CVE-2017-12342

A vulnerability in the Open Agent Container OAC feature of Cisco Nexus Series Switches could allow an unauthenticated, local attacker to read and send packets outside the scope of the OAC. The vulnerability is due to insufficient internal security measures in the OAC feature. An attacker could...

CVE-2017-2714

The GaussDB in FusionSphere OpenStack V100R005C10SPC705 and earlier versions has a buffer overflow vulnerability. An authenticated attacker on the LAN can exploit this vulnerability to execute arbitrary code or cause a denial of service DoS condition in the affected system...

Intel Server Platform Services Firmware Buffer Overflow Vulnerability

Intel Server Platform Services Firmware is a server platform services program used in the CPU Central Processing Unit. A buffer overflow vulnerability exists in Intel Server Platform Services Firmware. This vulnerability could be exploited by an attacker with local access to the system to execute...

Intel® Deep Learning Training Tool Beta 1 security vulnerability

Summary: A vulnerability in the Intel® Deep Learning Training Tool Beta 1 allows a network attacker to remotely execute code as a local user. Description: A vulnerability in the Intel® Deep Learning Training Tool Beta 1 allows a network attacker to remotely execute code as a local user. High 8.3...

Heap overflow

VMware Workstation 12.x before 12.5.8 and Fusion 8.x before 8.5.9 contain a heap buffer-overflow vulnerability in VMNAT device. This issue may allow a guest to execute code on the host...

CVE-2017-4936

VMware Workstation 12.x before 12.5.8 and Horizon View Client for Windows 4.x before 4.6.1 contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs Workstatio...

CVE-2017-4937

VMware Workstation 12.x before 12.5.8 and Horizon View Client for Windows 4.x before 4.6.1 contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs Workstatio...

CVE-2017-4936

VMware Workstation 12.x before 12.5.8 and Horizon View Client for Windows 4.x before 4.6.1 contain an out-of-bounds read vulnerability in JPEG2000 parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs Workstatio...

CVE-2017-4934

VMware Workstation 12.x before 12.5.8 and Fusion 8.x before 8.5.9 contain a heap buffer-overflow vulnerability in VMNAT device. This issue may allow a guest to execute code on the host...

Microsoft Internet Explorer/Edge Memory Corruption Vulnerability

Internet Explorer is a web browser from Microsoft.Microsoft Edge is the web browser built into Windows 10 versions. A memory corruption vulnerability exists in Microsoft Internet Explorer/Edge, which could allow an unauthenticated, remote attacker to execute arbitrary code on the target system...

Microsoft Edge Memory Corruption Vulnerability (CNVD-2017-34926)

Microsoft Edge is the web browser built into the Windows 10 version. Microsoft Edge is implemented with a memory corruption vulnerability that can be exploited by unauthenticated, remote attackers to execute arbitrary code on the target system and corrupt memory...

Adobe Flash Player Memory Misreference Vulnerability (CNVD-2017-37245)

Adobe Flash Player is a cross-platform, browser-based multimedia player product from Adobe. The product supports cross-screen and browser viewing of applications, content and videos. A memory misreference vulnerability exists in Adobe Flash Player. A remote attacker could exploit this vulnerabili...

Foxit Reader JPEG2000 cdef channel number Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the channel...

CVE-2017-10942

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 8.3.0.14878. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

CVE-2017-15763

IrfanView 4.50 - 64bit with BabaCAD4Image plugin version 1.3 allows attackers to execute arbitrary code or cause a denial of service via a crafted .dwg file, related to "Data from Faulting Address controls subsequent Write Address starting at BabaCAD4Image!ShowPlugInOptions+0x000000000001eca0."...

Berta CMS Arbitrary File Upload Vulnerability

Berta CMS is a PHP-based web content management system CMS. An arbitrary file upload vulnerability exists in Berta CMS. A remote attacker can exploit this vulnerability by uploading an image file with an executable extension to execute arbitrary code...

Microsoft windows October release of the 62 flaws vulnerability bug patch, and repair of the National researchers submitted the 0-day flaw vulnerability bug-vulnerability warning-the black bar safety net

Microsoft on Tuesday's Patch Tuesday on the breath announced a 62 bug. the bug of the patch, which contains a has been applied to the major Office 0-day exploits flaws in the bug, this is by memory of the destruction occasioned by the long-distance code to perform vulnerability flaws bug（...

IrfanView buffer overflow vulnerability (CNVD-2017-30370)

IrfanView is a Bosnia and Herzegovina software developer Irfan Skiljan developed a picture viewer, which supports image browsing, image editing, image format conversion, etc. PDF plugin is one of the PDF document reading plug-ins. IrfanView 4.44 32-bit in the PDF plugin version 4.43 there is a...

October CMS Arbitrary File Upload Vulnerability

October CMS is a content management program. A security vulnerability exists in October CMS file uploads, which allows remote attackers to exploit the vulnerability to submit specially crafted files to execute arbitrary code in the context of the application...

GE CIMPLICITY Stack Buffer Overflow Vulnerability

GE CIMPLICITY is an HMI software. GE CIMPLICITY suffers from a stack buffer overflow vulnerability that could be exploited by a remote attacker to submit a special request to crash the application or execute arbitrary code...