Lucene search
+L

153 matches found

cnvd
cnvd
added 2018/02/14 12:0 a.m.3 views

SoftZone office demo prone to denial of service vulnerability

SoftZone Office RZoffice is an office software, which is compatible with MS Office and consists of three parts: word processing, spreadsheet and presentation. A denial-of-service vulnerability exists in RZoffice Presentations.exe when processing special ppt files. An attacker can exploit the...

6.8AI score
Exploits0
vulnrichment
vulnrichment
added 2018/01/29 5:0 p.m.9 views

CVE-2017-12626

Apache POI in versions prior to release 3.17 are vulnerable to Denial of Service Attacks: 1 Infinite Loops while parsing crafted WMF, EMF, MSG and macros POI bugs 61338 and 61294, and 2 Out of Memory Exceptions while parsing crafted DOC, PPT and XLS POI bugs 52372 and 61295...

7.1AI score0.10061EPSS
Exploits3References11
hackerone
hackerone
added 2017/12/21 11:35 a.m.32 views

Open-Xchange: Stored XSS

Vulnerability Details: Script code within Presentations is being executed when transferring it to the clipboard. This is done by "copying" or "cutting" text using keyboard commands. Risk: Malicious script code can be executed within a users context. This can lead to session hijacking or triggerin...

0.9AI score
Exploits0
qualysblog
qualysblog
added 2017/12/13 9:16 p.m.16 views

Call For Customer Presentations at RSA Conference 2018!

Tell your security story to your peers at RSA Conference 2018 San Francisco! Qualys is looking for customers excited to share their security and DevSecOps successes, best practices and case studies leveraging the use of the Qualys Cloud Platform. Take the stage in the Qualys booth to share your...

6.9AI score
Exploits0
openbugbounty
openbugbounty
added 2017/11/19 12:55 a.m.17 views

icmai.in XSS vulnerability

Open Bug Bounty ID: OBB-422897 Description| Value ---|--- Affected Website:| icmai.in Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat Sheet...

6.3AI score
Exploits0
avleonov
avleonov
added 2017/10/22 9:26 p.m.75 views

ISACA Moscow Vulnerability Management Meetup 2017

Last Thursday, I attended a very interesting event entirely dedicated to Vulnerability Management - open ISACA Moscow meetup. Me and my former colleague from Mail.Ru Group Dmitry Chernobaj presented there our joint report "Enterprise Vulnerability Management: fancy marketing brochures and the...

6.6AI score
Exploits0
qualysblog
qualysblog
added 2017/08/10 3:0 p.m.62 views

Call for Papers: Qualys Security Conference 2017

Our annual user conference, QSC17, is quickly approaching and we are looking for customer presentations that showcase hot topics related to security and best practices via case studies leveraging the use of Qualys technologies. If you would like to be considered as a presenter, please send a...

6.9AI score
Exploits0
openbugbounty
openbugbounty
added 2017/07/03 7:50 a.m.21 views

icmai.in XSS vulnerability

Vulnerable URL: http://icmai.in/Knowledge-Bank/presentations2.php?page=5%22%3E%3Ch1%3EM0ns7er%3C/h1%3E%3Cscript%3Ealert%28document.cookie%29%3C/script%3E%3C/br%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 03.08.2017 Vulnerability type:| XSS Vulnerability status:|...

6.3AI score
Exploits0
rapid7community
rapid7community
added 2017/06/07 2:6 p.m.21 views

We want YOU...to speak at UNITED 2017!

Are you an IT or security professional who secretly dreams of speaking to a group of passionate people facing the same challenges and celebrating the same victories as you? Dream no more: For the next three weeks, were accepting submissions for presentations at UNITED 2017 September 13-14 in...

6.7AI score
Exploits0
avleonov
avleonov
added 2017/04/24 5:31 p.m.27 views

CISO Forum 2017

Last week I have attended CISO Forum 2017 in Moscow. I was talking there about "Vulnerability Quadrants: automated hot topic detection in public vulnerability CVE flow". Today I want to share my impressions about the forum itself. To be short, I liked it very much. Both exhibition and...

