13538 matches found
Microsoft Windows Graphics Component Remote Code Execution (MS16-097: CVE-2016-3301; CVE-2016-3303)
A memory corruption vulnerability exists in Microsoft Windows GDI . The vulnerability is due to integer overflow vulnerability founded in the GDI shared library. An attacker can exploits this vulnerability in various ways through an .emf file...
Snort Back Orifice BOPing - ver 2 (CVE-1999-0660)
BOPing is a network scanner for computers where the Back Orifice remote administration program is installed. Use of this scanner might be a preliminary step before attempting to take control over the system using the Back Orifice program.This protection detects and blocks use of the BOPing scanne...
MongoDB phpMoAdmin Unauthenticated Remote Code Execution (CVE-2015-2208)
A remote code execution vulnerability exists in MongoDB administration tool for PHP. The vulnerability is due to insufficient validation of user supplied input when processing HTTP requests. A remote authenticated attacker could exploit this vulnerability by sending a malicious request...
PHP7 Unserialization Use After Free
A Use-After-Free vulnerability exists in the Standard PHP library's unserializion of array objects, due to an internal array self-reference. An attacker could exploit this vulnerability by supplying crafted input to a PHP application. Successful exploitation may result in remote execution of...
Suspicious Image Attachment In Phishing Mail
Mail messages containing suspicious image file attachments were observed as part of various phishing campaigns. An attacker may use such phishing messages to entice users to disclose sensitive information such as usernames, passwords, and credit card details...
Generic DVR Default Credentials Login Attempt
An attacker may attempt to gain access to the system by trying to log in using the default passwords, eventually finding the correct one. Successful exploitation may result in an unauthorized access...
WordPress All In One WP Security and Firewall Plugin Login CAPTCHA Bypass
The login CAPTCHA provided by the WordPress All In One WP Security and Firewall Plugin can be circumvented, allowing attackers to automate login attempts when the CAPTCHA is enabled...
Centreon Web Useralias Remote Command Execution
A Remote command execution vulnerability exists in Centreon Web Interface. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Apache Commons FileUpload Denial Of Service (CVE-2016-3092)
A denial of service vulnerability exists in Apache Commons FileUpload. A remote, unauthenticated attacker could exploit this vulnerability by sending a file upload request to the affected system. Successful attack can result in a denial of service condition...
Adobe Acrobat and Reader Memory Corruption (APSB16-14: CVE-2016-1071)
A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...
Adobe Acrobat and Reader Memory Corruption (APSB16-14: CVE-2016-1085)
This vulnerability is an instance of a memory corruption vulnerability. In particular, the vulnerability is triggered by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation exception. Attackers can exploit the vulnerability by using the out of...
Schneider Electric GP-Pro EX ParseAPI Heap Buffer Overflow
A heap buffer overflow vulnerability exists in Schneider Electric GP-Pro EX. This is due to input validation errors when parsing project files. A remote attacker could exploit this vulnerability by enticing a user to open a specially crafted project file...
Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1065)
A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...
Adobe Acrobat and Reader Memory Corruption (APSB16-14: CVE-2016-1064)
A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted file...
Adobe Reader and Acrobat Memory Corruption (APSB16-26: CVE-2016-4203)
A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error while loading a PDF containing a malicious ttf font. A remote attacker may exploit this issue by enticing a target user to open a malicious PDF file with an affected version of Adobe Reader ...
Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1060)
A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Reader and Acrobat while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...
Adobe Acrobat and Reader JPEG codec Memory Corruption (APSB16-14: CVE-2016-1063)
A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a maliciously crafted PDF file with an embedded malformed JPEG. A remote attacker may exploit this vulnerability by enticing a target user to open a...
Command Injection Over HTTP (CVE-2019-9166; CVE-2021-43936; CVE-2022-1813; CVE-2022-24086; CVE-2022-24193; CVE-2022-26536; CVE-2022-32092; CVE-2022-37810; CVE-2022-40048)
A command Injection over HTTP vulnerability has been reported. A remote attacker can exploit this issue by sending a specially crafted request to the victim. Successful exploitation would allow an attacker to execute arbitrary code on the target machine...
Adobe Reader and Acrobat Security Bypass (APSB16-26 : CVE-2016-4215)
This vulnerability is an instance of same-origin policy violation. An attacker can exploit this vulnerability by enticing a user to open a maliciously crafted PDF file. Successful exploitation can trick embedded JavaScript code to run in the wrong context, potentially leading to a security bypass...
Apache ActiveMQ Fileserver Multi Methods Directory Traversal (CVE-2016-3088)
A directory traversal vulnerability exists in Apache ActiveMQ. The vulnerability is due to insufficient input validation in the destination header when processing a MOVE request or in the file upload functionality when processing a PUT request. A remote, unauthenticated attacker may exploit this...
Adobe Acrobat and Reader Memory Corruption (APSB16-15: CVE-2016-4255)
A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...
Drupal RESTWS Remote Code Execution
A code execution vulnerability exists in Drupal RESTful Web Services RESTWS Module. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Acrobat and Reader Security Bypass (APSB16-14: CVE-2016-1041)
A security bypass vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a specially crafted PDF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted PDF file...
