11 matches found
Adobe Flash ActionScript 3 opaqueBackground use-after-free vulnerability
Overview Adobe Flash Player contains a vulnerability in the ActionScript 3 opaqueBackground property, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Adobe Flash Player versions 9.0 through version 18.0.0.204 contain a use-after-fre...
SketchUp Viewer buffer overflow vulnerability
Overview SketchUp Viewer version 13.0.4124 is vulnerable to a buffer overflow when opening a malformed .SKP file. Description CWE-121: Stack-based Buffer Overflow - CVE-2013-6038SketchUp Viewer version 13.0.4124 is vulnerable to a stack buffer overflow when parsing a specially crafted .SKP file...
Microsoft Enhanced Mitigation Experience Toolkit (EMET) ROP Vulnerability
The host is installed with Microsoft Enhanced Mitigation Experience Toolkit EMET and is prone to return-oriented programming ROP vulnerability. OpenVAS Vulnerability Test $Id: gbmicrosoftemetropvuln.nasl 6104 2017-05-11 09:03:48Z teissa $ Microsoft Enhanced Mitigation Experience Toolkit EMET ROP...
Microsoft Enhanced Mitigation Experience Toolkit (EMET) ROP Vulnerability
Microsoft Enhanced Mitigation Experience Toolkit EMET is prone to return-oriented programming ROP vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
CoreFTP contains a buffer overflow vulnerability
Overview CoreFTP contains a buffer overflow when parsing long directory names. Description CoreFTP is susceptible to a buffer overflow when parsing long directory names from a malicious FTP server. The LIST, VIEW, commands are vulnerable to a denial of service and the DELE command has been report...
Adobe Shockwave player vulnerable to downgrading
Overview Adobe Shockwave Player may automatically install a legacy version of the runtime, which can increase the attack surface of systems that have Shockwave installed. Description Adobe Macromedia Shockwave Player is software that plays active web content developed in Macromedia and Adobe...
Autonomy Keyview IDOL contains multiple vulnerabilities in file parsers
Overview Autonomy Keyview IDOL contains multiple vulnerabilities in file parsers. These vulnerabilities could allow a remote attacker to execute arbitrary code on an affected system. Description Autonomy Keyview IDOL is a set of libraries that can decode over 1,000 different file formats. The...
Oracle Outside In contains multiple exploitable vulnerabilities
Overview Oracle Outside In contains multiple exploitable vulnerabilities in its parsers, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Oracle Outside In is a set of libraries that can decode over 500 different file formats...
Aviosoft DTV Player buffer overflow vulnerability
Overview Aviosoft DTV Player contains a buffer overflow in the handling of playlist .plf files, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Aviosoft DTV Player is a multiple format video player application. Aviosoft DTV Player...
Iceni products PDF parser stack buffer overflow
Overview Iceni Argus and Infix contain a stack buffer overflow in the handling of flate-compressed PDF content, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Iceni Argus is a PDF conversion library. Argus 6.20 and earlier fail to...
Oracle Outside In contains exploitable vulnerabilities in Lotus 123 and Microsoft CAB file parsers
Overview Oracle Outside In contains exploitable vulnerabilities in Lotus 123 and Microsoft CAB file parsers, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Oracle Outside In is a set of libraries that can decode over 500 different...