Lucene search
K
Checkpoint AdvisoriesRecent

13538 matches found

Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•6 views

Mambo Gallery Manager help.mgm.php mosConfig_absolute_path Parameter PHP Code Execution - Ver2 (CVE-2006-3980)

A code execution vulnerability has been reported in Mambo Gallery Manager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5AI score0.06135EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•6 views

Microsoft PowerPoint Malformed Record Memory Corruption - Ver2 (CVE-2006-0022)

A memory corruption vulnerability has been reported in Microsoft PowerPoint. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.6CVSS7.2AI score0.14537EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•10 views

Microsoft WordPad Converter sprm Record Parsing Code Execution - Ver2 (CVE-2011-0028)

A code execution vulnerability has been reported in Microsoft WordPad. The vulnerability is due to an error in the WordPad converter that fails to correctly parse the sprmTTextFlow and the sprmTSplit fields in a Word document. Successful exploitation of this vulnerability could allow a remote...

7.4AI score0.23596EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•9 views

Microsoft Windows MSCOMCTL.OCX ActiveX Control Remote Code Execution - Ver2 (CVE-2012-0158)

A code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to insufficient boundary check in the MSCOMCTL ActiveX control. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS8AI score0.99966EPSS
Exploits12
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•11 views

Realplayer vidplin.dll AVI Header Parsing Code Execution - Ver2 (CVE-2010-4393)

RealPlayer is a media player developed by RealNetworks Inc. It is capable of playing back numerous formats of multimedia files. AVI Audio Video Interleave is one of the video formats that is supported by RealPlayer. This file format links the audio part and the video part together and can be...

9.3CVSS7.5AI score0.07448EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•13 views

PhpBB viewtopic.php URL Decoding Code Execution - Ver2 (CVE-2004-1315)

A code execution vulnerability has been reported in phpBB. The vulnerability is due to lack of input validation on the highlight parameter supplied to viewtopic. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause...

7.5CVSS7.5AI score0.72096EPSS
Exploits11
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•15 views

Microsoft Excel Corrupted Table Records Code Execution (MS10-080) - Ver2 (CVE-2010-3232)

Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. A memory corruption vulnerability has been identified in Microsoft...

9.3CVSS6.7AI score0.21413EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•20 views

Cisco WebEx UCF atucfobj.dll ActiveX NewObject Buffer Overflow - Ver2 (CVE-2008-3558)

A buffer overflow vulnerability has been reported in Cisco Webex Meeting Manager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

7.5AI score0.65391EPSS
Exploits8
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•11 views

Microsoft Office Drawing Shape Group Properties Buffer Overflow (MS10-003) - Ver2 (CVE-2010-0243)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been reported in the way Microsoft Office handles specially crafted Excel files. The vulnerability is due to a memory corruption error in Microsoft Office when loading malformed Excel records. A remote...

9.3CVSS7.3AI score0.23625EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•5 views

Samba Trans2 Open2 Buffer Overflow - Ver2 (CVE-2003-0201)

A buffer overflow vulnerability has been reported in Samba. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

7.5AI score0.84502EPSS
Exploits23
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•20 views

Microsoft Internet Explorer HTML Object Memory Corruption Vulnerability Use After Free - Ver2 (CVE-2010-0249)

An use-after-free vulnerability has been reported in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

3.4AI score0.91885EPSS
Exploits16
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•9 views

Microsoft Excel WOpt Record Memory Corruption - Ver2 (CVE-2010-0824)

A memory corruption inclusion vulnerability has been reported in Microsoft Office Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the Excel spreadsheet file format. Successful exploitation of this vulnerability could allow a remote attacker to...

7.1AI score0.22392EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•6 views

BakBone NetVault Remote Heap Overflow - Ver2 (CVE-2005-1547)

A buffer overflow vulnerability has been reported in Bakbone Netvault. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

7.5CVSS7.6AI score0.03001EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•38 views

Mozilla Firefox JIT escape Function Memory Corruption - Ver2 (CVE-2009-2477)

Mozilla Firefox is a web browser developed by Mozilla Foundation. The browser is capable of interpreting and rendering many types of content published on the Internet, including various versions of HTML, XML, XUL, JavaScript, and various graphic formats, and so on. The browser runs on Windows,...

9.3CVSS9.4AI score0.42689EPSS
Exploits9
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•9 views

Microsoft Publisher Invalid Pointer Code Execution - Ver2 (CVE-2011-3411)

A code execution inclusion vulnerability has been reported in Microsoft Office Publisher. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.4AI score0.27634EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•17 views

Realplayer vidplin.dll AVI Header Parsing Code Execution - Ver2 (CVE-2010-4393)

RealPlayer is a media player developed by RealNetworks Inc. It is capable of playing back numerous formats of multimedia files. AVI Audio Video Interleave is one of the video formats that is supported by RealPlayer. This file format links the audio part and the video part together and can be...

