833 matches found
Privilege escalation
An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior.A locally authenticated attacker could run arbitrary code with elevated system privileges, aka 'Windows Installer...
Tencent Document Dll Hijacking Vulnerability
Tencent Document is an online document that allows for multi-person collaboration. Tencent Document has a Dll hijacking vulnerability that can be exploited by attackers to load a malicious dll and execute arbitrary code...
CVE-2016-6592
A vulnerability was found in Symantec Norton Download Manager versions prior to 5.6. A remote user can create a specially crafted DLL file that, when placed on the target user's system, will cause the Norton Download Manager component to load the remote user's DLL instead of the intended DLL and...
Microsoft Security Advisory: Insecure library loading could allow remote code execution
Microsoft Security Advisory: Insecure library loading could allow remote code execution INTRODUCTION Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory,...
DLL Hijacking Vulnerability in 2345 Ace Input Method
2345 Ace Input Method is a Chinese input software for PC launched by Shanghai 2-3-4-5 Mobile Technology Co. 2345 Ace Input Method has a DLL hijacking vulnerability, which can be exploited by attackers to load a malicious dll and execute malicious code...
Code injection
A dynamic library loading issue existed in iTunes setup. This was addressed with improved path searching. This issue is fixed in macOS Catalina 10.15.1, iTunes for Windows 12.10.2. Running the iTunes installer in an untrusted directory may result in arbitrary code execution...
CVE-2019-8801
A dynamic library loading issue existed in iTunes setup. This was addressed with improved path searching. This issue is fixed in macOS Catalina 10.15.1, iTunes for Windows 12.10.2. Running the iTunes installer in an untrusted directory may result in arbitrary code execution...
STAMP Workbench Installer Code Issue Vulnerability
STAMP Workbench is a modeling tool that supports support for STAMP Systems Theory Accident Models and Processes/STPA Systems Theory Process Analysis. A code issue vulnerability exists in the STAMP Workbench installer that can be exploited by an attacker to cause unsafe loading of dynamic link...
Privilege escalation
Adobe Animate CC versions 19.2.1 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...
Privilege escalation
Adobe Illustrator CC versions 23.1 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...
CVE-2019-7962
Adobe Illustrator CC versions 23.1 and earlier are affected by CVE-2019-7962 due to an insecure library loading (DLL hijacking) vulnerability. The underlying issue is loading of malicious libraries from user-writable paths, enabling privilege escalation on a local system. Affected products includ...
CVE-2019-7960
Adobe Animate CC versions 19.2.1 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...
Adobe Illustrator Multiple Vulnerabilities (APSB19-36) - Windows
Adobe Illustrator is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:illustrator";...
Adobe Animate Privilege Escalation Vulnerability (APSB19-34) - Windows
Adobe Illustrator is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:animate...
APSB19-34 Security update available for Adobe Animate CC
Adobe has released updates for Adobe Animate CC for Windows and macOS. This update resolves an insecure library loading vulnerability that could lead to privilege escalation...
Apple macOS Catalina and Apple iTunes for Windows Dynamic Library Loading Vulnerability
Apple iTunes for Windows and Apple macOS Catalina are both products of Apple Inc. Apple iTunes for Windows is a Windows-based media player application. apple macOS Catalina is a specialized operating system developed for Mac computers. Apple macOS Catalina is a specialized operating system...
Apple iTunes Security Updates (HT210726)
Apple iTunes is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:apple:itunes"; ifdescription...
About the security content of iTunes 12.10.2 for Windows
About the security content of iTunes 12.10.2 for Windows This document describes the security content of iTunes 12.10.2 for Windows. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...
Apple Mac OS X Security Updates (HT210722)-01
Apple Mac OS X is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2010-3375
qtparted has insecure library loading which may allow arbitrary code execution...