Lucene search
K

6682 matches found

Prion
Prion
added 2017/03/31 4:59 p.m.18 views

Memory corruption

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the rendering engine. Successful exploitation could lead to arbitrary code execution...

10CVSS9.6AI score0.04552EPSS
Exploits0References2Affected Software4
NVD
NVD
added 2017/03/31 4:59 p.m.19 views

CVE-2017-3010

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the rendering engine. Successful exploitation could lead to arbitrary code execution...

10CVSS9.7AI score0.04552EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/03/31 3:0 p.m.22 views

CVE-2017-3010

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the rendering engine. Successful exploitation could lead to arbitrary code execution...

9.8AI score0.04552EPSS
Exploits0References2
Fedora
Fedora
added 2017/03/29 1:34 a.m.12 views

[SECURITY] Fedora 25 Update: webkitgtk4-2.16.0-1.fc25

WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3...

1.8AI score
Exploits0
Fedora
Fedora
added 2017/03/28 11:55 p.m.14 views

[SECURITY] Fedora 24 Update: webkitgtk4-2.16.0-1.fc24

WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3...

1.8AI score
Exploits0
0day.today
0day.today
added 2017/03/28 12:0 a.m.24 views

Microsoft Outlook - HTML Email Denial of Service Exploit

Exploit for windows platform in category dos / poc Source: https://justhaifei1.blogspot.ca/2017/03/an-interesting-outlook-bug.html When you send this email to someone, when he/she just read the email, Outlook will crash. MSRC told me that they think it's a non-exploitable bug and it seems that th...

7AI score
Exploits0
exploitpack
exploitpack
added 2017/03/28 12:0 a.m.15 views

Microsoft Outlook - HTML Email Denial of Service

Microsoft Outlook - HTML Email Denial of Service Source: https://justhaifei1.blogspot.ca/2017/03/an-interesting-outlook-bug.html When you send this email to someone, when he/she just read the email, Outlook will crash. MSRC told me that they think it's a non-exploitable bug and it seems that they...

7.2AI score
Exploits0
Hacker One
Hacker One
added 2017/03/20 1:34 a.m.17 views

Rockstar Games: Profile bio at rockstar is accepting control characters

This report involved the injection of control characters, such as Null Byte 0x00, into the profile Bio field in order to cause unexpected, harmful behaviors. Our solution was to both block control characters from being saved on the backend when included in user-input, as well as to suppress the...

1.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/03/20 12:0 a.m.40 views

openSUSE Security Update : Chromium (openSUSE-2017-353)

Chromium was updated to 57.0.2987.98 to fix security issues and bugs. The following vulnerabilities were fixed bsc1028848 : - CVE-2017-5030: Memory corruption in V8 - CVE-2017-5031: Use after free in ANGLE - CVE-2017-5032: Out of bounds write in PDFium - CVE-2017-5029: Integer overflow in libxslt...

8.8CVSS7.1AI score0.41603EPSS
Exploits2References19
seebug.org
seebug.org
added 2017/03/20 12:0 a.m.59 views

Microsoft Internet Explorer Elevation of Privilege Vulnerability (CVE-2017-0154)

Original link: a Broken Browser Original author: Manuel Caballero Translation: Holic know Chong Yu 404 security lab Today we know from Internet Explorer since the birth there has been function. This feature allows the Web Developer instance of the external object, and therefore be the attacker to...

5.8CVSS6.5AI score0.10565EPSS
Exploits1
OPENSUSE Linux
OPENSUSE Linux
added 2017/03/18 12:9 a.m.64 views

Security update for Chromium (important)

Chromium was updated to 57.0.2987.98 to fix security issues and bugs. The following vulnerabilities were fixed bsc1028848: - CVE-2017-5030: Memory corruption in V8 - CVE-2017-5031: Use after free in ANGLE - CVE-2017-5032: Out of bounds write in PDFium - CVE-2017-5029: Integer overflow in libxslt ...

9.3AI score0.41603EPSS
Exploits2References1
OPENSUSE Linux
OPENSUSE Linux
added 2017/03/18 12:8 a.m.52 views

Security update for Chromium (important)

Chromium was updated to 57.0.2987.98 to fix security issues and bugs. The following vulnerabilities were fixed bsc1028848: - CVE-2017-5030: Memory corruption in V8 - CVE-2017-5031: Use after free in ANGLE - CVE-2017-5032: Out of bounds write in PDFium - CVE-2017-5029: Integer overflow in libxslt ...

9.3AI score0.41603EPSS
Exploits2References1
OSV
OSV
added 2017/03/17 8:7 p.m.6 views

OPENSUSE-SU-2017:0738-1 Security update for Chromium

Chromium was updated to 57.0.2987.98 to fix security issues and bugs. The following vulnerabilities were fixed bsc1028848: - CVE-2017-5030: Memory corruption in V8 - CVE-2017-5031: Use after free in ANGLE - CVE-2017-5032: Out of bounds write in PDFium - CVE-2017-5029: Integer overflow in libxslt ...

8.8CVSS8.1AI score0.41603EPSS
Exploits2References20
Microsoft KB
Microsoft KB
added 2017/03/14 7:0 a.m.186 views

March 14, 2017—KB4013198 (OS Build 10586.839)

March 14, 2017—KB4013198 OS Build 10586.839 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed a known issue with KB3192441 that was rendering DFS-N mapped network drives inaccessib...

9.3CVSS7.5AI score0.99693EPSS
Exploits129
Microsoft KB
Microsoft KB
added 2017/03/14 7:0 a.m.189 views

March 14, 2017—KB4013429 (OS Build 14393.953)

March 14, 2017—KB4013429 OS Build 14393.953 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed known issue called out in KB3213986. Users may experience delays while running 3D...

9.3CVSS7.6AI score0.99693EPSS
Exploits129
Microsoft KB
Microsoft KB
added 2017/03/14 7:0 a.m.129 views

March 14, 2017—KB4012606 (OS Build 10240.17319)

March 14, 2017—KB4012606 OS Build 10240.17319 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed a known issue with KB3192440 that was rendering DFS-N mapped network drives...

9.3CVSS7.4AI score0.99693EPSS
Exploits128
Check Point Advisories
Check Point Advisories
added 2017/03/14 12:0 a.m.3 views

Microsoft Edge Scripting Engine Memory Corruption (MS17-007: CVE-2017-0067)

A Memory Corruption Vulnerability exists in Microsoft Edge. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted file...

7.6CVSS7.2AI score0.1523EPSS
Exploits4
Fedora
Fedora
added 2017/03/13 11:53 p.m.24 views

[SECURITY] Fedora 24 Update: freetype-2.6.3-3.fc24

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

7.8CVSS1.5AI score0.03235EPSS
Exploits1
Fedora
Fedora
added 2017/03/12 9:57 p.m.24 views

[SECURITY] Fedora 25 Update: freetype-2.6.5-3.fc25

The FreeType engine is a free and portable font rendering engine, developed to provide advanced font support for a variety of platforms and environments. FreeType is a library which can open and manages font files as well as efficiently load, hint and render individual glyphs. FreeType is not a...

7.8CVSS1.5AI score0.03235EPSS
Exploits1
Veracode
Veracode
added 2017/03/10 5:46 a.m.12 views

Cross-site Scripting (XSS)

epiceditor is vulnerable to cross-site scripting XSS attacks. The vulnerability is possible because it does not escape the input tags when rendering a page using marked.js...

6.1CVSS5.7AI score0.00683EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder