Lucene search
+L

105 matches found

Zero Day Initiative
Zero Day Initiative
added 2018/04/11 12:0 a.m.27 views

Microsoft Office Excel Slicer Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS5.1AI score0.20136EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2017/08/08 12:0 a.m.41 views

Microsoft Edge XAML File Improper Access Control Privilege Escalation Vulnerability

This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Microsoft Edge. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of XA...

3.7CVSS7.7AI score0.0117EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2017/05/10 12:0 a.m.50 views

Microsoft Internet Explorer Enhanced Protected Mode Sandbox Escape Vulnerability

This vulnerability allows remote attackers to escape the Enhanced Protected Mode EPM sandbox on vulnerable installations of Microsoft Internet Explorer. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specif...

4.4CVSS4.4AI score0.09816EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2016/01/12 12:0 a.m.38 views

Microsoft Internet Explorer NewMessage Protected Mode Sandbox Escape Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.4CVSS7.9AI score0.02008EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2015/11/10 12:0 a.m.24 views

Microsoft Internet Explorer ShowSaveFileDialog Protected Mode Sandbox Escape Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage o...

4.4CVSS8AI score0.14722EPSS
Exploits0References1
Prion
Prion
added 2015/10/14 1:59 a.m.15 views

Privilege escalation

Microsoft Internet Explorer 10 and 11 allows remote attackers to gain privileges via a crafted web site, as demonstrated by a transition from Low Integrity to Medium Integrity, aka "Internet Explorer Elevation of Privilege Vulnerability."...

4.3CVSS7.4AI score0.14722EPSS
Exploits0References4Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2015/10/07 12:0 a.m.42 views

Microsoft Internet Explorer CIERegistryHelper::SetSingleValue Sandbox Escape Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.4CVSS6.3AI score0.07101EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/09/08 12:0 a.m.73 views

Microsoft Internet Explorer ISettingsBroker Sandbox Bypass Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage o...

6.9CVSS6.4AI score0.10714EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/08/11 12:0 a.m.36 views

Microsoft Internet Explorer HelpPane Sandbox Bypass Vulnerability

This vulnerability allows remote attackers to escape Protected Mode on vulnerable installations of Microsoft Internet Explorer User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.4CVSS6.1AI score0.02097EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/08/11 12:0 a.m.57 views

Microsoft Internet Explorer Registry Link Elevation of Privilege Vulnerability

This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.9CVSS6.1AI score0.07101EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/07/29 12:0 a.m.29 views

(Pwn2Own) Adobe Reader opendoc Broker Message Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within processing of the...

6.8CVSS6.5AI score0.06071EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/07/29 12:0 a.m.28 views

(Pwn2Own) Adobe Reader Portfolio Preview Privilege Escalation Vulnerability

This vulnerability allows attackers to elevate privileges on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw occurs within the handling of Portfolio...

6.6CVSS5.8AI score0.04065EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/07/20 12:0 a.m.27 views

Microsoft Internet Explorer EditWith Broker API Sandbox Escape Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer running in either Protected Mode or Enhanced Protected Mode. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...

4.6CVSS6.6AI score0.12426EPSS
Exploits0References1
NVD
NVD
added 2015/07/15 2:59 p.m.30 views

CVE-2015-5106

Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass intended access restrictions and perform a transition...

6.8CVSS6.5AI score0.04065EPSS
Exploits0References4
NVD
NVD
added 2015/07/15 2:59 p.m.25 views

CVE-2015-5090

Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass intended access restrictions and perform a transition...

7.2CVSS6.5AI score0.0107EPSS
Exploits0References3
Prion
Prion
added 2015/07/15 2:59 p.m.24 views

Design/Logic Flaw

Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass intended access restrictions and perform a transition...

6.8CVSS6.7AI score0.05065EPSS
Exploits0References4Affected Software4
Cvelist
Cvelist
added 2015/07/15 2:0 p.m.28 views

CVE-2015-5090

Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass intended access restrictions and perform a transition...

6.4AI score0.0107EPSS
Exploits0References3
NVD
NVD
added 2015/07/14 10:59 p.m.27 views

CVE-2015-2417

OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to gain privileges via crafted input, as demonstrated by a transition from L...

5CVSS6.8AI score0.10164EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2015/07/14 12:0 a.m.38 views

Microsoft Internet Explorer DLL Planting Sandbox Escape Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.9CVSS6.4AI score0.08209EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/07/09 12:0 a.m.41 views

(Pwn2Own) Microsoft Internet Explorer ActiveX Install Broker Sandbox Escape Vulnerability

This vulnerability allows attackers to escape the Enhanced Protection Mode sandbox of vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exis...

6.9CVSS6.1AI score0.13736EPSS
Exploits1References1
Rows per page
Query Builder