HP Data Protector has multiple vulnerabilities

HP Data Protector is a unified data protection solution. HP Data Protector has multiple security vulnerabilities that could allow a remote attacker to perform elevation of privilege, denial of service attacks, or execute arbitrary code...

Apple iOS IOHIDFamily API Memory Corruption Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A memory corruption vulnerability exists in the Apple iOS IOHIDFamily API, which allows local attackers to exploit the vulnerability to execute arbitrary code...

CVE-2014-2027

eGroupware before 1.8.006.20140217 allows remote attackers to conduct PHP object injection attacks, delete arbitrary files, and possibly execute arbitrary code via the 1 addrfields or 2 trans parameter to addressbook/csvimport.php, 3 calfields or 4 trans parameter to calendar/csvimport.php, 5...

DEBIAN-CVE-2015-2785

The GIF encoder in Byzanz allows remote attackers to cause a denial of service out-of-bounds heap write and crash or possibly execute arbitrary code via a crafted Byzanz debug data recording ByzanzRecording file to the byzanz-playback command...

IBM General Parallel File System Bypass Authentication to Execute Code Vulnerability

The IBM General Parallel File System is a shared file system that originated from the virtual shared disk technology used on IBM SP systems. A security vulnerability exists in IBM General Parallel File System that allows remote attackers to exploit the vulnerability to bypass authentication and...

Microsoft IE Elevation of Privilege Vulnerability

Microsoft Internet Explorer is a popular WEB browser. An unspecified elevation of privilege vulnerability exists in Microsoft Internet Explorer that allows an attacker to construct a malicious web page and trick a user into parsing it to execute arbitrary code with elevated privileges...

pngcrush Remote Code Execution Vulnerability

pngcrush is an image optimization and compression tool. A security vulnerability exists in pngcrush that allows an attacker to exploit the vulnerability to construct malicious files that can be induced to be parsed by the application, which can crash the application or execute code...

UBUNTU-CVE-2015-0821

Mozilla Firefox before 36.0 allows user-assisted remote attackers to read arbitrary files or execute arbitrary JavaScript code with chrome privileges via a crafted web site that is accessed with unspecified mouse and keyboard actions...

Microsoft Internet Explorer Memory Corruption Vulnerability (CNVD-2015-01120)

Microsoft Internet Explorer is a WEB-based browser. An unspecified memory corruption vulnerability exists in Microsoft Internet Explorer that could allow an attacker to construct a malicious web page and trick a user into parsing it, which could crash the application or execute arbitrary code...

Microsoft Internet Explorer CVE-2015-0030 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

CVE-2015-0317

Adobe Flash Player before 13.0.0.269 and 14.x through 16.x before 16.0.0.305 on Windows and OS X and before 11.2.202.442 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion," a different vulnerability than CVE-2015-0319...

Adobe Flash Player suffers from unspecified memory corruption vulnerability (CNVD-2015-00964)

Adobe Flash Player is a Flash file handling program. An unspecified memory corruption vulnerability exists in Adobe Flash Player that allows an attacker to construct a malicious SWF file and trick a user into parsing it, which can be used in an application context to execute arbitrary code...

Adobe Flash Player suffers from an unspecified null pointer reference vulnerability (CNVD-2015-00949)

Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from an unspecified null pointer reference vulnerability that allows attackers to construct malicious SWF files that can be tricked into parsing by a user, which can execute arbitrary code in the application context...

Adobe Flash Player suffers from unspecified null pointer reference vulnerability (CNVD-2015-00941)

Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from an unspecified null pointer reference vulnerability that allows attackers to construct malicious SWF files that can be tricked into parsing by a user, which can execute arbitrary code in the application context...

Apple TV and iOS Font File Handling Buffer Overflow Vulnerability

Apple iOS is the latest operating system for Apple's iPhone and iPod touch devices. Apple TV is Apple's way of allowing photos, videos and music from PCs and iPods to be transmitted wirelessly to a TV in high definition. Apple TV and iOS handle a buffer overflow vulnerability in font files,...

Apple TV and iOS XML Parser Buffer Overflow Vulnerability

Apple iOS is the latest operating system for Apple's iPhone and iPod touch devices. Apple TV is Apple's way of allowing photos, videos and music from PCs and iPods to be transmitted wirelessly to a TV in high definition. A buffer overflow vulnerability exists in the processing of XML files in App...

Apple TV and iOS .dfont file memory corruption vulnerability

Apple iOS is the latest operating system for Apple's iPhone and iPod touch devices. Apple TV is Apple's way of allowing photos, videos and music from PCs and iPods to be transmitted wirelessly to a TV in high definition. A memory corruption vulnerability exists in the way Apple TV and iOS handle...

PHP 5.6.x < 5.6.5 Multiple Vulnerabilities

According to its banner, the version of PHP 5.6.x installed on the remote host is prior to 5.6.5. It is, therefore, affected by multiple vulnerabilities: - A double free vulnerability in the zendtshashgracefuldestroy function in zendtshash.c in the Zend Engine could allow a remote attacker to cau...

Unspecified Vulnerability in Oracle SOA Suite B2B Engine Subcomponent

Oracle SOA Suite is a comprehensive, hot-pluggable software suite for building, deploying, and managing service-oriented architectures SOA. A security vulnerability exists in the Oracle SOA Suite B2B Engine subcomponent that could be exploited by a local attacker to execute arbitrary code...

Updated coreutils packages fix CVE-2014-9471

Updated coreutils packages fix security vulnerability: Bertrand Jacquin and Fiedler Roman discovered date and touch incorrectly handled user-supplied input. An attacker could possibly use this to cause a denial of service or potentially execute code CVE-2014-9471...