Lucene search
K
Checkpoint AdvisoriesRecent

13538 matches found

Check Point Advisories
Check Point Advisories
added 2016/08/09 12:0 a.m.29 views

Microsoft Windows Graphics Component Remote Code Execution (MS16-097: CVE-2016-3301; CVE-2016-3303)

A memory corruption vulnerability exists in Microsoft Windows GDI . The vulnerability is due to integer overflow vulnerability founded in the GDI shared library. An attacker can exploits this vulnerability in various ways through an .emf file...

9.3CVSS3.6AI score0.50506EPSS
Exploits2
Check Point Advisories
Check Point Advisories
added 2016/08/08 12:0 a.m.5 views

Snort Back Orifice BOPing - ver 2 (CVE-1999-0660)

BOPing is a network scanner for computers where the Back Orifice remote administration program is installed. Use of this scanner might be a preliminary step before attempting to take control over the system using the Back Orifice program.This protection detects and blocks use of the BOPing scanne...

2.7AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/08/04 12:0 a.m.3 views

MongoDB phpMoAdmin Unauthenticated Remote Code Execution (CVE-2015-2208)

A remote code execution vulnerability exists in MongoDB administration tool for PHP. The vulnerability is due to insufficient validation of user supplied input when processing HTTP requests. A remote authenticated attacker could exploit this vulnerability by sending a malicious request...

7.5CVSS7AI score0.61959EPSS
Exploits8
Check Point Advisories
Check Point Advisories
added 2016/08/04 12:0 a.m.4 views

PHP7 Unserialization Use After Free

A Use-After-Free vulnerability exists in the Standard PHP library's unserializion of array objects, due to an internal array self-reference. An attacker could exploit this vulnerability by supplying crafted input to a PHP application. Successful exploitation may result in remote execution of...

4.9AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/08/04 12:0 a.m.2 views

Suspicious Image Attachment In Phishing Mail

Mail messages containing suspicious image file attachments were observed as part of various phishing campaigns. An attacker may use such phishing messages to entice users to disclose sensitive information such as usernames, passwords, and credit card details...

2.5AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/08/02 12:0 a.m.0 views

Generic DVR Default Credentials Login Attempt

An attacker may attempt to gain access to the system by trying to log in using the default passwords, eventually finding the correct one. Successful exploitation may result in an unauthorized access...

4.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/08/01 12:0 a.m.0 views

WordPress All In One WP Security and Firewall Plugin Login CAPTCHA Bypass

The login CAPTCHA provided by the WordPress All In One WP Security and Firewall Plugin can be circumvented, allowing attackers to automate login attempts when the CAPTCHA is enabled...

4.3AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/31 12:0 a.m.0 views

Centreon Web Useralias Remote Command Execution

A Remote command execution vulnerability exists in Centreon Web Interface. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

6.7AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/31 12:0 a.m.4 views

Apache Commons FileUpload Denial Of Service (CVE-2016-3092)

A denial of service vulnerability exists in Apache Commons FileUpload. A remote, unauthenticated attacker could exploit this vulnerability by sending a file upload request to the affected system. Successful attack can result in a denial of service condition...

7.8CVSS4.9AI score0.35927EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/31 12:0 a.m.3 views

Adobe Acrobat and Reader Memory Corruption (APSB16-14: CVE-2016-1071)

A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...

10CVSS5AI score0.05825EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/27 12:0 a.m.10 views

Adobe Acrobat and Reader Memory Corruption (APSB16-14: CVE-2016-1085)

This vulnerability is an instance of a memory corruption vulnerability. In particular, the vulnerability is triggered by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation exception. Attackers can exploit the vulnerability by using the out of...

10CVSS5.2AI score0.03716EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/26 12:0 a.m.3 views

Schneider Electric GP-Pro EX ParseAPI Heap Buffer Overflow

A heap buffer overflow vulnerability exists in Schneider Electric GP-Pro EX. This is due to input validation errors when parsing project files. A remote attacker could exploit this vulnerability by enticing a user to open a specially crafted project file...

4.5AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/26 12:0 a.m.10 views

Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1065)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3AI score0.0641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/26 12:0 a.m.5 views

Adobe Acrobat and Reader Memory Corruption (APSB16-14: CVE-2016-1064)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted file...

10CVSS5.2AI score0.03716EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/26 12:0 a.m.7 views

Adobe Reader and Acrobat Memory Corruption (APSB16-26: CVE-2016-4203)

A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error while loading a PDF containing a malicious ttf font. A remote attacker may exploit this issue by enticing a target user to open a malicious PDF file with an affected version of Adobe Reader ...

