Lucene search
K

105 matches found

BDU FSTEC
BDU FSTEC
added 2016/04/14 12:0 a.m.6 views

The vulnerability of the Safari browser, which allows a hacker to replace the user interface

The vulnerability of Safari browser is related to incorrect data processing. Exploiting this vulnerability allows a malicious actor to replace the user interface through a web page that replaces the actual text...

4.3CVSS5.8AI score0.01415EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2016/02/24 12:0 a.m.5 views

Microsoft Edge browser vulnerability, which allows a hacker to trigger a service failure or execute arbitrary code

The vulnerability of Microsoft Edge arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or trigger a denial-of-service attack memory corruption using a specially crafted web page...

9.3CVSS8.5AI score0.17793EPSS
Exploits0References2
CNVD
CNVD
added 2015/12/13 12:0 a.m.4 views

Apple OS X OpenGL Memory Corruption Arbitrary Code Execution Vulnerability (CNVD-2015-08151)

Apple OS X is an operating system developed by Apple Inc. Apple OS X handles OpenGL with a memory corruption vulnerability that allows attackers to construct special WEB pages that can be tricked into loading by the user, which can crash the application or execute arbitrary code...

6.8CVSS7.3AI score0.02395EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2015/11/20 12:0 a.m.7 views

The vulnerability of the Cisco Secure Access Control System allows a perpetrator to bypass existing access restrictions and create a new information panel.

The vulnerability of the Solution Engine component of the Cisco Secure Access Control System relates to deficiencies in access control for certain functions. Exploiting this vulnerability could allow a malicious actor to bypass existing access restrictions and create a new information panel by...

4CVSS5.5AI score0.0137EPSS
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2015/10/13 12:0 a.m.22 views

Microsoft Internet Explorer Memory Corruption (MS15-106: CVE-2015-6045; CVE-2015-6045)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Internet Explorer accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a use...

9.3CVSS8.2AI score0.19322EPSS
Exploits0
CNVD
CNVD
added 2015/09/06 12:0 a.m.11 views

Google Chrome Skia Memory Misreference Vulnerability

Google Chrome is a WEB-based browser. A memory misreference vulnerability in the SkMatrix::invertNonIdentity function in core/SkMatrix.cpp in Google Chrome Skia allows remote attackers to construct a malicious WEB page that can be tricked into being parsed by the user, which can crash the...

7.5CVSS9.3AI score0.01586EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/08/13 12:0 a.m.41 views

Firefox < 40 Multiple Vulnerabilities (Mac OS X)

The version of Firefox installed on the remote Mac OS X host is prior to 40. It is, therefore, affected by the following vulnerabilities : - Multiple memory corruption issues exist that allow a remote attacker, via a specially crafted web page, to corrupt memory and potentially execute arbitrary...

10CVSS7.5AI score0.09027EPSS
Exploits0References30
Check Point Advisories
Check Point Advisories
added 2015/05/18 12:0 a.m.24 views

Microsoft Internet Explorer Deleted Object Code Execution (MS13-037) - Ver2 (CVE-2013-1312)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...

9.3CVSS7.3AI score0.20643EPSS
Exploits0
CNVD
CNVD
added 2015/05/14 12:0 a.m.6 views

Microsoft VBScript ASLR Bypass Vulnerability

Microsoft Internet Explorer is a WEB-based browser. An unspecified ASLR bypass vulnerability exists in Microsoft Internet Explorer, which allows remote attackers to exploit the vulnerability to construct a malicious WEB page that can be tricked into parsing, bypassing security restrictions, and...

4.3CVSS6.8AI score0.16265EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2015/05/12 12:0 a.m.4 views

Microsoft Internet Explorer ASLR Bypass (MS15-043: CVE-2015-1685)

A security feature bypass vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to improper implementation of the Address Space Layout Randomization ASLR security feature. A remote attacker can exploit this issue by enticing a user to open a specially crafted...

4.3CVSS6.2AI score0.16635EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/09/09 12:0 a.m.20 views

Microsoft Internet Explorer Memory Corruption (MS14-052: CVE-2014-2799)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Internet Explorer accesses an object that has not been correctly initialized or has been deleted. A remote attacker can exploit this issue by enticing a use...

