15 matches found
Horilla 安全漏洞
Horilla is a free open-source human resources software developed by Horilla Company. Version 1.5.0 of Horilla contains a security vulnerability. This vulnerability stems from an access control flaw in the help desk attachment viewer, which may allow any authenticated user to view attachments from...
EUVD-2017-17340
Malware in sbrugna...
Siemens PADS Standard/Plus Viewer 缓冲区错误漏洞
PADS Standard and Standard Plus provide PCB schematic design and layout functionality in an intuitive and easy-to-use environment.An out-of-bounds read vulnerability exists in Siemens PADS Standard/Plus Viewer, which could be exploited by an attacker to execute code in the context of the current...
CVE-2022-22537
When a user opens a manipulated Tagged Image File Format .tiff, 2d.x3d received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application. The file format details along with the...
The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to memory usage after it is freed. This allows attackers to execute arbitrary code.
The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow attackers to execute arbitrary co...
The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to memory usage after it is freed. This allows attackers to execute arbitrary code.
The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to the use of memory after it is freed. Exploiting these vulnerabilities can allow an attacker to execute arbitrary...
XnView suffers from a denial of service vulnerability ( CNVD-2019-41049)
XnView is an image viewer with image viewer, screen capture, slideshow, thumbnail creation, batch conversion, hexadecimal browsing, drag-and-drop, address book, scanning input, etc. It supports more than 100 image formats and more than 500 images after installing the plug-in. XnView has a...
CVE-2017-14550
STDU Viewer 1.6.375 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .djvu file, related to a "Possible Stack Corruption starting at STDUDjVuFile!DllUnregisterServer+0x000000000000e8b8."...
CVE-2017-9894
XnView Classic for Windows Version 2.40 allows remote attackers to execute code via a crafted .fpx file, related to a "User Mode Write AV starting at Xfpx!gffGetFormatInfo+0x0000000000029272."...
Vulnerability of the Microsoft Office software package, the Microsoft Silverlight software platform, and the Word document viewing tool – Microsoft Office Word Viewer. Also vulnerable are the Microsoft Windows operating system, and the Microsoft Lync and Skype for Business instant messaging applications. These vulnerabilities allow attackers to inject arbitrary code into these systems.
The vulnerabilities of the Microsoft Office software package, the Microsoft Silverlight software platform, and the Word document viewing tool – Microsoft Office Word Viewer – as well as the Microsoft Windows operating system, and the Microsoft Lync and Skype for Business instant messaging...
The vulnerability of Google Chrome allows a hacker to circumvent existing access restrictions or download plugins.
The vulnerability of the PDF viewer component in Google Chrome exists due to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to circumvent existing access restrictions or download the plugin by manipulating the pdf.js and outofprocessinstance.cc...
The vulnerability of the Adobe Reader DC PDF viewer program allows a hacker to execute arbitrary code.
The vulnerability of the Adobe Reader DC PDF viewer program is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
MGASA-2015-0131 Updated firefox & thunderbird packages fix security vulnerabilities
Updated firefox and thunderbird packages fix security vulnerabilities: Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox or Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user...
security flaw
Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via a DCTDecode stream with 1 a large "number of components" value that is not checked by...
IrfanView32 3.0.7 - Image File Buffer Overflow
IrfanView32 3.0.7 - Image File Buffer Overflow // source: https://www.securityfocus.com/bid/781/info IrfanView32, a freeware image viewer, has a problem in the handling of Adobe Photoshop generated jpegs. If a .jpg file is opened for viewing that contains the Adobe Photoshop marker in the header...