Integer Overflow Vulnerability in WPS Forms

WPS Office is an office software suite developed independently by Kingsoft Corporation. An integer overflow vulnerability exists in formset.exe in WPS when parsing a specific xlsx file, which can be exploited by an attacker to cause a denial of service or code execution...

Memory Corruption Vulnerability in WPS Forms (CNVD-2017-34122)

WPS Office is an office software suite developed independently by Kingsoft Corporation. A memory corruption vulnerability exists in formset.exe in WPS when parsing certain xls files, which can be exploited by an attacker to cause a denial of service or code execution...

Memory Corruption Vulnerability in WPS Forms (CNVD-2017-34136)

WPS Office is an office software suite developed independently by Kingsoft Corporation. A memory corruption vulnerability exists in formset.exe in WPS when parsing certain xls files, which can be exploited by an attacker to cause a denial of service or code execution...

Symantec Norton Security IDSvix86 PE Remote System Denial of Service Vulnerability(CVE-2016-5308)

SUMMARY A denial of service vulnerability exists in the Portable Executable file scanning functionality of Symantec Norton Security. A specially crafted PE file can cause an access violation in IDSvix86 kernel driver resulting in denial of service. An attacker can trigger this vulnerability for...

Unrestricted file upload

Unrestricted file upload vulnerability in the ProfileController::actionUploadPhoto method in protected/controllers/ProfileController.php in X2Engine X2CRM before 4.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct...

WPS Presentation suffers from a null pointer reference vulnerability (CNVD-2017-33982)

WPS office is an office software suite independently developed by Kingsoft Corporation. A null pointer reference vulnerability exists in the pptxrw module of the WPS presentation wpp.exe in WPS when parsing a specific ppt file, which can be exploited by an attacker to cause a denial of service or...

Memory corruption vulnerability exists in WPS Presentation (CNVD-2017-33995)

WPS office is an office software suite independently developed by Kingsoft Corporation. A memory corruption vulnerability exists in WPS presentation wpp.exe in WPS when parsing a specific ppt file, which can be exploited by an attacker to cause a denial of service...

WPS Presentation suffers from a null pointer reference vulnerability (CNVD-2017-33986)

WPS office is an office software suite independently developed by Kingsoft Corporation. A null pointer reference vulnerability exists in WPS presentation wpp.exe in WPS when parsing a specific pptx file, which can be exploited by an attacker to cause a denial of service or code execution...

Denial of Service Vulnerability in WPS Text

WPS office is an office software suite independently developed by Kingsoft Corporation. A denial of service vulnerability exists in WPS text wps.exe in WPSmain when parsing a specific docx file, which can be exploited by an attacker to cause a denial of service...

Unrestricted file upload

Unrestricted file upload vulnerability in Berta CMS allows remote attackers to execute arbitrary code by uploading a crafted image file with an executable extension, then accessing it via a direct request to the file in an unspecified directory...

CVE-2015-2780

Unrestricted file upload vulnerability in Berta CMS allows remote attackers to execute arbitrary code by uploading a crafted image file with an executable extension, then accessing it via a direct request to the file in an unspecified directory...

UBUNTU-CVE-2017-12629

Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting XXE in conjunction with use of a Config API add-listener command to reach the RunExecutableListener class. Elasticsearch, although it uses Lucene, is NOT vulnerable to this. Note that the XML extern...

[SECURITY] Fedora 27 Update: upx-3.94-1.fc27

UPX is a free, portable, extendable, high-performance executable packer for several different executable formats. It achieves an excellent compression ratio and offers very fast decompression. Your executables suffer no memory overhead or other drawbacks...

Ubuntu 14.04 LTS : libffi vulnerability (USN-3454-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-3454-1 advisory. It was discovered that libffi incorrectly enforced an executable stack. An attacker could possibly use this issue, in combination with another vulnerability, to...

Microsoft Windows10 AHCACHE.SYS Remote Denial Of Service(CVE-2016-3369)

Summary A denial of service vulnerability exists in the AHCACHE.SYS driver. A specially crafted Portable Executable file can cause a bugcheck in the Windows kernel resulting in remote denial of service. Tested Versions Windows 10, AHCACHE.SYS version 10.0.10586.0 Tested on Windows 10 X86 Product...

USN-3454-1: libffi vulnerability

It was discovered that libffi incorrectly enforced an executable stack. An attacker could possibly use this issue, in combination with another vulnerability, to facilitate executing arbitrary code...

USN-3454-1 libffi vulnerability

It was discovered that libffi incorrectly enforced an executable stack. An attacker could possibly use this issue, in combination with another vulnerability, to facilitate executing arbitrary code...

Equifax Takes Down Compromised Page Redirecting to Adware Download

Update: Equifax said Thursday afternoon that it was not compromised and instead confirmed it was a third-party partner’s code running on the Equifax site that was serving adware. Below is Equifax’s statement: “Despite early media reports, Equifax can confirm that its systems were not compromised...

Taiwan Bank Heist and the Role of Pseudo Ransomware

ARCHIVED STORY Taiwan Bank Heist and the Role of Pseudo Ransomware By Trellix · October 12, 2017 Widespread reports claim the Far Eastern International Bank in Taiwan has become a victim of hacking. The attacks demonstrate the global nature of cybercrime, with the cybercriminals attempting to wir...

Mozilla: Blob and data URLs bypass phishing and malware protection warnings (MFSA 2017-22)

File downloads encoded with "blob:" and "data:" URL elements bypassed normal file download checks though the Phishing and Malware Protection feature and its block lists of suspicious sites and files. This would allow malicious sites to lure users into downloading executables that would otherwise ...