Lucene search
K

6686 matches found

Check Point Advisories
Check Point Advisories
added 2017/08/28 12:0 a.m.1 views

Microsoft Edge EmitAssignment Memory Corruption

A memory corruption vulnerability exists in Microsoft Edge. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...

3.5AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2017/08/28 12:0 a.m.4 views

Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-8646)

A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to the way JavaScript engines render content when handling objects in memory. A remote attacker could exploit these vulnerabilities by enticing the target user to open a specially crafted web page, potentiall...

7.6CVSS8.3AI score0.69277EPSS
Exploits3
Talos
Talos
added 2017/08/28 12:0 a.m.74 views

Lexmark LibISYSpdf Image Rendering DCTStream::getBlock() Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the image rendering functionality of Lexmark Perceptive Document Filters 11.3.0.2400. A specifically crafted PDF can cause a function call on a corrupted DCTStream to occur, resulting in user controlled data being written to the stack....

8.8CVSS8.3AI score0.02067EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2017/08/25 12:0 a.m.6 views

The vulnerability in the JavaScript kernel of Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability in the Microsoft Edge JavaScript kernel is caused by an operation going beyond the buffer boundaries in memory memory corruption due to a script error. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, as a resul...

7.6CVSS7.9AI score0.69277EPSS
Exploits3References6
BDU FSTEC
BDU FSTEC
added 2017/08/25 12:0 a.m.5 views

Vulnerability of object handlers in the memory of Internet Explorer and Microsoft Edge browsers, allowing attackers to execute arbitrary code

The vulnerability of object handlers in the memory of Internet Explorer and Microsoft Edge arises from the execution of operations beyond the buffer boundaries in memory memory corruption. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the curre...

7.6CVSS8.2AI score0.08466EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/08/25 12:0 a.m.8 views

The vulnerability in the JavaScript kernel of Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability in the Microsoft Edge JavaScript kernel is caused by an operation going beyond the buffer boundaries in memory memory corruption due to a script error. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, as a resul...

7.6CVSS7.9AI score0.08641EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2017/08/25 12:0 a.m.5 views

The vulnerability in the JavaScript kernel of Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability in the Microsoft Edge JavaScript kernel is caused by an operation going beyond the buffer boundaries in memory memory corruption due to a script error. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, as a resul...

7.6CVSS7.9AI score0.69277EPSS
Exploits3References6
BDU FSTEC
BDU FSTEC
added 2017/08/25 12:0 a.m.7 views

The vulnerability in the JavaScript kernel of Microsoft Edge allows a hacker to execute arbitrary code.

The vulnerability in the Microsoft Edge JavaScript kernel is caused by an operation going beyond the buffer boundaries in memory memory corruption due to a script error. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, as a resul...

7.6CVSS7.9AI score0.08641EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/08/24 6:45 a.m.6 views

Mozilla: Buffer overflow while painting non-displayable SVG (MFSA 2017-19)

A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG elements. This results in a potentially exploitable crash. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox 55...

9.8CVSS7.5AI score0.04187EPSS
Exploits1References5
Ubuntu
Ubuntu
added 2017/08/21 1:7 p.m.99 views

USN-3398-1: graphite2 vulnerabilities

Holger Fuhrmannek and Tyson Smith discovered that graphite2 incorrectly handled certain malformed fonts. If a user or automated system were tricked into opening a specially-crafted font file, a remote attacker could use this issue to cause graphite2 to crash, resulting in a denial of service, or...

9.8CVSS7.7AI score0.05216EPSS
Exploits6
CNVD
CNVD
added 2017/08/15 12:0 a.m.4 views

Adobe Acrobat and Reader XFA Remote Code Execution Vulnerability

Adobe Acrobat and Reader are the United States of America Audobee Adobe company's products. The former is a set of PDF document editing and conversion tools, the latter is a set of PDF document reading software. XFA is one of the form processing module. Adobe Acrobat and Reader in the XFA renderi...

9.3CVSS9.4AI score0.09204EPSS
Exploits0References1
OSV
OSV
added 2017/08/11 7:29 p.m.2 views

CVE-2017-11219

Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA rendering engine. Successful exploitation could lead to arbitrary code execution...

8.8CVSS6AI score0.09204EPSS
Exploits0References4
OSV
OSV
added 2017/08/11 7:29 p.m.1 views

CVE-2017-11231

Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in Acrobat/Reader rendering engine. Successful exploitation could lead to arbitrary code execution...

8.8CVSS6AI score0.07569EPSS
Exploits0References3
NVD
NVD
added 2017/08/11 7:29 p.m.17 views

CVE-2017-11219

Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA rendering engine. Successful exploitation could lead to arbitrary code execution...

9.3CVSS8.9AI score0.09204EPSS
Exploits0References4
Prion
Prion
added 2017/08/11 7:29 p.m.16 views

Double free

Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA rendering engine. Successful exploitation could lead to arbitrary code execution...

9.3CVSS8.8AI score0.09204EPSS
Exploits0References4Affected Software5
CVE
CVE
added 2017/08/11 7:0 p.m.88 views

CVE-2017-11219

Adobe Acrobat Reader 2017.x and earlier (versions listed in CVE-2017-11219 entry: 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier) contains an exploitable use-after-free in the XFA rendering engine. Successful exploitation could lead to ...

9.3CVSS9.3AI score0.09204EPSS
Exploits0References4Affected Software5
Tenable Nessus
Tenable Nessus
added 2017/08/11 12:0 a.m.45 views

Fedora 24 : webkitgtk4 (2017-9d572cc64a)

This update addresses the following vulnerabilities : - CVE-2017-7018, CVE-2017-7030, CVE-2017-7034, CVE-2017-7037, CVE-2017-7039, CVE-2017-7046, CVE-2017-7048, CVE-2017-7055, CVE-2017-7056, CVE-2017-7061, CVE-2017-7064 Additional fixes : - Fix rendering of spin buttons with GTK+ = 3.20 when the...

8.8CVSS6.5AI score0.08059EPSS
Exploits29References12
RedHat Linux
RedHat Linux
added 2017/08/10 11:20 p.m.6 views

Mozilla: Buffer overflow while painting non-displayable SVG (MFSA 2017-19)

A buffer overflow can occur when the image renderer attempts to paint non-displayable SVG elements. This results in a potentially exploitable crash. This vulnerability affects Thunderbird 52.3, Firefox ESR 52.3, and Firefox 55...

9.8CVSS7.5AI score0.04187EPSS
Exploits1References5
Fedora
Fedora
added 2017/08/10 9:27 p.m.19 views

[SECURITY] Fedora 25 Update: php-horde-Horde-Form-2.0.18-1.fc25

The HordeForm package provides form rendering, validation, and other functionality for the Horde Application Framework...

1.6AI score
Exploits0
Fedora
Fedora
added 2017/08/10 4:56 p.m.20 views

[SECURITY] Fedora 26 Update: php-horde-Horde-Form-2.0.18-1.fc26

The HordeForm package provides form rendering, validation, and other functionality for the Horde Application Framework...

1.6AI score
Exploits0
Rows per page
Query Builder