3839 matches found
Design/Logic Flaw
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability when generating content using XFA layout engine. Successful exploitation could lead to arbitrary code execution...
CVE-2017-11257
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable type confusion vulnerability in the XFA layout engine. Successful exploitation could lead to arbitrary code execution...
CVE-2017-11224
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA layout engine. Successful exploitation could lead to arbitrary code execution...
CVE-2017-11256
Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability when generating content using XFA layout engine. Successful exploitation could lead to arbitrary code execution...
CVE-2017-11257
Technical details for CVE-2017-11257 are not publicly available in the provided documents. Monitor for updates.
Mozilla: Use-after-free with marquee during window resizing
A use-after-free vulnerability can occur while re-computing layout for a "marquee" element during window resizing where the updated style object is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox...
Sandstorm Cap'n Proto Integer Overflow Vulnerability
Cap'n Proto is an extremely fast data exchange format and capability-based RPC system. An integer overflow vulnerability in layout.c++ in Sandstorm Cap'n Proto allows remote peers to cause a denial of service or obtain sensitive information from memory via specially crafted messages...
CVE-2017-7801
A use-after-free vulnerability can occur while re-computing layout for a "marquee" element during window resizing where the updated style object is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox...
UBUNTU-CVE-2017-7801
A use-after-free vulnerability can occur while re-computing layout for a "marquee" element during window resizing where the updated style object is freed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox...
UBUNTU-CVE-2015-2310
Integer overflow in layout.c++ in Sandstorm Cap'n Proto before 0.4.1.1 and 0.5.x before 0.5.1.1 allows remote peers to cause a denial of service or possibly obtain sensitive information from memory via a crafted message, related to pointer validation...
CVE-2017-10024
Vulnerability in the BI Publisher component of Oracle Fusion Middleware subcomponent: Layout Tools. The supported version that is affected is 11.1.1.7.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise BI Publisher. Successful attacks...
CVE-2017-10024
CVE-2017-10024 affects Oracle Fusion Middleware BI Publisher (subcomponent Layout Tools), specifically BI Publisher 11.1.1.7.0. The vulnerability—addressed in the Oracle July 2017 CPU—allows an unauthenticated attacker with network access via HTTP to compromise BI Publisher, with potential unauth...
Microsoft Edge Information Disclosure Vulnerability
An information disclosure vulnerability for Microsoft Edge exists as a result of how strings are validated in specific scenarios, which can allow an attacker to read sensitive data from memory and thereby potentially bypass Address Space Layout Randomization ASLR. By itself, this vulnerability do...
Adobe Acrobat and Reader Use After Free (APSB17-24: CVE-2017-11256)
A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to how Adobe processes XFA layout. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file with Adobe Reader...
Security vulnerabilities fixed in Firefox ESR 52.3 — Mozilla
The Developer Tools feature suffers from a XUL injection vulnerability due to improper sanitization of the web page source code. In the worst case, this could allow arbitrary code execution when opening a malicious page with the style editor tool. A use-after-free vulnerability can occur in...
Adobe Acrobat and Reader Type Confusion (APSB17-24: CVE-2017-11257)
A type confusion overflow vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to how Adobe processes XFA layout. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...
kernel: NFSv4 server does not properly validate layout type when processing NFSv4 pNFS LAYOUTGET operand
It was found that the NFSv4 server in the Linux kernel did not properly validate layout type when processing NFSv4 pNFS LAYOUTGET and GETDEVICEINFO operands. A remote attacker could use this flaw to soft-lockup the system and thus cause denial of service...
kernel: NFSv4 server does not properly validate layout type when processing NFSv4 pNFS LAYOUTGET operand
It was found that the NFSv4 server in the Linux kernel did not properly validate layout type when processing NFSv4 pNFS LAYOUTGET and GETDEVICEINFO operands. A remote attacker could use this flaw to soft-lockup the system and thus cause denial of service...
DEBIAN-CVE-2017-11472
The acpinsterminate function in drivers/acpi/acpica/nsutils.c in the Linux kernel before 4.12 does not flush the operand cache and causes a kernel stack dump, which allows local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism in the kernel throug...
Unspecified Vulnerability in Oracle Fusion Middleware BI Publisher (CNVD-2017-17499)
Oracle Fusion Middleware is a comprehensive middleware product family consisting of SOA and middleware products.BI Publisher is one of the reporting components. Oracle BI Publisher version 11.1.1.7.0 contains a security vulnerability in the implementation of the Layout Tools component, which can ...