93 matches found
Microsoft Office Information Disclosure (MS16-148: CVE-2016-7264)
An information disclosure vulnerability exists within Microsoft Office. The vulnerability occurs due to an out-of-bound memory read as a result of an uninitialized variable, and could be used to disclose the memory content. A remote attacker can exploit this issue by enticing a victim to open a...
Design/Logic Flaw
A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions V1.03; Firmware variant IEC 104...
CVE-2016-4785
SiemenS SIPROTEC 4/Compact EN100 Ethernet modules are affected by CVE-2016-4785. The integrated web server (port 80) could disclose a limited amount of device memory content to remote attackers with network access, and the issue only affects EN100 Ethernet modules inside SIPROTEC4 and SIPROTEC Co...
MS15-107: Cumulative Security Update for Microsoft Edge (3096448)
The version of Microsoft Edge installed on the remote Windows host is missing Cumulative Security Update 3096448. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists due to improper handling of objects in memory. A remote attacker can exploit...
CVE-2015-1536
Integer overflow in the BitmapcreateFromParcel function in core/jni/android/graphics/Bitmap.cpp in Android before 5.1.1 LMY48I allows attackers to cause a denial of service systemserver crash or obtain sensitive systemserver memory-content information via a crafted application that leverages...
CVE-2015-1536
CVE-2015-1536 is an integer overflow in Bitmap_createFromParcel() in Android’s core/jni/android/graphics/Bitmap.cpp, affecting Android versions prior to 5.1.1 (LMY48I). The flaw arises from improper bitmap unmarshalling and can allow a crafted application to crash the system_server (denial of ser...
CVE-2015-1100
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to cause a denial of service out-of-bounds memory access or obtain sensitive memory-content information via a crafted app...
CVE-2015-1100
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to cause a denial of service out-of-bounds memory access or obtain sensitive memory-content information via a crafted app...
Apple iOS IOHIDFamily Memory Leak Vulnerability
Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A memory content disclosure vulnerability exists in Apple iOS IOHIDFamily, which allows local attackers to exploit the vulnerability to obtain sensitive information...
EntryPass N5200 information leakage
Memory content leakage...
quassel information leakage
Memory content leakage, DoS...
PHP 5.4.x < 5.4.34 / 5.5.x < 5.5.18 / 5.6.x < 5.6.2 Multiple Vulnerabilities
Binary data 8563.prm...
Information disclosure
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly initialize kernel memory, which allows attackers to obtain sensitive memory-content information via an application that makes crafted IOKit function calls...
CVE-2014-4407
IOKit in Apple iOS before 8 and Apple TV before 7 does not properly initialize kernel memory, which allows attackers to obtain sensitive memory-content information via an application that makes crafted IOKit function calls...
SAP Sybase SQL Anywhere OpenSSL TLS心跳信息泄漏漏洞
CVE ID:CVE-2014-0160 SAP Sybase SQL Anywhere是一套全面的解决方案,它提供了数据管理、同步和数据交换技术,可快速在远程和移动环境中开发并配置数据库驱动的应用程序。 SAP Sybase SQL Anywhere所绑定的OpenSSL存在安全漏洞,OpenSSL处理TLS”心跳“扩展存在一个边界错误,允许攻击者利用漏洞获取64k大小的已链接客户端或服务器的内存内容。内存信息可包括私钥,用户名密码等。 0 SAP Sybase SQL Anywhere 12.x SAP Sybase SQL Anywhere 16.x SAP Sybase SQL...
JPEG information leak — Mozilla
Google security researcher Michal Zalewski reported issues with JPEG format image processing with Start Of Scan SOS and Define Huffman Table DHT markers in the libjpeg library. This could allow for the possible reading of arbitrary memory content as well as cross-domain image theft...
Microsoft Silverlight information leakage
Memory content leakage...
MiniUPnPd information leakage
Memory content leakage in SSDP reply...
Google Chrome Multiple Unspecified Vulnerabilities - July 10
The host isnstalled with Google Chrome and is prone to multiple unspecified vulnerabilities. OpenVAS Vulnerability Test $Id: secpodgooglechromemultunspecifiedvulnjul10.nasl 5394 2017-02-22 09:22:42Z teissa $ Google Chrome Multiple Unspcified Vulnerabilities - July 10 Authors: Madhuri D Copyright:...
openSUSE Security Update : cifs-mount (cifs-mount-406)
This update fixes a bug that allowed the client to retrieve arbitrary memory content from the server process. CVE-2008-4314 Additionally another bug was fixed that affects environments that enabled registry shares by setting 'registry shares = yes'. In this case an authenticated user is...