The vulnerability of Asterisk IP-telephony management systems and Certified Asterisk, which allows a perpetrator to trigger a service failure.

The vulnerability of Asterisk IP-telephony systems and Certified Asterisk is related to errors in pointer assignment. Exploiting this vulnerability can allow a malicious actor to cause service failures pointer assignment of an uninitialized pointer and emergency termination of operations...

ATutor 2.2.1 - Directory Traversal / Remote Code Execution (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class MetasploitModule 'ATutor 2.2.1 Directory Traversal / Remote Code Execution', 'Description' = %q This module exploits a directory traversal...

Grandstream Wave Redirection Vulnerability

Grandstream Wave is a suite of free VoIP applications. Grandstream Wave uses an insecure connection to obtain a configuration file, which allows an attacker to impersonate a configuration server with invalid, mismatched, or expired certificates, redirect phone calls, or cause dialed calls to...

Debian DSA-3520-1 : icedove - security update

Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail client: Multiple memory safety errors, integer overflows, buffer overflows and other implementation errors may lead to the execution of arbitrary code or denial of service. %NASLMINLEVEL 70300 C...

DSA-3522-1 squid3 - security update

Bulletin has no description...

[SECURITY] [DSA 3520-1] icedove security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3520-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 18, 2016 https://www.debian.org/security/faq -...

DSA-3520-1 icedove - security update

Bulletin has no description...

Debian Security Advisory DSA 3520-1 (icedove - security update)

Multiple security issues have been found in Icedove, Debian OpenVAS Vulnerability Test $Id: deb3520.nasl 6608 2017-07-07 12:05:05Z cfischer $ Auto-generated from advisory DSA 3520-1 using nvtgen 1.0 Script version: 1.0 Author: Greenbone Networks Copyright: Copyright c 2016 Greenbone Networks GmbH...

Debian: Security Advisory (DSA-3520-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Vulnerabilities in Google Chrome browser and the V8 browser kernel, which allow attackers to exert other effects or cause service failures

The multiple vulnerabilities of Google Chrome and the browser kernel V8 are related to code errors. Exploiting these vulnerabilities can allow a malicious actor to cause service failures or other adverse effects...

Vulnerabilities in the Google Chrome browser that allow a perpetrator to exert other effects or cause service failures

The multiple vulnerabilities of the Google Chrome browser are related to code errors. Exploiting these vulnerabilities can allow a malicious actor to cause service failures or other adverse effects...

CVE-2016-1645

Multiple integer signedness errors in the opjj2kupdateimagedata function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 49.0.2623.87, allow remote attackers to cause a denial of service incorrect cast and out-of-bounds write or possibly have unspecified other impact via crafted...

CVE-2016-1645

Multiple integer signedness errors in the opjj2kupdateimagedata function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 49.0.2623.87, allow remote attackers to cause a denial of service incorrect cast and out-of-bounds write or possibly have unspecified other impact via crafted...

CVE-2016-1645

Multiple integer signedness errors in the opjj2kupdateimagedata function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 49.0.2623.87, allow remote attackers to cause a denial of service incorrect cast and out-of-bounds write or possibly have unspecified other impact via crafted...

CVE-2016-1645

CVE-2016-1645 is an out-of-bounds write issue in the pdfium library derived from OpenJPEG’s opj_j2k_update_image_data, used by Google Chrome’s PDF rendering path. Multiple connected advisories confirm the vulnerability in Chrome before 49.0.2623.87 and link it to a vulnerability class described a...

CVE-2016-1645

Multiple integer signedness errors in the opjj2kupdateimagedata function in j2k.c in OpenJPEG, as used in PDFium in Google Chrome before 49.0.2623.87, allow remote attackers to cause a denial of service incorrect cast and out-of-bounds write or possibly have unspecified other impact via crafted...

The vulnerability of the Oracle Sun Systems Product Suite software allows a perpetrator to compromise accessibility.

The vulnerability of the Oracle Sun Systems Product Suite is related to errors in the code. Exploiting this vulnerability can allow a malicious individual to compromise accessibility by manipulating DevFS-related operations...

The vulnerability of the Oracle Sun Systems Product Suite software allows a perpetrator to compromise the integrity, accessibility, and confidentiality of information.

The vulnerability of the Integrated Lights Out Manager ILOM component in the Oracle Sun Systems Product Suite is related to code errors. Exploiting this vulnerability can allow a malicious actor to compromise the integrity, availability, and confidentiality of information...

Adobe AIR <= 20.0.0.260 Multiple Vulnerabilities (APSB16-08)

The version of Adobe AIR installed on the remote Windows host is prior or equal to version 20.0.0.260. It is, therefore, affected by multiple vulnerabilities : - Multiple integer overflow conditions exist that allow an attacker to execute arbitrary code. CVE-2016-0963, CVE-2016-0993, CVE-2016-101...

DSA-3510-1 iceweasel - security update

Bulletin has no description...