Lucene search
+L

176 matches found

BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.5 views

The vulnerability of the Firefox ESR browser allows a malicious individual to execute arbitrary code or trigger a service failure.

The Mozilla Firefox ESR browser contains numerous vulnerabilities related to memory-related errors. Exploiting these vulnerabilities allows a malicious individual to execute arbitrary code through a specially created website, cause service failures, or trigger an emergency shutdown of the...

9.3CVSS7.7AI score0.08099EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/07/05 12:0 a.m.6 views

The vulnerability of the Thunderbird email client, which allows a malicious individual to execute arbitrary code or trigger a service failure.

Mozilla Thunderbird email client contains numerous vulnerabilities related to memory-related errors. Exploiting these vulnerabilities allows a malicious individual to execute arbitrary code through a specially created website, cause service failures, or trigger an emergency shutdown of the...

9.3CVSS7.7AI score0.08099EPSS
Exploits1References5Affected Software1
Ubuntu
Ubuntu
added 2016/06/27 11:48 p.m.114 views

USN-3021-1: Linux kernel vulnerabilities

Andrey Konovalov discovered that the CDC Network Control Model USB driver in the Linux kernel did not cancel work events queued if a later error occurred, resulting in a use-after-free. An attacker with physical access could use this to cause a denial of service system crash. CVE-2016-3951 Kangji...

7.8CVSS6.3AI score0.04178EPSS
Exploits5
ICS
ICS
added 2016/04/03 6:0 a.m.46 views

Eaton ELCSoft Programming Software Memory Vulnerabilities

OVERVIEW Ariele Calgaviano working with Zero Day Initiative has identified a heap-based memory corruption vulnerability and a stack buffer overflow vulnerability in Eaton’s ELCSoft programming software. Eaton has released a revision to mitigate these vulnerabilities. These vulnerabilities could b...

6CVSS7.5AI score0.01973EPSS
Exploits0References10
OSV
OSV
added 2016/02/05 5:26 p.m.8 views

MGASA-2016-0052 Updated krb5 packages fix security vulnerability

In all versions of MIT krb5, an authenticated attacker can cause kadmind to read beyond the end of allocated memory by sending a string without a terminating zero byte. Information leakage may be possible for an attacker with permission to modify the database CVE-2015-8629. In MIT krb5 1.12 and...

7.5CVSS5.7AI score0.04643EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2016/01/27 10:35 a.m.12 views

Mozilla Firefox 44 Security Patches

Mozilla has patched a number of critical vulnerabilities in Firefox 44 and Firefox Extended Release 38.6, which were released this week. The most serious flaws were memory vulnerabilities that lived in both the public and extended support versions of the browser. A buffer overflow write in WebGL,...

0.9AI score
Exploits0References6
FreeBSD
FreeBSD
added 2015/10/20 12:0 a.m.26 views

libebml -- multiple vulnerabilities

Mortiz Bunkus reports: Multiple invalid memory accesses vulnerabilities...

9.6CVSS6.1AI score0.02126EPSS
Exploits0References1
ArchLinux
ArchLinux
added 2015/10/08 12:0 a.m.27 views

opensmtpd: multiple issues

an oversight in the portable version of fgetln that allows attackers to read and write out-of-bounds memory - multiple denial-of-service vulnerabilities that allow local users to kill or hang OpenSMTPD - a stack-based buffer overflow that allows local users to crash OpenSMTPD, or execute...

9.7AI score0.04094EPSS
Exploits1References5
Mozilla
Mozilla
added 2015/08/11 12:0 a.m.53 views

Vulnerabilities found through code inspection — Mozilla

Security researcher Ronald Crane reported three vulnerabilities affecting released code that were found through code inspection. These included one use of unowned memory, one use of a deleted object, and one memory safety bug. These do not all have clear mechanisms to be exploited through web...

7.5CVSS7.9AI score0.03825EPSS
Exploits0References6Affected Software5
Kaspersky
Kaspersky
added 2015/08/11 12:0 a.m.285 views

KLA10646 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper OGL,...

