13 matches found
EUVD-2017-16528
Malware in sbrugna...
The vulnerabilities of PDF viewing and editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, and Adobe Acrobat 2020, as well as Adobe Acrobat Reader 2020, are related to insufficient validation of input data. This vulnerability allows attackers to trigger service failures.
The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 are related to insufficient validation of input data. Exploiting these vulnerabilities can allow attackers to trigge...
MS15-128: Description of the security update for the .NET Framework 3.5 in Windows 8.1 and Windows Server 2012 R2: December 8, 2015
MS15-128: Description of the security update for the .NET Framework 3.5 in Windows 8.1 and Windows Server 2012 R2: December 8, 2015 View products that this article applies to. Summary This update resolves vulnerabilities in the Microsoft .NET Framework. The vulnerabilities could allow remote code...
Windows GDI Information Disclosure Vulnerability
An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an attacker could explo...
Microsoft Windows MSHTML Engine - 'Edit' Remote Code Execution
Exploit Title: Microsoft Windows CVE-2019-0541 MSHTML Engine "Edit" Remote Code Execution Vulnerability Google Dork: N/A Date: March, 13 2019 Exploit Author: Eduardo Braun Prado Vendor Homepage: http://www.microsoft.com/ Software Link: http://www.microsoft.com/ Version: Windows 7 SP1, Server 2008...
poppler: out of bounds read in pdfunite
Poppler through 0.62 contains an out of bounds read vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a specially crafted PDF...
InPage reader code execution vulnerability
InPage reader is an InPage web-based magazine and data file reader. A security vulnerability exists in InPage reader. The vulnerability can be exploited to execute arbitrary code via specially crafted InPage documents...
Null pointer dereference
poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents...
CVE-2017-7511
poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents...
The vulnerabilities of programs for viewing and editing PDF files such as Adobe Reader, Adobe Acrobat, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud allow attackers to execute arbitrary code.
The vulnerability of programs for viewing and editing PDF files in Adobe Reader, Adobe Acrobat, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud arises from operations that occur outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to execute...
MS15-080: Description of the security update for the .NET Framework 3.5 on Windows 8 and Windows Server 2012: August 11, 2015
MS15-080: Description of the security update for the .NET Framework 3.5 on Windows 8 and Windows Server 2012: August 11, 2015 View products that this article applies to. Summary This security update resolves vulnerabilities in the Microsoft .NET Framework and Microsoft Silverlight. These...
MS16-039: Description of the security update for Skype for Business 2016: April 12, 2016
MS16-039: Description of the security update for Skype for Business 2016: April 12, 2016 Summary This security update resolves vulnerabilities in Skype for Business 2016 that could allow remote code execution if a user opens a specially crafted document or visits a webpage that contains specially...
Microsoft Office Component Memory Misreference Vulnerability (CNVD-2015-02511)
Microsoft office is a suite of office applications distributed by Microsoft. A memory misreference vulnerability in Microsoft's handling of specially crafted office documents allows remote attackers to construct malicious files that can be parsed by tricking users into executing arbitrary code...