13538 matches found
Adobe Flash Player Use After Free Code Execution (APSB16-04: CVE-2016-0983)
A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially craft...
Adobe Flash Player Use After Free Code Execution (APSB16-04: CVE-2016-0982)
A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially craft...
Adobe Flash Player Use After Free Code Execution (APSB16-04: CVE-2016-0984)
A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially craft...
Adobe Flash Player Type Confusion (APSB16-04: CVE-2016-0985)
A type confusion vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted SWF file with an...
Adobe Flash Player Integer Overflow (APSB16-04: CVE-2016-0978)
A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to a design flaw that could lead to integer overflow. A remote attacker can exploit this vulnerability by enticing a victim to open specially crafted SWF files...
Adobe Flash Player Memory Corruption (APSB16-04: CVE-2016-0979)
A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Unitronics VisiLogic OPLC IDE vlp File Parsing Heap Buffer Overflow (CVE-2015-7939)
A heap buffer overflow vulnerability exists in Unitronics VisiLogic OPLC IDE. The vulnerability is due to errors parsing VisiLogic project files. A remote attacker could exploit this vulnerability by enticing a vulnerable user to open a crafted web page or file. Successful exploitation could lead...
Adobe Flash Player Memory Corruption (APSB16-04: CVE-2016-0964)
A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Adobe Flash Player Memory Corruption (APSB16-04: CVE-2016-0965)
A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Adobe Flash Player Heap Buffer Overflow (APSB16-04: CVE-2016-0971)
This vulnerability is an instance of a heap overflow vulnerability. The vulnerability is caused by a corrupted SWF file storing compressed textures in Adobe Texture Format ATF which can trigger violation exception. Successful exploitation could lead to arbitrary code execution...
Adobe Flash Player Memory Corruption (APSB16-04: CVE-2016-0967)
A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Adobe Flash Player Memory Corruption (APSB16-04: CVE-2016-0966)
A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Adobe Flash Player Use After Free Code Execution (APSB16-04: CVE-2016-0975)
A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially craft...
Adobe Flash Player Use After Free Code Execution (APSB16-04: CVE-2016-0959)
A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially craft...
Adobe Flash Player Use After Free Code Execution (APSB16-04: CVE-2016-0973)
A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially craft...
Adobe Flash Player Use After Free Code Execution (APSB16-04: CVE-2016-0974)
A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially craft...
Adobe Flash Player Memory Corruption (APSB16-04: CVE-2016-0969)
A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Adobe Flash Player Integer Overflow Remote Code Execution (APSB16-04: CVE-2016-0976)
A remote code execution vulnerability has been reported in Adobe Flash Player. The vulnerability is due to a design flaw that could lead to integer overflow. A remote attacker can exploit this vulnerability by enticing a victim to open specially crafted SWF files...
Adobe Flash Player Memory Corruption (APSB16-04: CVE-2016-0968)
A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Adobe Flash Player Memory Corruption (APSB16-04: CVE-2016-0970)
A memory corruption vulnerability has been reported in Adobe Flash Player. The vulnerability is caused by malformed parameters of a video encoding in a flv video file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file that could lead to arbitrary code...
WordPress Newsletter Pro Plugin Open Redirect
The Newsletter Plugin for WordPress contains a flaw that allows a remote cross-site redirection attack. This could allow a user to create a specially crafted URL, that if clicked, would redirect a victim from the intended legitimate web site to an arbitrary web site of the attacker's choosing...
Web Servers Containing Suspicious JavaScript Downloader
An attacker might upload a malicious JavaScript downloader to a web server, and then entice a target victim to access a specially crafted web page, thereby triggering the download of malware...
Adobe Reader and Acrobat cooltype.dll Code Execution (APSB16-02: CVE-2016-0945)
A code execution vulnerability has been discovered in Adobe Reader and Acrobat. The vulnerability is due to the cooltype.dll component of Adobe Reader and Acrobat. A remote attacker might exploit this issue by convincing a victim to open a specially crafted PDF file...
Microsoft Office Memory Corruption (MS16-015: CVE-2016-0052)
A remote code execution vulnerability exists in Microsoft Office. The vulnerability is due to an error in the way Microsoft Office improperly handles objects in memory while parsing specially crafted files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted...
Microsoft Office Memory Corruption (MS16-015: CVE-2016-0054)
A remote code execution vulnerability exists in Microsoft Office. The vulnerability is due to an error in the way Microsoft Office improperly handles objects in memory while parsing specially crafted files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted...
Microsoft Internet Explorer Information Disclosure (MS16-009: CVE-2016-0059)
An information disclosure vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way that Hyperlink Object Library discloses the contents of its memory. A remote attacker can exploit this issue by enticing a user to open a specially crafted...