9.3CVSS7AI score0.15145EPSS
Exploits0
Saint
Saint
added 2013/10/24 12:0 a.m.61 views

Oracle Java java.awt.image.ByteComponentRaster Overflow

Added: 10/24/2013 CVE: CVE-2013-2473 BID: 60623 OSVDB: 94336 Background Java is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. Probl...

10CVSS8.3AI score0.07437EPSS
Exploits4
ThreatPost
ThreatPost
added 2013/07/11 10:3 a.m.33 views

Attackers Targeting MS13-055 IE Vulnerability

Attackers are using an Internet Explorer vulnerability, which Microsoft patched yesterday, in targeted attacks that also employ a malicious Flash file installed through a drive-by download launched by compromised Web pages. The exploit that’s being used is capable of bypassing both ASLR and DEP...

9.3CVSS1.3AI score0.70676EPSS
Exploits6References4
Saint
Saint
added 2012/12/27 12:0 a.m.29 views

WibuKey Runtime WkWin32.dll module DisplayMessageDialog overflow

Added: 12/27/2012 BID: 56678 OSVDB: 87881 Background WibuKey is a software protection and licensing solution. Problem A vulnerability in the WkWin32.dll ActiveX control in WibuKey Runtime allows command execution when a web page calls the DisplayMessageDialog method with a long, specially crafted...

0.6AI score
Exploits0
Saint
Saint
added 2012/04/13 12:0 a.m.19 views

Tivoli Provisioning Manager Express ActiveX RunAndUploadFile vulnerability

Added: 04/13/2012 CVE: CVE-2012-0198 BID: 52252 OSVDB: 79735 Background Tivoli Provisioning Manager Express for Software Distribution is a software inventory and distribution solution. Problem A buffer overflow vulnerability in the RunAndUploadFile method in the Isig.isigCtl.1 ActiveX control...

9.3CVSS7AI score0.37437EPSS
Exploits6
securityvulns
securityvulns
added 2011/10/10 12:0 a.m.30 views

VUPEN Security Research - Google Chrome WebKit Engine Child Tag Deletion Stale Pointer Vulnerability

VUPEN Security Research - Google Chrome WebKit Engine Child Tag Deletion Stale Pointer Vulnerability Website : http://www.vupen.com/english/research.php Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- "Google Chrome is a web browser developed by Google that uses the WebKit...

Exploits0
Positive Technologies
Positive Technologies
added 2011/04/13 12:0 a.m.4 views

PT-2011-2540 · Microsoft · Jscript +1

Name of the Vulnerable Software and Affected Versions: Microsoft JScript versions 5.6 through 5.8 Microsoft VBScript versions 5.6 through 5.8 Description: The issue is related to multiple integer overflows in the scripting engines, which allow remote attackers to execute arbitrary code via a...

9.3CVSS7.4AI score0.26221EPSS
Exploits0References10
Check Point Advisories
Check Point Advisories
added 2010/06/08 12:0 a.m.30 views

Internet Explorer 8 Developer Tools ActiveX Memory Corruption (MS10-034; CVE-2010-0811)

A remote code execution vulnerability has been reported in Internet Explorer 8 Developer Tools. The vulnerability is due to the way Internet Explorer accesses the Developer Tools ActiveX control. To trigger this issue, an attacker may create a malicious web page that will cause Internet Explorer ...

9.3CVSS7.4AI score0.25924EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2009/04/14 12:0 a.m.17 views

Internet Explorer Marquee Object Improper Handling (MS09-014; CVE-2009-0554)

A remote code execution vulnerability has been reported in Microsoft Internet Explorer. A remote attacker could exploit this issue by convincing a user to open a maliciously crafted HTML file with Internet Explorer, which will cause the browser to crash and may allow execution of arbitrary...

9.3CVSS7.3AI score0.32169EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2008/02/03 12:0 a.m.9 views

Yahoo! Toolbar URL Shortcut ActiveX Control Buffer Overflow (CVE-2007-6535)

Yahoo! Toolbar is a pop-up blocker for Firefox and Internet Explorer that allows instant access to several Yahoo! features. A buffer overflow vulnerability was reported in Yahoo! Toolbar. This vulnerability is due to boundary errors in the Yahoo! Toolbar YShortcut ActiveX Control. To trigger this...

6.8CVSS7.4AI score0.01891EPSS
Exploits0
Rows per page
Query Builder