The vulnerability of the Microsoft Office software package, which allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Office suite is related to improper data processing. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted document from a remote location...

The vulnerability of the Microsoft Office Compatibility Pack allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Office Compatibility Pack is related to incorrect data processing. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted document from a remote location...

The vulnerability of the Microsoft Office Compatibility Pack allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Office Compatibility Pack is related to incorrect data processing. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted document from a remote location...

OSIsoft PI JDBC Driver and PI ODBC Driver Denial of Service Vulnerabilities

OSIsoft PI JDBC Driver and PI ODBC Driver are drivers for connecting to access databases from OSIsoft, USA. A de-security vulnerability exists in OSIsoft PI JDBC Driver and PI ODBC Driver SQL Data Access Server fails to properly process input, which could be exploited by remote attackers to submi...

The vulnerability of the ScreenOS operating system, which allows a hacker to trigger a service failure

The vulnerability of the L2TP packet processing function in the operating system ScreenOS exists due to insufficient checks on input data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to cause service failures using specially created L2TP packets...

Moderate: Red Hat Security Advisory: pcs security, bug fix, and enhancement update

An updated pcs package that fixes one security issue, several bugs, and add various enhancements is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

SUSE-SU-2015:0630-1 Security update for MozillaFirefox

MozillaFirefox was updated to the 31.5.3ESR release to fix two security vulnerabilities: MFSA 2015-29 / CVE-2015-0817: Security researcher ilxu1a reported, through HP Zero Day Initiative's Pwn2Own contest, a flaw in Mozilla's implementation of typed array bounds checking in JavaScript just-in-tim...

RESTeasy: External entities expanded by DocumentProvider

It was found that the RESTEasy DocumentProvider did not set the external-parameter-entities and external-general-entities features appropriately, thus allowing external entity expansion. A remote attacker able to send XML requests to a RESTEasy endpoint could use this flaw to read files accessibl...

OpenAM vulnerable to denial-of-service (DoS)

Overview OpenAM provided by ForgeRock is an open source access management software. OpenAM contains a denial-of-service DoS vulnerability due to a flaw in processing Cookies CWE-400. Yasushi IWAKATA of Open Source Solution Technology Corporation reported this vulnerability to IPA. JPCERT/CC...

PT-2013-4724 · Microsoft · Windows Xp +8

Name of the Vulnerable Software and Affected Versions: Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista version SP2 Microsoft Windows Server 2008 versions SP2 through R2 SP1 Microsoft Windows 7 version SP1 Microsoft Windows 8 Microsof...

OpenJDK: image processing vulnerability (2D, 8007617)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors relate...

freetype security update

CentOS Errata and Security Advisory CESA-2013:0216 Updated freetype packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having important security impact. A Common Vulnerability Scoring System CVSS...

Medium: ImageMagick

Issue Overview: A flaw was found in the way ImageMagick processed images with malformed Exchangeable image file format Exif metadata. An attacker could create a specially-crafted image file that, when opened by a victim, would cause ImageMagick to crash or, potentially, execute arbitrary code...

DEBIAN-CVE-2009-0584

icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...

OpenJDK Font processing vulnerability (6733336)

Heap-based buffer overflow in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.218 and earlier might allow remote attackers to execute arbitrary code via a crafted TrueType font file...

Design/Logic Flaw

Opera before 9.52 on Windows, Linux, FreeBSD, and Solaris, when processing custom shortcut and menu commands, can produce argument strings that contain uninitialized memory, which might allow user-assisted remote attackers to execute arbitrary code or conduct other attacks via vectors related to...

Critical: Red Hat Security Advisory: java-1.6.0-ibm security update

Updated java-1.6.0-ibm packages that fix several security issues are now available for Red Hat Enterprise Linux 5 Supplementary. This update has been rated as having critical security impact by the Red Hat Security Response Team. IBM's 1.6.0 Java release includes the IBM Java 2 Runtime Environmen...

Important: Red Hat Security Advisory: gpdf security update

Updated kdegraphics packages that fix a security issue in PDF handling are now available for Red Hat Enterprise Linux 4. This update has been rated as having important security impact by the Red Hat Security Response Team. gpdf is a GNOME based viewer for Portable Document Format PDF files. Maury...

security flaw

Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service infinite loop via streams that end prematurely, as demonstrated using the 1 CCITTFaxDecode and 2 DCTDecode streams, aka "Infinite CPU spins."...

DEBIAN-CVE-2005-0406

A design flaw in image processing software that modifies JPEG images might not modify the original EXIF thumbnail, which could lead to an information leak of potentially sensitive visual information that had been removed from the main JPEG image...