10CVSS8.9AI score0.27116EPSS
Exploits3
Check Point Advisories
Check Point Advisories
added 2016/07/26 12:0 a.m.7 views

Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1060)

A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Reader and Acrobat while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...

10CVSS3.8AI score0.0641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/26 12:0 a.m.10 views

Adobe Acrobat and Reader JPEG codec Memory Corruption (APSB16-14: CVE-2016-1063)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a maliciously crafted PDF file with an embedded malformed JPEG. A remote attacker may exploit this vulnerability by enticing a target user to open a...

10CVSS4.1AI score0.05825EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/26 12:0 a.m.116 views

Command Injection Over HTTP (CVE-2019-9166; CVE-2021-43936; CVE-2022-1813; CVE-2022-24086; CVE-2022-24193; CVE-2022-26536; CVE-2022-32092; CVE-2022-37810; CVE-2022-40048)

A command Injection over HTTP vulnerability has been reported. A remote attacker can exploit this issue by sending a specially crafted request to the victim. Successful exploitation would allow an attacker to execute arbitrary code on the target machine...

10CVSS3.9AI score0.99199EPSS
Exploits18
Check Point Advisories
Check Point Advisories
added 2016/07/25 12:0 a.m.3 views

Adobe Reader and Acrobat Security Bypass (APSB16-26 : CVE-2016-4215)

This vulnerability is an instance of same-origin policy violation. An attacker can exploit this vulnerability by enticing a user to open a maliciously crafted PDF file. Successful exploitation can trick embedded JavaScript code to run in the wrong context, potentially leading to a security bypass...

10CVSS8.7AI score0.05728EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/25 12:0 a.m.11 views

Apache ActiveMQ Fileserver Multi Methods Directory Traversal (CVE-2016-3088)

A directory traversal vulnerability exists in Apache ActiveMQ. The vulnerability is due to insufficient input validation in the destination header when processing a MOVE request or in the file upload functionality when processing a PUT request. A remote, unauthenticated attacker may exploit this...

7.5CVSS3.6AI score0.98518EPSS
Exploits19
Check Point Advisories
Check Point Advisories
added 2016/07/25 12:0 a.m.10 views

Adobe Acrobat and Reader Memory Corruption (APSB16-15: CVE-2016-4255)

A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...

6.8CVSS3.8AI score0.05297EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/25 12:0 a.m.2 views

Drupal RESTWS Remote Code Execution

A code execution vulnerability exists in Drupal RESTful Web Services RESTWS Module. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

5.3AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/25 12:0 a.m.8 views

Adobe Acrobat and Reader Security Bypass (APSB16-14: CVE-2016-1041)

A security bypass vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a specially crafted PDF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted PDF file...

10CVSS5.1AI score0.06293EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/25 12:0 a.m.9 views

Adobe Acrobat and Reader Use-After-Free (APSB16-14: CVE-2016-1066)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3.2AI score0.0641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/25 12:0 a.m.15 views

Adobe Acrobat and Reader Memory Corruption (APSB16-14: CVE-2016-1067; CVE-2016-1068; CVE-2016-1069)

This vulnerability is an instance of a use after free vulnerability. A constraint for exploitation of this vulnerability is that the memory area of the freed object is reused by another object. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted...

10CVSS3.7AI score0.0641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/25 12:0 a.m.22 views

WordPress Core Authenticated Cross-Site Scripting (CVE-2016-1564)

A cross-site scripting vulnerability exists in WordPress core. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...

4.3CVSS5AI score0.02694EPSS
Exploits2
Check Point Advisories
Check Point Advisories
added 2016/07/25 12:0 a.m.11 views

Adobe Acrobat and Reader Security Bypass (APSB16-14: CVE-2016-1042)

A security bypass vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a specially crafted PDF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted PDF file...

10CVSS5.1AI score0.06293EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.4 views

Adobe Acrobat and Reader Memory Corruption (APSB16-26: CVE-2016-4208)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted file...

10CVSS5.2AI score0.17807EPSS
Exploits3
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.2 views

Adobe Acrobat and Reader Memory Corruption (APSB16-26 : CVE-2016-4252)

A memory corruption vulnerability exists in Adobe Reader. In particular, the vulnerability is triggered by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation. Attackers can exploit the vulnerability by using the out of bounds access for unintende...

10CVSS5.3AI score0.05038EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.4 views

Adobe Reader Memory Corruption (APSB16-26: CVE-2016-4251)

This vulnerability is an instance of a memory corruption vulnerability. In particular, the vulnerability is caused by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation exception. Attackers can exploit the vulnerability by enticing a victim to op...

