Lucene search
K
Checkpoint AdvisoriesRecent

13538 matches found

Check Point Advisories
Check Point Advisories
•added 2016/11/08 12:0 a.m.•12 views

Microsoft Windows CLFS Driver Elevation of Privilege (MS16-134: CVE-2016-3342)

An elevation of privilege vulnerability exists in the Windows Common Log File System Driver. The vulnerability is caused when the Windows Common Log File System Driver fails to properly handle objects in memory. A remote attacker can exploit this vulnerability by running a specially exe file...

9.3CVSS7.4AI score0.12625EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/08 12:0 a.m.•14 views

Microsoft Windows CLFS Elevation of Privilege (MS16-134: CVE-2016-0026)

An elevation of privilege vulnerability has been reported in Microsoft Windows. The vulnerability is due to an malformed blf file, which could be abused by attackers to gain local privilege escalation. The attacker must entice the victim to run an executable file to exploit this vulnerability...

9.3CVSS7.5AI score0.06767EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/08 12:0 a.m.•7 views

Microsoft Browser Remote Code Execution (MS16-129: CVE-2016-7241)

A type confusion vulnerability has been reported in the Scripting Engines of Microsoft Edge and Internet Explorer. This vulnerability is due to improper access of objects in memory when the JSON.parse JavaScript function is called. A remote attacker could exploit this vulnerability by enticing th...

7.6CVSS7.2AI score0.71489EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2016/11/08 12:0 a.m.•16 views

Microsoft Windows CLFS Elevation of Privilege (MS16-134: CVE-2016-7184)

An elevation of privilege vulnerability has been reported in Microsoft Windows. The vulnerability is due to an malformed blf file, which could be abused by attackers to gain local privilege escalation. The attacker must entice the victim to run an executable file to exploit this vulnerability...

9.3CVSS7.5AI score0.06767EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/08 12:0 a.m.•14 views

Microsoft Windows CLFS Driver Elevation of Privilege (MS16-134: CVE-2016-3335)

A memory corruption vulnerability exists within the CLFS.SYS component of Microsoft Windows. It can be triggered by loading specially crafted .blf files. Successful exploitation of this issue might lead to local privilege escalation...

9.3CVSS7.5AI score0.06767EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/08 12:0 a.m.•10 views

Microsoft Internet Explorer Memory Corruption (MS16-142: CVE-2016-7198)

A remote code execution vulnerability exists in Internet Explorer and Microsoft Edge. The vulnerability is due to the way scripting engine renders when handling objects in memory. A remote attacker can exploit this issue by enticing a user to open a specially crafted web-page with an affected...

7.6CVSS7.6AI score0.14329EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/08 12:0 a.m.•17 views

Microsoft Edge Scripting Engine Memory Corruption (MS16-129: CVE-2016-7240)

A memory corruption vulnerability exists in Microsoft Edge. The vulnerability is due to the way Chakra JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...

7.6CVSS3.4AI score0.66469EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2016/11/08 12:0 a.m.•12 views

Microsoft Windows CLFS Driver Elevation of Privilege (MS16-134: CVE-2016-3343)

An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is due to improper handling of objects in memory. The attacker must entice the victim to run an executable file to exploit this vulnerability...

9.3CVSS7.4AI score0.12625EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/03 12:0 a.m.•1 views

Novell Micro Focus GroupWise Multiple Cross Site Scripting (CVE-2016-5760)

A cross-site scripting vulnerability has been reported in the administrator console of Micro Focus GroupWise. The vulnerability is due to failure to properly sanitize user-supplied input. A remote attacker can exploit this vulnerability by enticing a target user to click on a specially crafted UR...

4.3CVSS1.5AI score0.01265EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2016/11/03 12:0 a.m.•5 views

Adobe Acrobat and Reader Use After Free Code Execution (APSB16-33: CVE-2016-1091)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3.5AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/03 12:0 a.m.•6 views

Adobe Acrobat and Reader Memory Corruption (APSB16-33: CVE-2016-6954)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to out-of-bounds error while accessing to unintended memory in a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted PDF fi...

10CVSS4.1AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/03 12:0 a.m.•1 views

Nagios Network Analyzer create Cross-Site Request Forgery

A cross-site request forgery vulnerability exists in the create user interface of Nagios Network Analyzer. The vulnerability is due to a lack of CSRF protection on the user creation form in createuser.php. A remote, unauthenticated attacker can exploit this vulnerability by enticing an...

