Mozilla: Out-of-bounds read and write while rendering SVG content (MFSA 2015-19)

Heap-based buffer overflow in the mozilla::gfx::CopyRect function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remote attackers to obtain sensitive information from uninitialized process memory via a malformed SVG graphic...

Jython Access Restriction Bypass Vulnerability

Jython is the Jython project a Python interpreter written in Java. An access restriction bypass vulnerability exists in Jython 2.2.1 that allows local users to bypass the privileges of unspecified vector access restrictions...

SQL Injection in Huge IT Slider WordPress Plugin

High-Tech Bridge Security Research Lab discovered an SQL injection vulnerability in Huge IT Slider WordPress Plugin. This vulnerability can be exploited by website administrators as well as anonymous attackers to inject and execute arbitrary SQL queries within the application’s database. 1 SQL...

Desert Falcons: First Arabic Cyberespionage Operation Uncovered

CANCUN, Mexico — A Middle Eastern cyberespionage gang is capitalizing on subpar security practices in the region to backdoor a mix of business, political and military targets. Dubbed Desert Falcons, the gang is thought to be the first Arabic APT operation, according to researchers at Kaspersky La...

Integer overflow

Multiple integer overflows in the GraphicBuffer::unflatten function in platform/frameworks/native/libs/ui/GraphicBuffer.cpp in Android through 5.0 allow attackers to gain privileges or cause a denial of service memory corruption via vectors that trigger a large number of 1 file descriptors or 2...

Buffer overflow

Buffer overflow in the Field Device Tool FDT Frame application in the HART Device Type Manager DTM library, as used in MACTek Bullet DTM 1.00.0, GE Vector DTM 1.00.0, GE SVi1000 Positioner DTM 1.00.0, GE SVI II AP Positioner DTM 2.00.1, and GE 12400 Level Transmitter DTM 1.00.0, allows remote...

Microweber 0.95 - SQL Injection Vulnerability

Exploit Title: Microweber 0.95 - SQL Injection Vulnerability Vendor: https://microweber.com/ Download link: https://microweber.com/download https://github.com/microweber/microweber CVE ID: CVE-2014-9464 Vulnerability: SQL Injection Affected version: Version 0.95 before 12/09/2014. Fixed version:...

Vala 'Gst.MapInfo()' Function Denial of Service Vulnerability

Vala is a programming language for the GObject system based on Gnome, developed by software developers Jurg Billeter and Raffaele Sandrini. A denial of service vulnerability exists in the Vala 'Gst.MapInfo' function, which could allow a context-sensitive attacker to launch a denial of service...

CVE-2015-0395

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot...

DEBIAN-CVE-2014-6585

Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allows remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6591...

Buffer overflow

Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Libraries...

asterisk -- Mitigation for libcURL HTTP request injection vulnerability

The Asterisk project reports: CVE-2014-8150 reported an HTTP request injection vulnerability in libcURL. Asterisk uses libcURL in its funccurl.so module the CURL dialplan function, as well as its resconfigcurl.so cURL realtime backend modules. Since Asterisk may be configured to allow for...

Fedora Update for ntp FEDORA-2014-17367

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Facebook HipHop Virtual Machine crypgraphic protection mechanism bypass vulnerability

Facebook HipHop Virtual Machine is a HipHop virtual machine developed by Facebook Inc. that significantly improves PHP performance for loading dynamic pages. A crypgraphic protection mechanism bypass vulnerability exists in Facebook HipHop Virtual Machine versions prior to 3.3.0. The vulnerabilit...

Google Chrome Denial of Service Vulnerability (CNVD-2015-00077)

Google Chrome is a simple and efficiently designed web browsing tool developed by Google. A denial of service vulnerability exists in versions of Google Chrome prior to 11.0.696.65, which allows remote attackers to launch a denial of service attack via SVG documents...

Google Chrome Denial of Service Vulnerability (CNVD-2015-00023)

Google Chrome is a simple and efficiently designed web browsing tool developed by Google. A denial of service vulnerability exists in versions of Google Chrome prior to 11.0.696.65, which allows remote attackers to launch denial of service attacks via a crafted SVG document...

CVE-2014-5386

The mcryptcreateiv function in hphp/runtime/ext/mcrypt/extmcrypt.cpp in Facebook HipHop Virtual Machine HHVM before 3.3.0 does not seed the random number generator, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging the use of a single...

CVE-2014-5386

CVE-2014-5386 affects Facebook HHVM: the mcrypt_create_iv function in hphp/runtime/ext/mcrypt/ext_mcrypt.cpp does not seed the random number generator before HHVM 3.3.0, which enables remote attackers to defeat cryptographic protections by reusing a single initialization vector. Root cause is lac...

openSUSE Security Update : ntp (openSUSE-SU-2014:1670-1)

The network timeservice ntp was updated to fix critical security issues bnc910764, CERT VU852879 - A potential remote code execution problem was found inside ntpd. The functions cryptorecv when using autokey authentication, ctlputdata, and configure where updated to avoid buffer overflows that...

WordPress A.F.D. Theme Echelon Arbitrary File Download

Name: Wordpress A.F.D Theme Echelon / INURL - BRASIL Description: This exploit allows attacker to download any writable file from the server Usage info: Put the path of the file in the file's field of the exploit ,then click "Download" button then you get the file directly File download /etc/pass...