135 matches found
CVE-2018-15366
A UrlfWTPPagePtr KERedirect Use-After-Free Privilege Escalation vulnerability in Trend Micro Antivirus for Mac Consumer 7.0 2017 and above could allow a local attacker to escalate privileges on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on t...
Micro Focus openSUSE Command Execution Vulnerability
Micro Focus openSUSE is a Linux-based free operating system from Micro Focus in the UK. mdadm is one of the packages used to manage and monitor RAID. A security vulnerability in the mdcheck script of the mdadm package in Micro Focus openSUSE versions 3.3.1-5.14.1 prior to version 13.2 stems from...
CVE-2017-14478
In the MMM::Agent::Helpers::Network::clearip function in MySQL Multi-Master Replication Manager MMM mmmagentd 2.2.1 for Linux, a specially crafted MMM protocol message can cause a shell command injection resulting in arbitrary command execution with the privileges of the mmm\agentd process. An...
UBUNTU-CVE-2018-5105
WebExtensions can bypass user prompts to first save and then open an arbitrarily downloaded file. This can result in an executable file running with local user privileges without explicit user consent. This vulnerability affects Firefox 58...
Cisco Network Academy Packet Tracer software untrustworthy search path vulnerability
Cisco Network Academy Packet Tracer software is a set of visual network simulation software from Cisco USA. The software is able to simulate file commands, visualization and configuration of network devices, and simulate data transmission interactions. An untrustworthy search path vulnerability...
CVE-2016-0354
IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user to upload a malicious file to a Sametime meeting room, that could be downloaded by unsuspecting users which could be executed with user privileges. IBM X-Force ID: 111893...
JVN#18641169: Installer and self-extracting archive containing the installer of TDB CA TypeA use software may insecurely load Dynamic Link Libraries
TDB CA TypeA use software provided by Teikoku Databank, Ltd. is a software which provides environment for using system and management function of TDB electronic authentication service TypeA. The installer and the self-extracting archive containing the installer of TDB CA TypeA use software contai...
Veritas NetBackup DoS / Command Execution / Privilege Escalation / Traversal
Veritas NetBackup and NetBackup appliance - Multiple Vulnerabilities -------------------------------------------------------------------- Introduction ============ Multiple critical vulnerabilities were identified in Veritas NetBackup and NetBackup appliance. The vulnerabilities were discovered...
Ubuntu 10.04 LTS / 10.10 / 11.04 : thunderbird vulnerabilities (USN-1350-1)
Jesse Ruderman and Bob Clary discovered memory safety issues affecting Thunderbird. If the user were tricked into opening a specially crafted page, an attacker could exploit these to cause a denial of service via application crash, or potentially execute code with the privileges of the user...
Critical: Red Hat Security Advisory: seamonkey security update
Updated seamonkey packages that fix several security issues are now available for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...
CentOS Update for ImageMagick CESA-2008:0165-01 centos2 i386
Check for the Version of ImageMagick OpenVAS Vulnerability Test CentOS Update for ImageMagick CESA-2008:0165-01 centos2 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
Mozilla Firefox Multiple Vulnerabilities (Dec 2008) - Windows
Mozilla Firefox browser is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-524-1: OpenOffice.org vulnerability
An integer overflow was discovered in the TIFF handling code in OpenOffice. If a user were tricked into loading a malicious TIFF image, a remote attacker could execute arbitrary code with user privileges...
Microsoft Internet Explorer IMSKDIC.DLL拒绝服务漏洞
Microsoft Internet Explorer是一款流行的WEB浏览器。 Microsoft Internet Explorer实例化IMSKDIC.DLL COM对象存在问题,远程攻击者可以利用漏洞进行内存破坏攻击,可能以进程权限执行任意指令。 当Microsoft Internet Explorer尝试以ActiveX控件实例化IMSKDIC.DLLMicrosoft IME COM对象,可能破坏系统内存造成拒绝服务,可能导致任意代码执行。 Microsoft Internet Explorer 6.0 SP2 Microsoft Internet Explorer 6.0...
PMachine Lib.Inc.PHP Remote Include Command Execution Vulnerability
Description It has been reported that PMachine does not properly handle include files under some circumstances. Because of this, an attacker may be able to remotely execute commands. Technologies Affected PMachine PMachine 2.2.1 Recommendations Block external access at the network boundary, unles...