaneous memory safety hazards MFSA 2015-97/CVE-2015-4503 bmo994337 Memory leak in mozTCPSocket to servers MFSA 2015-98/CVE-2015-4504 bmo1132467 Out of bounds read in QCMS...

The vulnerability of the iOS operating system allows a hacker to trigger a service failure in the application.

The vulnerability of the Application Store component of the iOS operating system is related to security configuration errors. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause a service failure for the application through a specially crafted ITMS URL...

The vulnerability of the iOS operating system allows a hacker to use the contacts in the address book to replace the sender’s address in the email.

The vulnerability of the Mail component in the iOS operating system is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to use contacts in the address book to replace the sender’s address in emails sent from the device...

Debian DSA-3365-1 : iceweasel - security update

Multiple security issues have been found in Iceweasel, Debian's version of the Mozilla Firefox web browser: Multiple memory safety errors, integer overflows, buffer overflows, use-after-frees and other implementation errors may lead to the execution of arbitrary code, information disclosure or...

SUSE-SU-2015:1680-1 Security update for MozillaFirefox, mozilla-nspr

Mozilla Firefox was updated to version 38.3.0 ESR bsc947003, fixing bugs and security issues. MFSA 2015-96/CVE-2015-4500/CVE-2015-4501 Miscellaneous memory safety hazards rv:41.0 / rv:38.3 MFSA 2015-101/CVE-2015-4506 Buffer overflow in libvpx while parsing vp9 format video MFSA...

[SECURITY] [DSA 3365-1] iceweasel security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3365-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 23, 2015 https://www.debian.org/security/faq -...

The vulnerability of the Windows operating system allows a hacker to circumvent restrictions related to network traffic.

The vulnerability of the Hyper-V operating system’s service is related to errors in the code. Exploiting this vulnerability allows an attacker, operating locally, to circumvent network traffic restrictions by using a specially crafted application that exploits errors in access control list ACL...

Debian Security Advisory DSA 3365-1 (iceweasel - security update)

Multiple security issues have been found in Iceweasel, Debian OpenVAS Vulnerability Test $Id: deb3365.nasl 6609 2017-07-07 12:05:59Z cfischer $ Auto-generated from advisory DSA 3365-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks Copyright: Copyright c 2015 Greenbone Networks Gm...

The vulnerability of the Microsoft .NET Framework software allows a hacker to cause a service failure for a web resource based on ASP.NET.

The vulnerability of the Microsoft .NET Framework software platform is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause a service failure for a web resource based on ASP.NET, using a specially crafted request...

DSA-3365-1 iceweasel - security update

Bulletin has no description...

Debian: Security Advisory (DSA-3365-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei UAP2105 Command Injection Vulnerability

The Huawei UAP2105 is a home-based WCDMA wireless network access device. The Huawei UAP2105 suffers from a command injection vulnerability that allows local attackers to execute VxWorks debugging commands via a serial port access shell to view and modify memory and files, resulting in information...

The vulnerability in the Google Chrome browser allows a hacker to replace the SSL icon.

The vulnerability of the UnescapeURLWithAdjustmentsImpl implementation in the net/base/escape.cc component of the Google Chrome browser is related to security configuration errors. Exploiting this vulnerability could allow an attacker, operating remotely, to replace the SSL certificate by adding...