9.3CVSS7.5AI score0.07448EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•18 views

Microsoft Windows ShellExecute and IE7 URL Handling Code Execution (MS07-061) - Ver2 (CVE-2007-3896)

Microsoft Internet Explorer is the most widely used Internet browser. A remote code execution vulnerability has been reported in Microsoft Windows Internet Explorer 7. The vulnerability occurs when Windows does not correctly handle specially crafted URLs or URIs that are passed to it. There are a...

9.3CVSS7.2AI score0.53831EPSS
Exploits7
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•6 views

Oracle Java java.awt.image.ByteComponentRaster Memory Corruption - Ver2 (CVE-2013-2473)

A memory corruption vulnerability has been reported in Oracle Java Runtime. The vulnerability is due to a memory corruption error in the ByteComponentRaster class from jre/bin/awt. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affecte...

7.2AI score0.07437EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•22 views

Microsoft Excel TXO and OBJ Records Parsing Memory Corruption (MS08-074) - Ver2 (CVE-2009-0100)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been identified in the Microsoft Excel. The vulnerability is due to a memory corruption error in Microsoft Excel when loading Excel records. An attacker can exploit this flaw to execute arbitrary code ...

9.3CVSS7.7AI score0.29043EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•19 views

Microsoft Word TextBox Sub-document Memory Corruption - Ver2 (CVE-2007-1910)

A memory corruption vulnerability has been reported in Microsoft Office Word. The vulnerability is due to improper validation of a supplied value inside the Main Stream. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.2AI score0.24949EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•5 views

UTorrent announce Buffer Overflow - Ver2 (CVE-2007-0927)

A buffer overflow vulnerability has been reported in Utorrent. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

5.4AI score0.44732EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•23 views

Lenovo Veriface III Plain Image Authentication Bypass - Ver2 (CVE-2009-0655)

An authentication bypass vulnerability has been reported in Lenovo Veriface III. Successful exploitation of this vulnerability could allow a remote attacker to bypass login authentication and gain unauthorized access to the vulnerable system...

6.8AI score0.00397EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•6 views

Internet Explorer Mishandled OBJECT Type Attribute Buffer Overflow - Ver2 (CVE-2003-0344)

A buffer overflow vulnerability has been reported in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

7.5CVSS7.4AI score0.81307EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•26 views

Apple Quicktime RTSP URL Buffer Overflow - Ver2 (CVE-2007-0015)

Apple QuickTime is a multimedia player that supports a wide range of media formats. The software supports parsing and displaying still image files as well as numerous audio and video formats. It also provides libraries and plugins for other applications, such as browsers, to read QuickTime media...

6.8CVSS7.8AI score0.48419EPSS
Exploits10
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•8 views

Microsoft Windows 2000 Troubleshooter ActiveX Control Buffer Overflow - Ver2 (CVE-2003-0662)

A buffer overflow vulnerability has been reported in Microsoft Windows 2000. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

7.5AI score0.33889EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•18 views

Microsoft RPCSS DCOM Interface Privilege Escalation - Ver2 (CVE-2003-0605)

A privilege escalation vulnerability has been reported in Microsoft Windows 2000. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...

7.5CVSS6.7AI score0.60799EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•15 views

Microsoft Word Smart Tags Code Execution (MS06-027) - Ver2 (CVE-2006-2492)

A code execution vulnerability exists in Microsoft Office Word software. The vulnerability is due to insufficient validation of certain fields related to the Smart Tags in a Word document. An attacker may exploit this vulnerability by enticing a user to open a crafted Word file, which may result ...

7.6CVSS7.1AI score0.48387EPSS
Exploits2
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•20 views

PoPToP PPTP Negative Read Overflow Buffer Overflow - Ver2 (CVE-2003-0213)

A buffer overflow vulnerability has been reported in Poptop Pptp Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

7.5AI score0.71026EPSS
Exploits7
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•9 views

Microsoft Access ACCDB Memory Corruption - Ver2 (CVE-2013-3155)

A code execution vulnerability has been reported in Microsoft Access. The vulnerability is due to an error in the way that Microsoft Access parses ACCDB files. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.3AI score0.20184EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•17 views

Microsoft Windows Compressed Folder Exploit Download Code Execution - Ver2 (CVE-2004-0575)

A code execution vulnerability has been reported in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.3AI score0.603EPSS
Exploits4
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•22 views

Adobe Flash Player for Linux ActionScript ASnative Command Execution - Ver2 (CVE-2008-5499)

A command execution vulnerability has been reported in Adobe Flash Player. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...

7.2AI score0.79426EPSS
Exploits11
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•16 views

Microsoft SharePoint Callback Function Elevation of Privilege (MS13-024) - Ver2 (CVE-2013-0080)

An information disclosure and elevation of privilege vulnerability has been reported in Microsoft SharePoint. The vulnerability is due to an error in the way Microsoft SharePoint handles specially crafted URLs containing malicious JavaScript elements. A remote attacker may exploit this issue by...

