Lucene search
K
Checkpoint AdvisoriesRecent

13538 matches found

Check Point Advisories
Check Point Advisories
•added 2016/10/18 12:0 a.m.•1 views

PHP 7 Unserialization Hash Table Resize Use After Free

A Use After Free vulnerability exists in PHP 7. A remote attacker can exploit this vulnerability by sending specially crafted input to the unserialize function...

2.4AI score
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/18 12:0 a.m.•20 views

PHP 7 Unserialization Exception Infinite Loop Denial of Service (CVE-2016-7478)

A Denial of Service vulnerability exists in PHP 7. A remote attacker can exploit this vulnerability by sending specially crafted input to the unserialize function...

5CVSS3.5AI score0.42401EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2016/10/18 12:0 a.m.•3 views

Adobe Acrobat and Reader Memory Corruption (APSB16-33: CVE-2016-6956)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to out-of-bounds error while accessing unintended memory in a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

10CVSS4.1AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/18 12:0 a.m.•2 views

Adobe Reader Memory Corruption (APSB16-33: CVE-2016-6943)

A memory corruption vulnerability has been reported in Adobe Reader. The vulnerability is due to improper input validation. A remote attacker could trigger this issue via a specially crafted PDF file...

10CVSS3.8AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/18 12:0 a.m.•2 views

Adobe Flash Player Memory Corruption (APSB16-32: CVE-2016-6985)

A memory corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...

9.3CVSS4.7AI score0.04633EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/18 12:0 a.m.•5 views

Squash YAML Code Execution (CVE-2013-5036)

A remote code execution vulnerability exists in Squash. The vulnerability is due to insufficient sanitization of user-supplied input while processing certain language expressions. An attacker could exploit this vulnerability by sending a crafted request to the affected software...

7.5CVSS3.9AI score0.46182EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2016/10/18 12:0 a.m.•8 views

Adobe Acrobat and Reader Use-After-Free Code Execution (APSB16-33: CVE-2016-6944)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3.8AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/18 12:0 a.m.•8 views

Adobe Reader and Acrobat Memory Corruption (APSB16-33: CVE-2016-6959; CVE-2016-6966; CVE-2016-6978)

A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error while loading a PDF containing a malicious JavaScript code. A remote attacker may exploit this issue by enticing a target user to open a malicious PDF file with an affected version of Adobe...

10CVSS3.6AI score0.05063EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/14 12:0 a.m.•3 views

Adobe Flash Player Use After Free Code Execution (APSB16-32: CVE-2016-6981)

A remote code execution vulnerability exists in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted SWF file...

9.3CVSS3.7AI score0.0543EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•3 views

Adobe Acrobat and Reader Memory Corruption (APSB16-33: CVE-2016-6947)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to out-of-bounds error while accessing to unintended memory in a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted PDF fi...

10CVSS4.1AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•3 views

Adobe Acrobat and Reader Memory Corruption (APSB16-33: CVE-2016-6942)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to out-of-bounds error while accessing to unintended memory in a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted PDF fi...

10CVSS4.1AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•4 views

Adobe Reader and Acrobat Memory Corruption (APSB16-33: CVE-2016-6950)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted file...

10CVSS5.2AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•6 views

Adobe Acrobat and Reader Security Bypass (APSB16-33: CVE-2016-6957; CVE-2016-6958)

This vulnerability is an instance of a security bypass in Adobe Reader JavaScript engine. This vulnerability could be exploited to bypass the engine security restrictions. Successful exploitation of this issue could allow an attacker to execute privileged JavaScript functions...

10CVSS8.9AI score0.05808EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•4 views

Adobe Acrobat and Reader Memory Corruption (APSB16-33: CVE-2016-6948)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to out-of-bounds error while accessing to unintended memory in a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted PDF fi...

10CVSS4.1AI score0.05704EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•5 views

Adobe Acrobat and Reader Heap Overflow (APSB16-33: CVE-2016-6939)

A heap overflow vulnerability exists in Adobe Reader. The vulnerability is due to improper input validation. A remote attacker could trigger this issue via a specially crafted PDF file...

10CVSS4AI score0.08499EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•6 views

Adobe Acrobat and Reader Use After Free Code Execution (APSB16-33: CVE-2016-6979)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3.5AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•6 views

Adobe Acrobat and Reader Memory Corruption (APSB16-33: CVE-2016-6955)

A memory corruption vulnerability has been reported in Adobe Acrobat and Reader. The vulnerability is due to an error in Adobe Acrobat and Reader while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

10CVSS5AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•4 views

Adobe Acrobat and Reader Memory Corruption (APSB16-33: CVE-2016-6940)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted file...

