Lucene search
K

833 matches found

OpenVAS
OpenVAS
added 2017/02/28 12:0 a.m.35 views

Apple iCloud Code Execution And Information Disclosure Vulnerabilities - Windows

Apple iCloud is prone to multiple code execution and information disclosure vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CP...

8.8CVSS7.7AI score0.01532EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/02/15 12:0 a.m.23 views

Adobe Digital Editions Multiple Vulnerabilities (Jun 2017) - Mac OS X

Adobe Digital Edition is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:digitaleditions...

10CVSS9.6AI score0.08496EPSS
Exploits0References4
Apple
Apple
added 2017/01/23 5:36 a.m.46 views

About the security content of iCloud for Windows 6.0.1 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...

8.8CVSS0.6AI score0.01532EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/01/13 12:0 a.m.6 views

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Input Method Editor component in the Windows operating system is related to errors during DLL loading. Exploiting this vulnerability can allow an attacker to increase their privileges locally...

7.2CVSS7.2AI score0.02181EPSS
Exploits0References3
Microsoft KB
Microsoft KB
added 2017/01/07 12:0 a.m.23 views

MS16-025: Security update for Windows library loading to address remote code execution: March 8, 2016

MS16-025: Security update for Windows library loading to address remote code execution: March 8, 2016 Summary This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if Microsoft Windows fails to properly validate input before loadin...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2016/12/23 12:0 a.m.4139 views

OpenSSH Arbitrary Library Loading

OpenSSH: agent protocol permits loading arbitrary libraries CVE-2016-10009 The OpenSSH agent permits its clients to load PKCS11 providers using the commands SSHAGENTCADDSMARTCARDKEY and SSHAGENTCADDSMARTCARDKEYCONSTRAINED if OpenSSH was compiled with the ENABLEPKCS11 flag normally enabled and the...

0.2AI score0.37431EPSS
Exploits4
Exploit DB
Exploit DB
added 2016/12/23 12:0 a.m.1747 views

OpenSSH < 7.4 - agent Protocol Arbitrary Library Loading

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1009 The OpenSSH agent permits its clients to load PKCS11 providers using the commands SSHAGENTCADDSMARTCARDKEY and SSHAGENTCADDSMARTCARDKEYCONSTRAINED if OpenSSH was compiled with the ENABLEPKCS11 flag normally enabled and the age...

7.4AI score
Exploits0
OSV
OSV
added 2016/12/20 6:59 a.m.2 views

CVE-2016-7292

The Installer in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandles library loading, which allows local users to gain privileges via a...

7.8CVSS5.8AI score0.01459EPSS
Exploits0References3
Prion
Prion
added 2016/12/20 6:59 a.m.21 views

Security feature bypass

Microsoft Office 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 mishandles library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability."...

7.2CVSS6.8AI score0.01417EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2016/12/20 6:59 a.m.21 views

CVE-2016-7275

Microsoft Office 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 mishandles library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability."...

7.8CVSS7.5AI score0.01417EPSS
Exploits0References3
OSV
OSV
added 2016/12/20 6:59 a.m.2 views

CVE-2016-7275

Microsoft Office 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 mishandles library loading, which allows local users to gain privileges via a crafted application, aka "Microsoft Office OLE DLL Side Loading Vulnerability."...

7.8CVSS5.8AI score0.01417EPSS
Exploits0References3
Prion
Prion
added 2016/12/20 6:59 a.m.20 views

Privilege escalation

The Installer in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandles library loading, which allows local users to gain privileges via a...

7.2CVSS6.9AI score0.01459EPSS
Exploits0References3Affected Software5
OpenVAS
OpenVAS
added 2016/12/14 12:0 a.m.31 views

Microsoft Windows Information Disclosure And Elevation of Privilege Vulnerabilities (3205655)

This host is missing a critical security update according to Microsoft Bulletin MS16-149. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.8CVSS6.4AI score0.03426EPSS
Exploits0References5
CNVD
CNVD
added 2016/12/14 12:0 a.m.3 views

Microsoft Office DLL Loading Remote Code Execution Vulnerability

Microsoft Office is an office software suite of products developed by the U.S. company Microsoft Microsoft. Commonly used components are Word, Excel, Access, Powerpoint, FrontPage and so on. A remote code execution vulnerability exists in Microsoft Office software that originates from the program...

7.8CVSS7.9AI score0.01417EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/12/14 12:0 a.m.118 views

MS16-149: Security Update for Microsoft Windows (3205655)

The remote Windows host is missing a security update. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists in a Windows Crypto driver running in kernel mode due to improper handling of objects in memory. A local attacker can exploit this, via a...

7.8CVSS6.8AI score0.03426EPSS
Exploits0References3
Check Point Advisories
Check Point Advisories
added 2016/12/13 12:0 a.m.10 views

Microsoft Windows Installer Elevation of Privilege (MS16-149: CVE-2016-7292)

An elevation of privilege vulnerability exists in the Windows Installer. The vulnerability is due to the Windows Installer failing to properly sanitize input leading to an insecure library loading behavior. A attacker could run arbitrary code with elevated system privileges...

7.2CVSS5.1AI score0.01459EPSS
Exploits0
Kaspersky
Kaspersky
added 2016/12/13 12:0 a.m.87 views

KLA10921 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain priveleges. Below is a complete list of vulnerabilities: 1. Memory corruption vulnerabilit...

9.6CVSS9.3AI score0.58204EPSS
Exploits7References51
Check Point Advisories
Check Point Advisories
added 2016/11/10 12:0 a.m.9 views

Adobe Flash Player Security Bypass (APSB16-18: CVE-2016-4140)

A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to insecure library loading while handling certain files. A remote attacker could exploit this issue by enticing a user to open a legitimate file that will insecurely load a specially crafted D...

9.3CVSS3AI score0.0381EPSS
Exploits0
Apple
Apple
added 2016/10/27 12:0 a.m.36 views

About the security content of iCloud for Windows 6.0.1

About the security content of iCloud for Windows 6.0.1 This document describes the security content of iCloud for Windows 6.0.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches ...

8.8CVSS0.6AI score0.01532EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2016/10/14 2:59 a.m.3 views

CVE-2016-7188

The Standard Collector Service in Windows Diagnostics Hub in Microsoft Windows 10 Gold, 1511, and 1607 mishandles library loading, which allows local users to gain privileges via a crafted application, aka "Windows Diagnostics Hub Elevation of Privilege Vulnerability."...

7.8CVSS5.8AI score0.03662EPSS
Exploits0References4
Rows per page
Query Builder