3.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/03 12:0 a.m.•2 views

FreePBX Framework remotemod Parameter Remote Command Execution

A remote command execution vulnerability exists in FreePBX. The vulnerability is due to lack of sanitization for 'remotemod' parameter. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary command in the security context of the affected service...

4.7AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/03 12:0 a.m.•2 views

SugarCRM PHP Deserialization Script Injection

A script injection vulnerability exists in SugarCRM. The vulnerability is due to lack of input validation when handling a parameter of a HTTP request. Remote, unauthenticated attackers could exploit this vulnerability by sending a crafted HTTP request to the target server. Successful exploitation...

1.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/03 12:0 a.m.•8 views

Novell Micro Focus GroupWise Multiple Cross Site Scripting (CVE-2016-5760)

A cross-site scripting vulnerability has been reported in the administrator console of Micro Focus GroupWise. The vulnerability is due to failure to properly sanitize user-supplied input. A remote attacker can exploit this vulnerability by enticing a target user to click on a specially crafted UR...

4.3CVSS1.5AI score0.01265EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2016/11/03 12:0 a.m.•10 views

Trend Micro Control Manager Information Disclosure (CVE-2016-6220)

An XML external entity XXE processing vulnerability has been reported in Trend Micro Control Manager. The vulnerability is due to lack of validation of user-supplied input prior to executing an XML query. A remote, authenticated attacker could exploit this vulnerability by sending a malicious HTT...

5CVSS1.2AI score0.04929EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/03 12:0 a.m.•13 views

OpenJPEG JPEG2000 Image Processing Out-of-Bounds Write (CVE-2016-8332)

An out-of-bounds write vulnerability has been discovered in OpenJPEG. The vulnerability is due to a lack of validation on the index values of MCC markers when parsing maliciously crafted JPEG2000 image files. A remote attacker could exploit this vulnerability by enticing a user to open a maliciou...

6.8CVSS4.6AI score0.02563EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2016/11/02 12:0 a.m.•6 views

Black Hole Exploit Kit Website Redirection

Black Hole Exploit Kit exploit kit is a web exploit kit that operates by delivering malicious payload to the victim's computer. Remote attackers can infect users with Black Hole EK by redirecting them to a malicious web page. Successful infection will allow the attacker to download additional...

4.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/11/01 12:0 a.m.•7 views

Squid Proxy ESI Response Processing Denial of Service (CVE-2016-4555)

A denial of service vulnerability has been reported in the Edge Side Includes ESI component of the Squid proxy. The vulnerability is due to incorrect pointer handling when processing ESI responses. A remote attacker could exploit this vulnerability by sending crafted ESI response data to the targ...

5CVSS3AI score0.5392EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2016/11/01 12:0 a.m.•1 views

GD Library LibGD Integer Overflow (CVE-2016-5766)

A code execution vulnerability exists in LibGD. The vulnerability is due to an integer overflow leading to a heap buffer overflow. A remote attacker can exploit this flaw by getting the target application to process a crafted malicious GD2 file. Successful exploitation could result in code...

6.8CVSS3.8AI score0.07495EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2016/11/01 12:0 a.m.•5 views

OpenSSL SSL_peek Infinite Loop Denial of Service (CVE-2016-6305)

A denial-of-service vulnerability exists in OpenSSL. The vulnerability is due to an error in SSLpeek API that causes an infinite loop to occur when processing empty records. A remote, unauthenticated attacker can exploit this vulnerability by supplying an empty record during an SSL connection...

5CVSS2.7AI score0.15997EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2016/11/01 12:0 a.m.•17 views

Microsoft Internet Explorer NetBIOS Spoofing (MS16-063: CVE-2016-3213)

A spoofing vulnerability exists in Microsoft Internet Explorer. The root cause is that an attacker can spoof WAPD requests and force the browser to switch to local Intranet. A remote attacker can exploit this issue by sending a specially crafted meeting request...

9.3CVSS7.9AI score0.70288EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2016/10/31 12:0 a.m.•5 views

Adobe Acrobat and Reader Use After Free (APSB16-33: CVE-2016-6988)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/31 12:0 a.m.•26 views

SQL Servers SQL Injection Obfuscation Techniques (CVE-2014-9239; CVE-2020-10546; CVE-2020-10547; CVE-2020-10548; CVE-2020-10549)

Attackers may use SQL injection techniques in order to execute SQL commands on SQL servers. To avoid detection by security devices, such attackers might use various obfuscation techniques to conceal their actions. Successful exploitation could allow an attacker to disclose confidential informatio...