Microsoft Office Memory Corruption (MS16-015: CVE-2016-0056)
A remote code execution vulnerability exists in Microsoft Office. The vulnerability is due to an error in the way Microsoft Office improperly handles objects in memory while parsing specially crafted files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted...
Microsoft Office Memory Corruption (MS16-015: CVE-2016-0055)
A remote code execution vulnerability has been identified in Microsoft PowerPoint. The vulnerability is due to improper dereferencing of pointers when handling certain objects. A remote attacker could trigger this flaw by convincing a victim to open a malicious PowerPoint file that will lead to a...
Microsoft Windows Journal File Parsing Invalid Reference (MS16-013: CVE-2016-0038)
A remote code execution vulnerability has been reported in Microsoft Windows Journal. The vulnerability is due to the way Windows Journal resets a previously released object. Successful exploitation of this problem could allow malicious users to send a specially crafted .jnt file to a victim to...
Microsoft .NET Framework Denial of Service (MS16-019: CVE-2016-0033)
A Denial of Service vulnerability has been reported in the Microsoft .Net Framework. The vulnerability is due to an error in the way that Microsoft .Net Framework handles XSLT parsing component. A remote attacker could exploit this vulnerability by sending specially crafted data to the target...
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0067)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...
Microsoft Windows PDF Library Buffer Overflow (MS16-012; CVE-2016-0058)
A buffer overflow vulnerability exists in Microsoft Windows PDF Library. The vulnerability is due to improper handling of application programming interface API calls. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file...
Microsoft Windows DLL Loading Remote Code Execution (MS16-014: CVE-2016-0042)
A remote code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to the way Windows improperly validates input before loading libraries. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted file...
Microsoft Windows DLL Loading Remote Code Execution (MS16-014: CVE-2016-0041)
A remote code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to the way Windows improperly validates input before loading libraries. A remote attacker could exploit this vulnerability by enticing a target user to open a specially crafted file...
Microsoft Windows Reader Remote Code Execution (MS16-012; CVE-2016-0046)
A remote code execution vulnerability exists in Microsoft Windows. The vulnerability is caused when a specially crafted file is opened in Windows Reader. A remote attacker can exploit this issue by enticing a user to open a specially crafted Windows Reader file...
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0072)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0062)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...
Oracle Application Testing Suite UploadServlet filename Directory Traversal (CVE-2016-0490)
A directory path traversal vulnerability exists in Oracle's Application Testing Suite. The vulnerability is due to insufficient input validation while processing the HTTP request header filename. A remote unauthenticated attacker can exploit this vulnerability by sending a malicious request to th...
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0064)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0060)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...
Microsoft Edge ASLR Bypass (MS16-011: CVE-2016-0080)
An ASLR bypass vulnerability exists in Microsoft Edge. A remote attacker could exploit this issue by convincing target users to view a web page containing malicious JavaScript code with an effected version of Microsoft Edge. Successful exploitation could allow an attacker to gain the same user...
Microsoft Windows Elevation of Privilege (MS16-014: CVE-2016-0040)
An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is due to an error in the way windows kernel verifies memory address. A remote attacker can exploit this vulnerability by enticing a user to run a specially crafted code...
Microsoft Windows Win32k Elevation of Privilege (MS16-018: CVE-2016-0048)
An elevation of privilege vulnerability exists in the Windows Kernel. The vulnerability is caused when Microsoft Windows improperly validates permissions under specific conditions. A remote attacker can exploit this vulnerability by running a specially crafted application...
Microsoft Internet Explorer Elevation of Privilege (MS16-009: CVE-2016-0068)
An elevation of privilege vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer validates permissions under specific conditions, potentially allowing script to be run with elevated privileges...
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0071)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...
Microsoft Office Memory Corruption (MS16-015: CVE-2016-0022)
A remote code execution vulnerability exists in Microsoft Office. The vulnerability is due to an error in the way Microsoft Office improperly handles objects in memory while parsing specially crafted files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted...
Microsoft Office Memory Corruption (MS16-015: CVE-2016-0053)
A remote code execution vulnerability exists in Microsoft Office. The vulnerability is due to an error in the way Microsoft Office improperly handles objects in memory while parsing specially crafted files. A remote attacker can exploit this issue by enticing a victim to open a specially crafted...
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0063)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...
Microsoft Internet Explorer Memory Corruption (MS16-009: CVE-2016-0061)
A memory corruption vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...
Apple IOS PDF Reader Parsing Memory Corruption (CVE-2014-4377)
A memory corruption vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to incorrect memory buffer allocation while parsing a corrupted PDF file. A remote attacker may exploit this vulnerability by enticing a target user to open a specially crafted PDF file...