10CVSS5.2AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•6 views

Adobe Acrobat and Reader Use After Free (APSB16-33: CVE-2016-1089)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3AI score0.05792EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•4 views

Adobe Flash Player Memory Corruption (APSB16-32: CVE-2016-6982)

A memory corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...

9.3CVSS4.7AI score0.04957EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•2 views

Adobe Flash Player Memory Corruption (APSB16-32: CVE-2016-6984)

A memory corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...

9.3CVSS4.7AI score0.04633EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•1 views

Adobe Flash Player Memory Corruption (APSB16-32: CVE-2016-6986)

A memory corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...

9.3CVSS4.7AI score0.04633EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•5 views

Adobe Acrobat and Reader Memory Corruption (APSB16-33: CVE-2016-6941)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to out-of-bounds error while accessing to unintended memory in a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted PDF fi...

10CVSS4.1AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•6 views

Adobe Acrobat and Reader Use-After-Free Code Execution (APSB16-33: CVE-2016-6952)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3.8AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•5 views

Adobe Acrobat and Reader Use After Free (APSB16-33: CVE-2016-6953)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•5 views

Adobe Acrobat And Reader Memory Corruption (APSB16-33: CVE-2016-6951)

A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

10CVSS5AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•5 views

Adobe Acrobat and Reader Use-After-Free Code Execution (APSB16-33: CVE-2016-6949)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3.8AI score0.07193EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•6 views

Adobe Acrobat and Reader Memory Corruption (APSB16-33: CVE-2016-6972; CVE-2016-6973)

A memory corruption vulnerability has been reported in Adobe Acrobat and Reader. The vulnerability is due to an error in Adobe Acrobat and Reader while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

10CVSS5AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•6 views

Adobe Flash Player Memory Corruption (APSB16-32: CVE-2016-6983)

A memory corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...

9.3CVSS4.7AI score0.04957EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•8 views

Adobe Reader Memory Corruption (APSB16-33: CVE-2016-6974; CVE-2016-6975; CVE-2016-6976; CVE-2016-6977)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•4 views

Adobe Acrobat and Reader Use After Free Code Execution (APSB16-33: CVE-2016-6945)

A remote code execution vulnerability has been reported in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Reader and Acrobat while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a...

10CVSS3.8AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•7 views

Adobe Acrobat and Reader Use After Free (APSB16-33: CVE-2016-6946)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file, potentially leading to...

10CVSS4.1AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/13 12:0 a.m.•16 views

Adobe Acrobat and Reader Use-After-Free Code Execution (APSB16-33: CVE-2016-6961; CVE-2016-6962; CVE-2016-6963; CVE-2016-6964)

A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...

10CVSS3.9AI score0.05813EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•3 views

Microsoft Internet Explorer Information Disclosure (MS16-118: CVE-2016-3267)

An information disclosure vulnerability exists in Internet Explorer and Microsoft Edge. The vulnerability is due to the way Internet Explorer and Edge do not properly handle objects in memory. A remote attacker could exploit this vulnerability by enticing the target user to open a specially craft...

4.3CVSS5.7AI score0.15885EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•5 views

Microsoft Windows Diagnostics Hub Elevation of Privilege (MS16-125: CVE-2016-7188)

An elevation of privilege vulnerability exists in Microsoft Windows within the Diagnostics Hub component. The vulnerability is caused when inputs are not properly sanitized by the Windows Diagnostics Hub Standard Collector Service . A successful exploitation could allow an attacker to run arbitra...

7.2CVSS7.7AI score0.03662EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•26 views

Microsoft Internet Explorer Memory Corruption (MS16-118: CVE-2016-3385)

A remote code execution vulnerability exists in Internet Explorer and Microsoft Edge. The vulnerability is due to the way scripting engine renders when handling objects in memory. A remote attacker can exploit this issue by enticing a user to open a specially crafted web-page with an affected...

9.3CVSS7.6AI score0.23027EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•11 views

Microsoft Windows GDI+ Information Disclosure (MS16-120: CVE-2016-3263)

An information disclosure vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in the way the True Type Font TTF driver handles objects in memory. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted EMF fil...