7.5CVSS4AI score0.8733EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2016/10/30 12:0 a.m.•2 views

AlienVault USM and OSSIM get_directive_kdb.php directive_id SQL Injection

A SQL injection vulnerability has been reported in AlienVault USM and OSSIM. The vulnerability is due to a failure to sanitize input on requests to getdirectivekdb.php. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the vulnerable application...

3.7AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/30 12:0 a.m.•10 views

Microsoft Windows Graphics Component Remote Code Execution (MS16-120; CVE-2016-3393)

A remote code execution vulnerability has been reported in Microsoft Windows Graphics Component. The vulnerability is due to the improper handling of objects in the memory.A remote attackers could exploit this vulnerability by enticing users to view a specially crafted web page, or a document fil...

9.3CVSS8AI score0.68684EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/30 12:0 a.m.•19 views

Joomla Core Unauthorized Account Creation (CVE-2016-8870)

A vulnerability exists in Joomla Core. The vulnerability is due to insufficient validation during user registration. Unauthorized attackers can remotly exploit this vulnerability to create any account in a Joomla system...

6.8CVSS8.5AI score0.82086EPSS
Exploits7
Check Point Advisories
Check Point Advisories
•added 2016/10/30 12:0 a.m.•11 views

Joomla Core Privilege Escalation (CVE-2016-8869)

A privilege escalation vulnerability exists in Joomla Core. Unauthorized remote attackers may leverage this vulnerability to gain administrative access to the vulnerable server...

7.5CVSS9.2AI score0.97426EPSS
Exploits14
Check Point Advisories
Check Point Advisories
•added 2016/10/30 12:0 a.m.•16 views

IBM WebSphere WASPostParam cookie Untrusted Java Deserialization (CVE-2016-5983)

A remote code execution vulnerability has been reported in IBM WebSphere. The vulnerability is due to an untrusted deserialization of data when the WASPostParam cookie is present in the request. A remote, authenticated attacker can exploit this vulnerability by sending a request containing a...

6.5CVSS4.1AI score0.04116EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/27 12:0 a.m.•14 views

Apache OpenMeetings Event Description Cross-Site Scripting (CVE-2016-2163)

A cross-site scripting vulnerability has been reported in the event handling component of Apache OpenMeetings. The vulnerability is due to insufficient validation of input for event descriptions. A remote, authenticated attacker could exploit this vulnerability by scheduling an event with a craft...

4.3CVSS1.4AI score0.07974EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/27 12:0 a.m.•2 views

op5 Monitor command_test.php Command Injection

A cross-site request forgery vulnerability leading to command injection has been reported in the commandtest.php script of op5 Monitor. The vulnerability is due to a lack of any cross-site request forgery prevention mechanism. A remote attacker could exploit this vulnerability by enticing an...

3.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/26 12:0 a.m.•18 views

Trellian FTP Client PASV Remote Buffer Overflow (CVE-2010-1465)

A code execution vulnerability exists in Trellian FTP client 3.01 , including 3.1.3.1789. The vulnerability is due to a stack buffer overflow when processing PASV FTP responses. Remote attackers can exploit this vulnerability by sending long PASV response and execute arbitrary code...

9.3CVSS7.3AI score0.31267EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2016/10/26 12:0 a.m.•2 views

Javascript Injection for Eval-based Unpackers

A code injection vulnerability exists in eval-based unpackers. The vulnerability is due to insufficient input validation. An attacker can generate a javascript file that executes arbitrary code when an eval-based unpacker is run on it...

4.5AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/26 12:0 a.m.•10 views

Adobe Reader and Acrobat Use After Free Code Execution (APSB16-33: CVE-2016-6971)

A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Reader and Acrobat while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...

10CVSS4AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/26 12:0 a.m.•3 views

Digium Asterisk PJSIP Stack ACK Denial of Service

A denial of service vulnerability exists in Digium Asterisk when the PJSIP stack is used. The vulnerability is due to improper processing of ACKs from an unrecognized endpoint, that causes a NULL pointer dereference. A remote unauthenticated attacker can exploit this vulnerability by sending an A...

3.9AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/26 12:0 a.m.•21 views

ASUSWRT LAN Backdoor Remote Command Execution (CVE-2014-9583)

A remote command execution vulnerability exists in Asuswrt. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

10CVSS5.9AI score0.80731EPSS
Exploits12
Check Point Advisories
Check Point Advisories
•added 2016/10/26 12:0 a.m.•30 views

HP Data Protector Remote Command Execution (CVE-2016-2004)

An arbitrary command execution vulnerability exists in the HPE Data Protector. A remote, unauthenticated attacker could exploit this vulnerability by sending malformed requests to a HPE Data Protector service. Successful exploitation could lead to arbitrary command execution under the context of...