6.7AI score
Exploits0
thn
thn
added 2017/03/01 12:8 a.m.17 views

THN Deal: Complete Linux Certification Training (Save 97%)

If you are also searching for the answers to what skills are needed for a job in cyber security, you should know that this varies widely based upon the responsibilities of a particular role, the type of company you want to work with, and especially on it’s IT architect. However, Linux is the most...

6.4AI score
Exploits0
nessus
nessus
added 2016/07/22 12:0 a.m.45 views

FreeBSD : Apache OpenOffice 4.1.2 -- Memory Corruption Vulnerability (Impress Presentations) (72f71e26-4f69-11e6-ac37-ac9e174be3af)

The Apache OpenOffice Project reports : An OpenDocument Presentation .ODP or Presentation Template .OTP file can contain invalid presentation elements that lead to memory corruption when the document is loaded in Apache OpenOffice Impress. The defect may cause the document to appear as corrupted...

7.8CVSS7.3AI score0.04484EPSS
Exploits1References3
freebsd
freebsd
added 2016/07/17 12:0 a.m.31 views

Apache OpenOffice 4.1.2 -- Memory Corruption Vulnerability (Impress Presentations)

The Apache OpenOffice Project reports: An OpenDocument Presentation .ODP or Presentation Template .OTP file can contain invalid presentation elements that lead to memory corruption when the document is loaded in Apache OpenOffice Impress. The defect may cause the document to appear as corrupted a...

7.8CVSS7.7AI score0.13826EPSS
Exploits1References1
hackapp
hackapp
added 2016/04/01 8:51 a.m.12 views

Office HD: Presentations BASIC - Base64 encoded String, Customized SSL, Insecure KeyStore vulnerabilities

HackApp vulnerability scanner discovered that application Office HD: Presentations BASIC published at the 'play' market has multiple vulnerabilities...

0.5AI score
Exploits0References1Affected Software1
checkpoint_advisories
checkpoint_advisories
added 2015/05/18 12:0 a.m.33 views

Microsoft PowerPoint OfficeArt Atom Remote Code Execution (MS11-022) - Ver2 (CVE-2011-0976)

A remote code execution vulnerability has been identified in Microsoft PowerPoint. Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote attacker could exploit this issue via a malformed PowerPoint file. Successful exploitation of this vulnerability...

9.3CVSS7.1AI score0.25459EPSS
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.19 views

Corel Presentations X5 15.0.0.357 (shw) Buffer Preoccupation PoC

No description provided by source...

7.1AI score
Exploits0
thn
thn
added 2013/09/11 2:15 a.m.20 views

DefCamp 2013 - International Hacking and Information Security Conference in Romania

The Fourth Edition of an International Information Security Conference hosted in Romania , The DefCamp 2013 is now open for Call for Papers. Over 300 Security experts, Researchers, and Enthusiasts from Romania and neighboring countries are expected to take part in the event in Bucharest, at the...

6.6AI score
Exploits0
openvas
openvas
added 2012/05/22 12:0 a.m.24 views

Fedora Update for apache-poi FEDORA-2012-7686

Check for the Version of apache-poi OpenVAS Vulnerability Test Fedora Update for apache-poi FEDORA-2012-7686 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

5CVSS5.9AI score0.07503EPSS
Exploits0References2
openvas
openvas
added 2012/05/22 12:0 a.m.29 views

Fedora Update for apache-poi FEDORA-2012-7683

Check for the Version of apache-poi OpenVAS Vulnerability Test Fedora Update for apache-poi FEDORA-2012-7683 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

5CVSS5.9AI score0.07503EPSS
Exploits0References2
threatpost
threatpost
added 2012/04/30 6:14 p.m.11 views

Developing and Sharing Tools for Professional Hackers

Professional hackers or security testers tend to write a lot of code. We write exploit code, fuzzers, code to handle esoteric protocols and data structures, unpackers, disassemblers, reversers, parsers, and so much more. We write this code because often what we’re doing is so specific that is...

6.9AI score
Exploits0References4
Rows per page
Query Builder