5CVSS1.8AI score0.31976EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•12 views

Microsoft Office Memory Corruption (MS16-121: CVE-2016-7193)

A buffer overflow vulnerability exists in the Word's RTF parser. The vulnerability is due to invalid parsing of RTF files. By enticing the user to open a specially crafted RTF file, an attacker could exploit this vulnerability to execute arbitrary code on the affected system...

9.3CVSS8.2AI score0.57705EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•13 views

Microsoft Edge Memory Corruption (MS16-119: CVE-2016-3386)

A memory corruption vulnerability exists in Microsoft Edge. The vulnerability is due to the way Chakra JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...

9.3CVSS7.3AI score0.41323EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•16 views

Microsoft Windows GDI+ Information Disclosure (MS16-120: CVE-2016-3262)

An information disclosure vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in the way the True Type Font TTF driver handles objects in memory. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted EMF fil...

5CVSS1.8AI score0.31976EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•8 views

Microsoft Windows Kernel Local Elevation of Privilege (MS16-124: CVE-2016-0075)

An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is due to the way Windows kernel API improperly allows a user to access sensitive registry information. A remote attacker can exploit this vulnerability by enticing a user to run a specially crafted executable...

2.1CVSS4.9AI score0.06877EPSS
Exploits3
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•4 views

Adobe Reader and Acrobat Memory Corruption (APSB16-33: CVE-2016-6960)

A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error while loading a PDF containing a malicious JavaScript code. A remote attacker may exploit this issue by enticing a target user to open a malicious PDF file with an affected version of Adobe...

10CVSS3.6AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•10 views

Microsoft Scripting Engine Information Disclosure (MS16-119: CVE-2016-7189)

An information disclosure vulnerability exists in Microsoft Edge. This vulnerability is due to improper handling of objects in memory. A remote attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...

9.3CVSS6.6AI score0.48127EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•12 views

Microsoft Windows Win32k Elevation of Privilege (MS16-120: CVE-2016-3270)

An elevation of privilege vulnerability exists in Microsoft Windows Win32k. The vulnerability is caused when Microsoft Windows improperly deals with one of its kernel components. A successful exploitation could allow an attacker to run arbitrary code with elevated privileges...

10CVSS7.6AI score0.06614EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•10 views

Microsoft Internet Explorer Memory Corruption (MS16-118: CVE-2016-3383)

A remote code execution vulnerability exists in Internet Explorer. The vulnerability is due to the way Internet Explorer accesses objects in memory. A remote attacker can exploit this vulnerability by enticing a user to open a specially crafted website...

9.3CVSS7.7AI score0.13577EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•7 views

Microsoft Win32k Elevation of Privilege (MS16-123: CVE-2016-7211)

An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is caused when the Windows kernel-mode driver fails to properly handle objects in memory. A remote attacker could exploit this vulnerability by running a specially crafted application...

7.2CVSS7.1AI score0.03013EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•9 views

Microsoft Windows Transaction Manager Elevation of Privilege (MS16-123: CVE-2016-3341)

An elevation of privilege vulnerability has been reported in Microsoft Windows Kernel Transaction Manager. The vulnerability is due to an malformed blf file, which could be abused by attackers to gain local privilege escalation. The attacker must entice the victim to run an executable file to...

9.3CVSS7.5AI score0.06615EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•9 views

Microsoft Browser Elevation of Privilege (MS16-118: CVE-2016-3387)

An Elevation of Privileges vulnerability exists in Internet Explorer and Edge. The vulnerability is due to a failure in properly securing a private namespace. A remote attacker could exploit this vulnerability by enticing a user to run a specially crafted executable...

6.8CVSS6AI score0.19932EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•15 views

Microsoft Internet Explorer Memory Corruption (MS16-118: CVE-2016-3382)

A remote code execution vulnerability exists in Internet Explorer and Microsoft Edge. The vulnerability is due to the way scripting engine renders when handling objects in memory. A remote attacker can exploit this issue by enticing a user to open a specially crafted web-page with an affected...

9.3CVSS7.6AI score0.17027EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2016/10/11 12:0 a.m.•13 views

Microsoft Windows Win32k Elevation of Privilege (MS16-123: CVE-2016-7185)

An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is caused when the Windows kernel-mode driver fails to properly handle objects in memory. A remote attacker could exploit this vulnerability by running a specially crafted application...

7.2CVSS7.1AI score0.03378EPSS
Exploits0
Total number of security vulnerabilities13538