The vulnerability of the Windows Search component in Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Windows Search component in Windows operating systems is related to errors in memory object handling. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by using specially created messages sent to the search service, including those using an...

The vulnerability of Microsoft Excel spreadsheet editors in the Microsoft Office 2016 software suite allows a hacker to execute arbitrary code in the context of the current user.

The vulnerability of Microsoft Excel in the Microsoft Office 2016 software suite is related to errors in processing objects in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code in the context of the current user...

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser allows a hacker to execute arbitrary code.

The vulnerability of the JavaScript script handler ChakraCore in the Microsoft Edge browser is related to errors in memory object handling. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, through a specially crafted web page...

The vulnerability of the Internet Explorer browser, caused by errors in memory object handling, allows a hacker to execute arbitrary code.

The vulnerability of the Internet Explorer browser is related to errors in memory object handling. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the context of the current user...

The vulnerability of the PDF Reader component of the Microsoft Edge browser, which allows a hacker to execute arbitrary code.

The vulnerability of the PDF Reader component of the Microsoft Edge browser is related to errors in memory object handling. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using specially crafted PDF-format content...

The vulnerability of the DirectX Graphics Kernel driver in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the DirectX Graphics Kernel Driver DXGKRNL on Windows operating systems is related to object handling errors in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the DirectX Graphics Kernel driver in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the DirectX Graphics Kernel Driver DXGKRNL on Windows operating systems is related to object handling errors in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Windows operating system’s kernel, which allows a hacker to increase their privileges

The vulnerability of the Windows operating system’s kernel is related to data processing errors. Exploiting this vulnerability can allow attackers to enhance their privileges through a specially created application...

The vulnerability of the DirectX Graphics Kernel driver in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the DirectX Graphics Kernel Driver DXGKRNL on Windows operating systems is related to object handling errors in memory. Exploiting this vulnerability can allow attackers to gain elevated privileges through a specially created application...

The vulnerability of Microsoft Edge browser and the ChakraCore JavaScript engine lies in memory object handling errors, allowing attackers to execute arbitrary code.

The vulnerability of Microsoft Edge browser and the JavaScript scenario handler ChakraCore arises due to an operation going beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted web page...

Coinbase: ETH contract handling errors

A business logic error in the ETH contract handling code allowed for a nested revert call in contract execution to improperly credit a user account though funds had not been transferred. In addition, the code did not appropriately handle delegatecall within a contract. Sample contract for the fir...

Microsoft Windows Multiple Vulnerabilities (KB4056898)

This host is missing an important security update according to Microsoft KB4056898 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

CVE-2017-5530

The tibbr web server components of tibbr Community, and tibbr Enterprise contain SAML protocol handling errors which may allow authorized users to impersonate other users, and therefore escalate their access privileges. Affected releases are tibbr Community 5.2.1 and below; 6.0.0; 6.0.1; 7.0.0,...

BIND -- multiple vulnerabilities

ISC reports: A malformed query response received by a recursive server in response to a query of RTYPE ANY could trigger an assertion failure while named is attempting to add the RRs in the query response to the cache. Depending on the type of query and the EDNS options in the query they receive,...

CVE-2016-9899

Use-after-free while manipulating DOM events and removing audio elements due to errors in the handling of node adoption. This vulnerability affects Firefox 50.1, Firefox ESR 45.6, and Thunderbird 45.6...

The vulnerability of the Internet Explorer browser, which allows a malicious actor to execute arbitrary code

The Internet Explorer browser contains a vulnerability related to memory handling errors. Exploiting this vulnerability allows a malicious individual to execute arbitrary code in the context of the current user...

DSA-3522-1 squid3 - security update

Bulletin has no description...

Microsoft Edge Multiple Vulnerabilities (3104519)

This host is missing a critical security update according to Microsoft Bulletin MS15-113. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Google Chrome < 34.0.1847.116 Multiple Vulnerabilities

The version of Google Chrome installed on the remote host is a version prior to 34.0.1847.116. It is, therefore, affected by the following vulnerabilities : - A use-after-free error exists in the included Flash version that could lead to arbitrary code execution. CVE-2014-0506 - A buffer overflow...

Debian DSA-2682-1 : libxext - several vulnerabilities

Ilja van Sprundel of IOActive discovered several security issues in multiple components of the X.org graphics stack and the related libraries: Various integer overflows, sign handling errors in integer conversions, buffer overflows, memory corruption and missing input sanitising may lead to...