CVE-2022-35710 Adobe ColdFusion ODBC Server Stack-based Buffer Overflow Remote Code Execution Vulnerability

Adobe ColdFusion versions Update 14 and earlier and Update 4 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction, the vulnerability is...

Adobe Photoshop Buffer Overflow Vulnerability (CNVD-2023-54551)

Adobe Photoshop is an application developed and distributed by Adobe for image processing. Adobe Photoshop suffers from a buffer overflow vulnerability that could lead to the execution of arbitrary code in the context of the current user. An attacker could exploit the vulnerability to cause a...

Quokka XML External Entity Injection Vulnerability

Quokka is a content management framework written in Python. quokka version 0.4.0 is vulnerable to XML external entity injection. A remote attacker can exploit this vulnerability to execute arbitrary code via the quokka/core/content/views.py component...

Memory Misreference Vulnerability in Multiple Adobe Products (CNVD-2021-11024)

Adobe Acrobat is a PDF editing software developed by Adobe.Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe. A memory misreference vulnerability exists in several Adobe products. An attacker can exploit this vulnerability to execute arbitrary code...

CVE-2020-25260

An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. It allows remote attackers to execute arbitrary code because of unsafe JSON deserialization...

EUVD-2020-30421

Adobe Framemaker versions 2019.0.5 and below have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution...

PT-2020-2479 · Adobe · Bridge

Name of the Vulnerable Software and Affected Versions: Adobe Bridge versions 10.0.1 and earlier Description: The issue is related to an out-of-bounds write vulnerability in the file manager. Successful exploitation could lead to arbitrary code execution, allowing a remote attacker to execute code...

CVE-2017-5944

The dashboard subscription interface in Request Tracker RT 4.x before 4.0.25, 4.2.x before 4.2.14, and 4.4.x before 4.4.2 might allow remote authenticated users with certain privileges to execute arbitrary code via a crafted saved search name...

TUDU 0.82 Buffer Overflow

Exploit Author: Juan Sacco - http://www.exploitpack.com Program: tudu - Command line hierarchical ToDo list Tested on: GNU/Linux - Kali Linux 2.0 x86 Description: TUDU v0.82 and prior is prone to a stack-based buffer overflow vulnerability because the application fails to perform adequate...

Mozilla Firefox Multiple Vulnerabilities (Nov 2015) - Mac OS X

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

Important: php54

Issue Overview: A use-after-free flaw was found in the way PHP's unserialize function processed data. If a remote attacker was able to pass crafted input to PHP's unserialize function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code. CVE-2015-0231 An integer...

SuSE Update for update openSUSE-SU-2013:1176-1 (update)

Check for the Version of update OpenVAS Vulnerability Test $Id: gbsuse201311761.nasl 8542 2018-01-26 06:57:28Z teissa $ SuSE Update for update openSUSE-SU-2013:1176-1 update Authors: System Generated Check Copyright: Copyright C 2013 Greenbone Networks GmbH, http://www.greenbone.net This program ...

[SECURITY] [DSA 2624-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2624-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 16, 2013 http://www.debian.org/security/faq -...

Gentoo Security Advisory GLSA 201202-09 (libxml2)

The remote host is missing updates announced in advisory GLSA 201202-09. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

CVE-2011-1684

Heap-based buffer overflow in the MP4ReadBoxskcr function in libmp4.c in the MP4 demultiplexer in VideoLAN VLC media player 1.x before 1.1.9 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted MP4 file...

Microsoft Foundation Class (MFC) Library Remote Code Execution Vulnerability (2500212)

This host is missing a critical security update according to Microsoft Bulletin MS11-025. OpenVAS Vulnerability Test $Id: secpodms11-025.nasl 6517 2017-07-04 13:34:20Z cfischer $ Microsoft Foundation Class MFC Library Remote Code Execution Vulnerability 2500212 Authors: Veerendra GG Updated by:...

[security bulletin] HPSBMA02558 SSRT010158 rev.1 - HP OpenView Network Node Manager (OV NNM), Remote Execution of Arbitrary Code

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c02290344 Version: 1 HPSBMA02558 SSRT010158 rev.1 - HP OpenView Network Node Manager OV NNM, Remote Execution of Arbitrary Code NOTICE: The information in this Security Bulletin should be acted up...

Gentoo Security Advisory GLSA 200709-01 (mit-krb5)

The remote host is missing updates announced in advisory GLSA 200709-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Format string

Format string vulnerability in the windowerror function in yelp-window.c in yelp in Gnome after 2.19.90 and before 2.24 allows remote attackers to execute arbitrary code via format string specifiers in an invalid URI on the command line, as demonstrated by use of yelp within 1 man or 2 ghelp URI...

GLSA-200707-14 : tcpdump: Integer overflow

The remote host is affected by the vulnerability described in GLSA-200707-14 tcpdump: Integer overflow mu-b from Digital Labs discovered that the return value of a snprintf call is not properly checked before being used. This could lead to an integer overflow. Impact : A remote attacker could sen...