Adobe Acrobat and Reader Use-After-Free (APSB16-14: CVE-2016-1066)
A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...
Adobe Acrobat and Reader Memory Corruption (APSB16-14: CVE-2016-1067; CVE-2016-1068; CVE-2016-1069)
This vulnerability is an instance of a use after free vulnerability. A constraint for exploitation of this vulnerability is that the memory area of the freed object is reused by another object. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted...
WordPress Core Authenticated Cross-Site Scripting (CVE-2016-1564)
A cross-site scripting vulnerability exists in WordPress core. Successful exploitation of this vulnerability would allow remote attackers to inject an arbitrary web script into the affected system...
Adobe Acrobat and Reader Security Bypass (APSB16-14: CVE-2016-1042)
A security bypass vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a specially crafted PDF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted PDF file...
Adobe Acrobat and Reader Memory Corruption (APSB16-26: CVE-2016-4208)
A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted file...
Adobe Acrobat and Reader Memory Corruption (APSB16-26 : CVE-2016-4252)
A memory corruption vulnerability exists in Adobe Reader. In particular, the vulnerability is triggered by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation. Attackers can exploit the vulnerability by using the out of bounds access for unintende...
Adobe Reader Memory Corruption (APSB16-26: CVE-2016-4251)
This vulnerability is an instance of a memory corruption vulnerability. In particular, the vulnerability is caused by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation exception. Attackers can exploit the vulnerability by enticing a victim to op...
Adobe Acrobat and Reader Memory Corruption (APSB16-26: CVE-2016-4207)
A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted file...
Malicious VBScript In HTML
A malicious Visual Basic Script VBS exists in an HTML-based web site. A remote attacker can exploit this issue by enticing a target user to open a specially crafted web page. Successful exploitation would allow an attacker to execute arbitrary code...
Adobe Acrobat and Reader Memory Corruption (APSB16-26 : CVE-2016-4205)
A memory corruption vulnerability exists in Adobe Reader. In particular, the vulnerability is trigger by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation. Attackers can exploit the vulnerability by using the out of bounds access for unintended...
Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1056)
A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...
Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1055)
A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...
Adobe Acrobat and Reader Use After Free (APSB16-26: CVE-2016-4206)
A memory corruption vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error while handling a specially crafted PDF file that leads to out-of-bounds memory access. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted...
Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1057)
A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...
Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1059)
A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...
Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1058)
A remote code execution vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to a use-after-free error in Adobe Acrobat and Reader while handling a specially crafted PDF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially...
Adobe Acrobat and Reader Use After Free (APSB16-14: CVE-2016-1054)
A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...
Adobe Acrobat and Reader Memory Corruption (APSB16-26: CVE-2016-4201)
A memory corruption vulnerability exists in Adobe Reader and Acrobat. The vulnerability is caused by a crafted PDF file which causes an out of bounds memory access, which sometimes triggers access violation exception. A remote attacker can exploit this vulnerability by enticing a target user to...
Adobe Acrobat and Reader Memory Corruption (APSB16-26: CVE-2016-4197; CVE-2016-4198; CVE-2016-4199; CVE-2016-4200)
A memory corruption vulnerability exists in Adobe Reader and Acrobat. In particular, the vulnerability is caused by a crafted PDF file which causes an out of bounds memory access, which sometimes triggers access violation exception. A remote attacker may exploit this vulnerability by enticing a...
Adobe Reader Memory Corruption (APSB16-26: CVE-2016-4196; CVE-2016-4195; CVE-2016-4202)
A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to an error in Adobe Reader and Acrobat while parsing a corrupted file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted file...
Adobe Reader Use After Free (APSB16-14: CVE-2016-1049)
A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...
PayPal Suspicious URL Phishing Attempt
A mail phishing attack had been reported, attempting to obtain the victim's PayPal credentials. The attacker uses embedded redirection links in order to gain the victim's account information...
Adobe Acrobat And Reader Use After Free (APSB16-14: CVE-2016-1048)
A use after free vulnerability exists in Adobe Acrobat and Reader. The vulnerability is due to an error in the way Adobe Acrobat and Reader handles objects in memory. A remote attacker can exploit this vulnerability by enticing the user to open a specially crafted PDF file...
Adobe Flash Player Heap Buffer Overflow (APSB16-25: CVE-2016-4249)
A heap buffer overflow vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...
Adobe Acrobat and Reader Memory Corruption (APSB16-26 : CVE-2016-4192)
A memory corruption vulnerability exists in Adobe Reader. In particular, the vulnerability is trigger by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation. Attackers can exploit the vulnerability by using the out of bounds access for unintended...
Adobe Reader Out of Bounds Memory Access (APSB16-26: CVE-2016-4191)
This vulnerability is an instance of a memory corruption vulnerability. In particular, the vulnerability is caused by a crafted PDF file which causes an out of bounds memory access, which can trigger an access violation exception. Attackers can exploit the vulnerability by using the out of bounds...
WordPress Download Manager Plugin Remote Command Execution
A Remote command execution vulnerability exists in WordPress Download Manager Plugin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...