10CVSS4.9AI score0.05556EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.3 views

Adobe Acrobat and Reader Memory Corruption (APSB16-26: CVE-2016-4207)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted file...

10CVSS5.2AI score0.17807EPSS
Exploits3
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.1 views

Malicious VBScript In HTML

A malicious Visual Basic Script VBS exists in an HTML-based web site. A remote attacker can exploit this issue by enticing a target user to open a specially crafted web page. Successful exploitation would allow an attacker to execute arbitrary code...

2.9AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.6 views

Adobe Acrobat and Reader Memory Corruption (APSB16-26 : CVE-2016-4205)

A memory corruption vulnerability exists in Adobe Reader. In particular, the vulnerability is trigger by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation. Attackers can exploit the vulnerability by using the out of bounds access for unintended...

10CVSS5.3AI score0.17807EPSS
Exploits3
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.5 views

Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1056)

A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...

10CVSS3.8AI score0.0641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.8 views

Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1055)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3AI score0.0641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.3 views

Adobe Acrobat and Reader Use After Free (APSB16-26: CVE-2016-4206)

A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error while handling a specially crafted PDF file that leads to out-of-bounds memory access. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted...

10CVSS3AI score0.17807EPSS
Exploits3
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.9 views

Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1057)

A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...

10CVSS3.8AI score0.06386EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.11 views

Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1059)

A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...

10CVSS3.8AI score0.0641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.4 views

Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1058)

A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...

10CVSS3.8AI score0.0641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/24 12:0 a.m.11 views

Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1054)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3AI score0.0641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/21 12:0 a.m.2 views

Adobe Acrobat and Reader Memory Corruption (APSB16-26: CVE-2016-4201)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is caused by a crafted PDF file which causes an out of bounds memory access, which sometimes triggers access violation exception. A remote attacker can exploit this vulnerability by enticing a target user to...

10CVSS4.8AI score0.20768EPSS
Exploits3
Check Point Advisories
Check Point Advisories
added 2016/07/21 12:0 a.m.2 views

Adobe Acrobat and Reader Memory Corruption (APSB16-26: CVE-2016-4197; CVE-2016-4198; CVE-2016-4199; CVE-2016-4200)

A memory corruption vulnerability exists in Adobe Reader and Acrobat. In particular, the vulnerability is caused by a crafted PDF file which causes an out of bounds memory access, which sometimes triggers access violation exception. A remote attacker may exploit this vulnerability by enticing a...

6.8CVSS4.6AI score0.04547EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/21 12:0 a.m.4 views

Adobe Reader Memory Corruption (APSB16-26: CVE-2016-4196; CVE-2016-4195; CVE-2016-4202)

A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted file...

6.8CVSS5AI score0.04547EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/21 12:0 a.m.7 views

Adobe Reader Use After Free (APSB16-14: CVE-2016-1049)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS2.9AI score0.0641EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/21 12:0 a.m.2 views

PayPal Suspicious URL Phishing Attempt

A mail phishing attack had been reported, attempting to obtain the victim's PayPal credentials. The attacker uses embedded redirection links in order to gain the victim's account information...

2.9AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/21 12:0 a.m.10 views

Adobe Acrobat And Reader Use After Free (APSB16-14: CVE-2016-1048)

A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...

10CVSS3AI score0.06386EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/20 12:0 a.m.4 views

Adobe Flash Player Heap Buffer Overflow (APSB16-25: CVE-2016-4249)

A heap buffer overflow vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

10CVSS4.3AI score0.07126EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/20 12:0 a.m.2 views

Adobe Acrobat and Reader Memory Corruption (APSB16-26 : CVE-2016-4192)

A memory corruption vulnerability exists in Adobe Reader. In particular, the vulnerability is trigger by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation. Attackers can exploit the vulnerability by using the out of bounds access for unintended...

10CVSS5.3AI score0.04844EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/20 12:0 a.m.4 views

Adobe Reader Out of Bounds Memory Access (APSB16-26: CVE-2016-4191)

This vulnerability is an instance of a memory corruption vulnerability. In particular, the vulnerability is caused by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation exception. Attackers can exploit the vulnerability by using the out of bounds...

10CVSS3.2AI score0.04844EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2016/07/19 12:0 a.m.1 views

WordPress Download Manager Plugin Remote Command Execution

A Remote command execution vulnerability exists in WordPress Download Manager Plugin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

5.4AI score
Exploits0
Total number of security vulnerabilities13538