9.3CVSS9.9AI score0.37429EPSS
Exploits28References87
RedHat Linux
RedHat Linux
added 2015/05/12 6:49 p.m.2 views

Mozilla: Miscellaneous memory safety hazards (rv:31.7) (MFSA 2015-46)

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 38.0, Firefox ESR 31.x before 31.7, and Thunderbird before 31.7 allow remote attackers to cause a denial of service memory corruption and application crash or possibly execute arbitrary code via unknown vectors...

7.5CVSS7.8AI score0.0491EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2015/05/07 2:21 p.m.22 views

Cisco UCS Central Software Security Vulnerabilities Patched

Cisco has patched a serious remote code execution vulnerability in its Unified Computing System UCS Central software, a data center platform that integrates processing, networking, storage and virtualization into one system. “An attacker could exploit this vulnerability by sending a crafted HTTP...

0.7AI score
Exploits0References4
ThreatPost
ThreatPost
added 2014/03/18 12:59 p.m.12 views

Gap Widens Between Attackers, BIOS Forensics, Research

Vendors have made important strides in locking down operating systems, patching memory-related vulnerabilities and other bugs that could lead to remote code execution or give hackers a stealthy presence on a machine. As the hurdles get higher for the bad guys, the better ones will certainly look...

Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/04/22 12:0 a.m.27 views

Fedora 19 : xen-4.2.1-10.fc19 (2013-5315)

make xendomains systemd script executable and update it from init.d version 919705, Potential use of freed memory in event channel operations XSA-47, CVE-2013-1920 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...

4.4CVSS5.3AI score0.00401EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2013/04/08 10:54 p.m.76 views

USN-1794-1: Linux kernel (OMAP4) vulnerabilities

Emese Revfy discovered that in the Linux kernel signal handlers could leak address information across an exec, making it possible to by pass ASLR Address Space Layout Randomization. A local user could use this flaw to by pass ASLR to reliably deliver an exploit payload that would otherwise be...

6.2CVSS6.4AI score0.005EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2013/04/03 12:0 a.m.27 views

SuSE 11.2 Security Update : poppler (SAT Patch Number 7560)

This update of poppler fixes the following vulnerabilities : - Various invalid memory issues could be used by attackers supplying PDFs to crash the PDF viewer or potentially execute code. CVE-2013-1788 - A crash in poppler could be used by attackers providing PDFs to crash the PDF viewer...

6.8CVSS7.3AI score0.03866EPSS
Exploits3References7
ThreatPost
ThreatPost
added 2012/11/06 5:33 p.m.8 views

Adobe Patches Critical Memory Vulnerabilities in Flash Player, AIR

Adobe has repaired a number of critical vulnerabilities in Flash Player that could lead to system crashes or remote attackers controlling computers running compromised software. None of the vulnerabilities are being exploited, Adobe said, and added that users should upgrade Flash Player. Version...

2.3AI score
Exploits0References3
OpenVAS
OpenVAS
added 2011/10/21 12:0 a.m.42 views

Ubuntu Update for libvoikko USN-1192-3

Ubuntu Update for Linux kernel vulnerabilities USN-1192-3 OpenVAS Vulnerability Test $Id: gbubuntuUSN11923.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for libvoikko USN-1192-3 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net Th...

10CVSS1.2AI score0.0544EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2011/10/19 9:5 p.m.68 views

USN-1192-3: Libvoikko regression

USN-1192-1 provided Firefox 6 as a security upgrade. Unfortunately, this caused a regression in libvoikko which caused Firefox to crash while spell checking words with hyphens. This update corrects the issue. We apologize for the inconvenience. Original advisory details: Aral Yaman discovered a...

9AI score
Exploits0References1
Ubuntu
Ubuntu
added 2011/10/04 10:51 p.m.92 views

USN-1222-2: Mozvoikko, ubufox, webfav update

USN-1222-1 fixed vulnerabilities in Firefox. This update provides updated packages for use with Firefox 7. Original advisory details: Benjamin Smedberg, Bob Clary, Jesse Ruderman, Bob Clary, Andrew McCreight, Andreas Gal, Gary Kwong, Igor Bukanov, Jason Orendorff, Jesse Ruderman, and Marcia Knous...

8.7AI score
Exploits0References1
Rows per page
Query Builder