9.3CVSS3.8AI score0.94297EPSS
Exploits14
Check Point Advisories
Check Point Advisories
•added 2016/10/25 12:0 a.m.•19 views

Adobe IExternalizable Interface Use After Free Code Execution (CVE-2016-7855)

A Use After Free vulnerability exists in Adobe IExternalizable Interface. The vulnerability is due to a reuse of a freed Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted SWF file...

9.3CVSS3.6AI score0.25198EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/23 12:0 a.m.•1 views

PHP 7 Uninitialized Value Remote Code Execution

A Remote Code Execution vulnerability exists in PHP 7. A remote attacker can exploit this vulnerability by sending specially crafted input to the inf variable...

4AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/20 12:0 a.m.•2 views

Transport Layer Security (TLS) Version 1.1

Transport Layer Security TLS is a cryptographic protocol meant to provide security and data integrity for communications over TCP/IP networks. TLSv1.1 is considered obsolete and insecure, and is deprecated in favor of a more advanced TLS protocol. This protection will detect and block any use of...

3AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/20 12:0 a.m.•2 views

Transport Layer Security (TLS) Version 1.0

Transport Layer Security TLS is a cryptographic protocol meant to provide security and data integrity for communications over TCP/IP networks. TLSv1.0 is considered obsolete and insecure, and is deprecated in favor of a more advanced TLS protocol. This protection will detect and block any use of...

3AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/20 12:0 a.m.•3 views

Transport Layer Security (TLS) Version 1.2

Transport Layer Security TLS is a cryptographic protocol meant to provide security and data integrity for communications over TCP/IP networks. This protection will detect and block any use of TLSv1.2 protocol...

3.5AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/20 12:0 a.m.•3 views

Veil Evasion Payloads

Veil-Evasion is an open source tool that generates malicious executables. A remote attacker could send executable files to an unprotected system, and trigger their execution on that system...

2.7AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/20 12:0 a.m.•6 views

Microsoft Windows Domain User Code Execution (MS16-110; CVE-2016-3368)

A code execution vulnerability exists in Microsoft Windows. The vulnerability is due to the way objects are handled in memory. A remote attacker with domain credentials can exploit this vulnerability by sending specially crafted requests to the target server...

9CVSS8.5AI score0.18333EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/19 12:0 a.m.•5 views

Trend Micro SafeSync for Enterprise ad.pm id Remote Command Execution

A remote command execution vulnerability exists in Trend Micro Safe Sync for Enterprise ad.pm page. The vulnerability is due to insufficient validation of the user-supplied id parameter. A remote, authenticated attacker could exploit this vulnerability by sending a crafted input to the vulnerable...

4.2AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/19 12:0 a.m.•4 views

Adobe Acrobat and Reader Memory Corruption (APSB16-33: CVE-2016-6970)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to out-of-bounds error while accessing to unintended memory in a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted PDF fi...

10CVSS4.1AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/19 12:0 a.m.•12 views

Symantec Endpoint Protection Manager Remote Privilege Escalation (CVE-2015-1487; CVE-2015-1489)

A vulnerability exist in Symantec Endpoint protection. These vulnerability include privilege escalation, path traversal and binary planting. Attackers can exploit this issue to gain elevated privileges on the affected computer...

8.5CVSS6.7AI score0.47331EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2016/10/19 12:0 a.m.•16 views

Adobe Acrobat and Reader Use After Free (APSB16-33: CVE-2016-6965; CVE-2016-6967; CVE-2016-6968; CVE-2016-6969)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/18 12:0 a.m.•6 views

PHP 7 Unserialization Malicious toString Remote Code Execution (CVE-2016-7479)

A Remote Code Execution vulnerability exists in PHP 7. A remote attacker can exploit this vulnerability by sending specially crafted input to the unserialize function...

7.5CVSS4.3AI score0.41943EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2016/10/18 12:0 a.m.•6 views

Adobe Flash Player Use After Free Code Execution (APSB16-32: CVE-2016-6987)

A remote code execution vulnerability exists in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted SWF file...

9.3CVSS3.7AI score0.05076EPSS
Exploits0
Total number of security vulnerabilities13538