1800 matches found
The vulnerability of Google Chrome’s browser allows a malicious actor to replace the user interface.
Google Chrome browser contains a vulnerability in the ScrollView::paint function located in platform/scroll/ScrollView.cpp. This vulnerability allows malicious actors to remotely replace the user interface by expanding the scroll bar on the parent frame...
SUSE-SU-2016:1602-1 Security update for ntp
ntp was updated to version 4.2.8p8 to fix five security issues. These security issues were fixed: - CVE-2016-4953: Bad authentication demobilizes ephemeral associations bsc982065. - CVE-2016-4954: Processing spoofed server packets bsc982066. - CVE-2016-4955: Autokey association reset bsc982067. -...
CVE-2016-2016
Base-VxFS-50 B.05.00.01 through B.05.00.02, Base-VxFS-501 B.05.01.0 through B.05.01.03, and Base-VxFS-51 B.05.10.00 through B.05.10.02 on HPE HP-UX 11iv3 with VxFS 5.0, VxFS 5.0.1, and VxFS 5.1SP1 mishandles ACL inheritance for default:class: entries, default:other: entries, and default:user:...
DEBIAN-CVE-2016-3172
SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parentid parameter in an itemedit action...
UBUNTU-CVE-2016-3172
SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parentid parameter in an itemedit action...
CVE-2016-3172
SQL injection vulnerability in tree.php in Cacti 0.8.8g and earlier allows remote authenticated users to execute arbitrary SQL commands via the parentid parameter in an itemedit action...
CVE-2016-3983
McAfee Advanced Threat Defense ATD before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process...
Authentication flaw
McAfee Advanced Threat Defense ATD before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process...
CVE-2016-3983
McAfee Advanced Threat Defense ATD before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process...
Apache Tomcat Limited Directory Traversal Vulnerability (Feb 2016) - Linux
Apache Tomcat is prone to a limited directory traversal vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
TCP Bindshell with Password Prompt - 162 bytes
TCP Bindshell with Password Prompt - 162 bytes. Shellcode exploit for linux platform /--------------------------------------------------------------------------------------------------------------------- / Title: tcp bindshell with password prompt in 162 bytes Author: Sathish kumar Contact:...
x86_64 Linux bind TCP port shellcode
x8664 Linux bind TCP port shellcode. Shellcode exploit for linx86-64 platform /--------------------------------------------------------------------------------------------------------------------- / Exploit Title: bindshell TCP Author: Scorpion Copyright: c 2016 iQube. http://iQube.io Release Dat...
webkit -- UI spoof
webkit reports: The ScrollView::paint function in platform/scroll/ScrollView.cpp in Blink, as used in Google Chrome before 35.0.1916.114, allows remote attackers to spoof the UI by extending scrollbar painting into the parent frame...
Joomla 3.4.3 version SQL injection vulnerability analysis-vulnerability warning-the black bar safety net
0x00 vulnerability analysis Vulnerability trigger code is located at:/administrator/components/comcontenthistory/models/history.php, the getListQueryfunction: ! 4cf1a8d2985c5601fbdeb7a9e4a09234077751bf Through the SQL and the error message, you can know that our injected payload is inserted into...
Adobe Flash TextField.tabIndex Setter - Use-After-Free
Adobe Flash TextField.tabIndex Setter - Use-After-Free Source: https://code.google.com/p/google-security-research/issues/detail?id=574 There is a use-after-free in the TextField.tabIndex setter. If the integer parameter is an object with valueOf defined, then it can free the TextField's parent,...
Adobe Flash TextField.replaceText - Use-After-Free
Adobe Flash TextField.replaceText - Use-After-Free Source: https://code.google.com/p/google-security-research/issues/detail?id=584 There is a use-after-free in the TextField.replaceText function. If the function is called with a string parameter with toString defined, or an integer parameter with...
Adobe Flash TextField.replaceSel - Use-After-Free
Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=585 There is a use-after-free in TextField.replaceSel. If the string parameter of the method is set to an object with toString defined, this method can delete the...
Adobe Flash TextField.tabIndex Setter - Use-After-Free
Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=574 There is a use-after-free in the TextField.tabIndex setter. If the integer parameter is an object with valueOf defined, then it can free the TextField's parent, leadi...
Adobe Flash TextField.replaceText - Use-After-Free
Source: https://code.google.com/p/google-security-research/issues/detail?id=584 There is a use-after-free in the TextField.replaceText function. If the function is called with a string parameter with toString defined, or an integer parameter with valueOf defined, the parent object of the TextFiel...
Adobe Flash TextField.replaceSel - Use-After-Free
Source: https://code.google.com/p/google-security-research/issues/detail?id=585 There is a use-after-free in TextField.replaceSel. If the string parameter of the method is set to an object with toString defined, this method can delete the TextField's parent, leading to a use-after-free. A minimal...