ABB DataManagerPro DLL Local Code Execution Vulnerability

ABB DataManagerPro is a data analysis software package from ABB Switzerland. The software allows automatic data collection via Ethernet and database management. ABB DataManagerPro has a local code execution vulnerability. This vulnerability can be exploited by a local attacker to gain privileges ...

GNU Bash Local Code Execution Vulnerability

GNU Bash is a shell command language interpreter written by American software developer Brian J. Fox for the GNU Project, which runs on Unix-like operating systems the default shell for Linux systems and is capable of reading from, and executing commands from, a standard input device or file, as...

Dropbear SSH Local Code Execution Vulnerability

Dropbear is a relatively small SSH server and client. An arbitrary code execution vulnerability exists in Dropbear dropbearconvert, which can be exploited by a local attacker to execute arbitrary code...

Enpass DLL Load Local Code Execution Vulnerability

Enpass is a complete password management solution. A local code execution vulnerability exists in Enpass DLL loading. This allows a local attacker to exploit the vulnerability to execute arbitrary code within the context of the affected application...

Hancom Office 2014 VP Local Arbitrary Code Execution Vulnerability (CNVD-2016-06358)

Hancom Office 2014 VP is a cloud storage service solution developed by Hancom Korea. Hancom Office 2014 VP suffers from a local arbitrary code execution vulnerability that could be exploited by a local attacker to execute arbitrary code in the context of the application or conduct a denial of...

Hancom Office 2014 VP Local Arbitrary Code Execution Vulnerability (CNVD-2016-06355)

Hancom Office 2014 VP is a cloud storage service solution developed by Hancom Korea. Hancom Office 2014 VP suffers from a local arbitrary code execution vulnerability that could be exploited by a local attacker to execute arbitrary code in the context of the application or conduct a denial of...

Hancom Office 2014 VP Local Arbitrary Code Execution Vulnerability (CNVD-2016-06352)

Hancom Office 2014 VP is a cloud storage service solution developed by Hancom Korea. Hancom Office 2014 VP suffers from a local arbitrary code execution vulnerability that could be exploited by a local attacker to execute arbitrary code in the context of the application or conduct a denial of...

FreeBSD : p5-XSLoader -- local arbitrary code execution (3e08047f-5a6c-11e6-a6c3-14dae9d210b8)

Jakub Wilk reports : XSLoader tries to load code from a subdirectory in the cwd when called inside a string eval %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2018 Jacques...

Dropbox Local Code Execution Vulnerability

Dropbox is a set of open source, cross-platform file online storage, synchronization, and sharing software from Dropbox, Inc. A local code execution vulnerability exists in Dropbox versions 6.4.14 and earlier. A local attacker can exploit this vulnerability to execute arbitrary code in the contex...

Local Code Execution Vulnerability in Multiple Panda Security Products

Panda Security Panda Global Protection and others are antivirus products from the Spanish company Panda Security. The products protect all devices from viruses, spyware, hackers and other Internet threats. A local code execution vulnerability exists in several Panda Security products. A local...

NCH Software WavePad Local Code Execution Vulnerability

NCH Software WavePad is a suite of professional audio and music editor software from NCH Software, USA. A local code execution vulnerability exists in NCH Software WavePad version 6.48. A local attacker can exploit this vulnerability to execute arbitrary code in the context of the affected...

SOFTWIN Bitdefender Antivirus Local Code Execution Vulnerability

SOFTWIN BitDefender Antivirus is a suite of antivirus programs from the Romanian company SOFTWIN. A local code execution vulnerability exists in SOFTWIN Bitdefender Antivirus, which can be exploited by a local attacker to cause a denial of service by executing arbitrary code within an affected...

Qihu 360 Total Security 2016 Local Code Execution Vulnerability

Qihu 360 Total Security 2016 is a suite of free antivirus software from China's Qihu 360 Qihu 360 released to overseas markets. A local code execution vulnerability exists in the Qihu 360 Total Security 2016 version, which can be exploited by a local attacker to execute arbitrary code in an...

Notepad++ Native Code Execution Vulnerability

Notepad++ is a free plain text editor developed by software developer Don Ho, which can be used to create plain text help files and is also suitable for use as an editor for writing computer programs. A local code execution vulnerability exists in Notepad++. A local attacker could exploit this...

JetBrains PyCharm Professional Local Code Execution Vulnerability

JetBrains PyCharm a.k.a. python ide is a set of Python development tools from the Czech company JetBrains. professional is one of the professional versions. A local code execution vulnerability exists in JetBrains PyCharm Professional. A local attacker could exploit this vulnerability to execute...

The vulnerability of the Adobe Photoshop graphic editor, which allows a hacker to execute arbitrary code or trigger a service failure.

The vulnerability of the Adobe Photoshop graphic editor arises due to an overflow in the buffer in the dynamic memory. Exploiting this vulnerability allows a local attacker to execute arbitrary code or cause a service failure memory corruption...

CVE-2016-4802

Multiple untrusted search path vulnerabilities in cURL and libcurl before 7.49.1, when built with SSPI or telnet is enabled, allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse 1 security.dll, 2 secur32.dll, or 3 ws232.dll in the application or current...

Microsoft Windows DNS Server Memory Misreference Vulnerability

Microsoft Windows is a series of operating systems released by the American company Microsoft. A memory misreference vulnerability exists in the Microsoft Windows DNS server, which arises from a failure of the program to properly process a request. An attacker is allowed to exploit the...

UBUNTU-CVE-2015-5723

Doctrine Annotations before 1.2.7, Cache before 1.3.2 and 1.4.x before 1.4.2, Common before 2.4.3 and 2.5.x before 2.5.1, ORM before 2.4.8 or 2.5.x before 2.5.1, MongoDB ODM before 1.0.2, and MongoDB ODM Bundle before 3.0.1 use world-writable permissions for cache directories, which allows local...

The vulnerability of the Integrated Architecture Builder software, a tool for creating control systems, allows a hacker to execute arbitrary code.

The vulnerability of the IAB.exe component of the Integrated Architecture Builder software, which is used for creating control systems, is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating locally, to execute arbitrary code using a...