9266 matches found
MS12-043: Description of the security update for XML Core Services 5.0 when it is installed together with Office 2007, Office Compatibility Pack, Office Word Viewer, Expression Web, or Expression Web 2: August 14, 2012
MS12-043: Description of the security update for XML Core Services 5.0 when it is installed together with Office 2007, Office Compatibility Pack, Office Word Viewer, Expression Web, or Expression Web 2: August 14, 2012 View products that this article applies to.Microsoft has released security...
MS12-022: Description of the security update for Expression Design 3: March 13, 2012
MS12-022: Description of the security update for Expression Design 3: March 13, 2012 INTRODUCTION Microsoft has released security bulletin MS12-022. To view the complete security bulletin, visit one of the following Microsoft websites: Home...
MS12-022: Description of the security update for Expression Design 4: March 13, 2012
MS12-022: Description of the security update for Expression Design 4: March 13, 2012 INTRODUCTION Microsoft has released security bulletin MS12-022. To view the complete security bulletin, visit one of the following Microsoft websites: Home...
The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code
The vulnerability of the RegExp class in the Flash Player software platform arises from a violation of the buffer’s initial limit. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code upon installing a plugin...
The vulnerability of the Flash Player software allows a perpetrator to execute arbitrary code.
The vulnerability of the RegExp class in the Flash Player software platform arises from a violation of the buffer’s initial limit. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code by manipulating the functions of the software...
The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code
The vulnerability of the RegExp class in the Flash Player software platform arises from a violation of the buffer’s initial limit. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code as a result of violating the search functionality...
The vulnerability of the Flash Player software, which allows a violator to execute arbitrary code
The vulnerability of the RegExp class arises due to a violation of the buffer’s initial boundary. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...
CVE-2016-7869
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to backtrack search functionality. Successful exploitation could lead to arbitrary code execution...
CVE-2016-7868
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to alternation functionality. Successful exploitation could lead to arbitrary code execution...
CVE-2016-7867
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to bookmarking in searches. Successful exploitation could lead to arbitrary code execution...
Vulnerabilities of Microsoft Edge and Internet Explorer browsers, which allow attackers to obtain confidential information or perform XSS attacks
The vulnerability of the RegEx XSS-filter in Microsoft Edge and Internet Explorer exists due to the lack of measures taken to protect the structure of web pages. Exploiting this vulnerability allows a malicious actor to perform XSS attacks or obtain confidential information remotely...
flash-plugin: multiple code execution issues fixed in APSB16-39
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to bookmarking in searches. Successful exploitation could lead to arbitrary code execution...
flash-plugin: multiple code execution issues fixed in APSB16-39
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class for specific search strategies. Successful exploitation could lead to arbitrary code execution...
flash-plugin: multiple code execution issues fixed in APSB16-39
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class related to alternation functionality. Successful exploitation could lead to arbitrary code execution...
CVE-2015-5073
Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an...
DEBIAN-CVE-2015-5073
Heap-based buffer overflow in the findfixedlength function in pcrecompile.c in PCRE before 8.38 allows remote attackers to cause a denial of service crash or obtain sensitive information from heap memory and possibly bypass the ASLR protection mechanism via a crafted regular expression with an...
CVE-2015-3217
PCRE 7.8 and 8.32 through 8.37, and PCRE2 10.10 mishandle group empty matches, which might allow remote attackers to cause a denial of service stack-based buffer overflow via a crafted regular expression, as demonstrated by /^?:?1\.|^\\W?++$/...
Heap overflow
Heap-based buffer overflow in PCRE 8.34 through 8.37 and PCRE2 10.10 allows remote attackers to execute arbitrary code via a crafted regular expression, as demonstrated by /^?P=B?P=B?J:?Pc?Pa?P=BWGXCREDITS/, a different vulnerability than CVE-2015-8384...
CVE-2015-3217
PCRE 7.8 and 8.32 through 8.37, and PCRE2 10.10 mishandle group empty matches, which might allow remote attackers to cause a denial of service stack-based buffer overflow via a crafted regular expression, as demonstrated by /^?:?1\.|^\\W?++$/...
CVE-2015-3210
Heap-based buffer overflow in PCRE 8.34 through 8.37 and PCRE2 10.10 allows remote attackers to execute arbitrary code via a crafted regular expression, as demonstrated by /^?P=B?P=B?J:?Pc?Pa?P=BWGXCREDITS/, a different vulnerability than CVE-2015-8384...