7.5CVSS5.8AI score0.1929EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•3 views

GIMP XWD File Handling Stack Buffer Overflow - Ver2 (CVE-2012-5576)

A buffer overflow vulnerability has been reported in GNU Image Manipulation Program GIMP. The vulnerability is due to insufficient validation of certain fields while parsing XWD files. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the...

7.5AI score0.06813EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•8 views

Microsoft GDI+ Office Excel Art Parsing Memory Corruption (MS09-062) - Ver2 (CVE-2009-2528)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been discovered in the way that GDI+ parses Microsoft Office Art in Excel files.The vulnerability is due to an error in the code responsible for parsing Office Art Property Tables that allows an attack...

9.3CVSS7.5AI score0.20452EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•4 views

IBiz EBanking Integrator WriteOFXDataFile Method Arbitrary File Overwrite - Ver2 (CVE-2008-1725)

A file overwrite vulnerability has been reported in Nsoftware Ibiz E-banking Integrator. An attacker could exploit this vulnerability via a full pathname in the argument. Successful exploitation of this vulnerability would allow a remote attacker to overwrite arbitrary files on the vulnerable...

7AI score0.02901EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•13 views

Microsoft Windows Signature Validation Remote Code Execution - Ver2 (CVE-2012-0151)

A code execution vulnerability has been reported in Windows Authenticode Signature Verification function used for portable executable PE files. The vulnerability is due to an error in the way the Authenticode Signature Verification function validates the file digest of a specially crafted PE file...

4.2AI score0.8878EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•21 views

Microsoft Excel RealTimeData Record Stack Buffer Overflow - Ver2 (CVE-2010-1246)

A buffer overflow vulnerability has been reported in Microsoft Office Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the Excel spreadsheet file format. Successful exploitation of this vulnerability could allow a remote attacker to execute...

7.4AI score0.24669EPSS
Exploits9
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•11 views

Microsoft Excel Buffer Overrun in ToolbarDef Buffer Overflow - Ver2 (CVE-2011-0097)

A buffer overflow vulnerability has been reported in Microsoft Excel. An attacker could exploit this vulnerability a crafted 400h substream in an Excel file, which triggers a stack-based buffer overflow. Successful exploitation of this vulnerability could allow a remote attacker to execute...

7.4AI score0.38221EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•24 views

Microsoft Office Property Memory Corruption - Ver2 (CVE-2006-2389)

A memory corruption vulnerability has been reported in Microsoft Office. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

5.5AI score0.38839EPSS
Exploits6
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•24 views

Microsoft Excel REPT Function Integer Overflow (MS08-057) - Ver2 (CVE-2008-4019)

Microsoft Excel is a popular spreadsheet application that is usually released as part of the Microsoft Office suite. The application can create complex spreadsheets with multiple workbooks, formula, and various data sources. The common extension used for Microsoft Excel documents is .xls, .xlsx a...

9.3CVSS7.5AI score0.34415EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•74 views

Microsoft Windows Assembly Execution File Inclusion - Ver2 (CVE-2012-0013)

A file inclusion vulnerability has been reported in Microsoft Office. The vulnerability is due to ClickOnce application file types not being included in the Windows Packager unsafe file type list. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary cod...

7AI score0.73753EPSS
Exploits14
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•11 views

FreeBSD SNMP getBulkRequest bsnmpd Stack Buffer Overflow - Ver2 (CVE-2014-1452)

A buffer overflow vulnerability has been reported in FreeBSD SNMP. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

5.8CVSS7.5AI score0.01894EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•29 views

Apple Quicktime RTSP URL Buffer Overflow - Ver2 (CVE-2007-0015)

A buffer overflow vulnerability has been reported in Apple QuickTime. The vulnerability is due to lack of boundary checks when processing the "rtsp://" URLs. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause...

7.5AI score0.48419EPSS
Exploits10
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•14 views

Cisco IOS Server HTTP Interface Cross Site Scripting - Ver2 (CVE-2005-3921)

A cross-site scripting vulnerability has been reported in Cisco Ios. An attacker could exploit this vulnerability an HTTP interface to the contents of memory buffers. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...

2.6CVSS5.7AI score0.0276EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•21 views

Google Android Vold Volume Manager Integer Wrap Root Exploit Privilege Escalation - Ver2 (CVE-2011-1823)

A privilege escalation vulnerability has been reported in Google Android Operating System. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...

7.2CVSS6.7AI score0.41634EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•15 views

Microsoft PowerPoint Converter CoCollection Record Handling Error (MS09-017) - Ver2 (CVE-2009-0226)

Microsoft PowerPoint is a popular graphics software for preparing slides and presentations. A remote code execution vulnerability has been identified in Microsoft PowerPoint. The vulnerability is due to a memory corruption error in Microsoft PowerPoint when reading sound data from specially craft...

9.3CVSS7.3AI score0.34794EPSS
Exploits5
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•28 views

Microsoft IIS nsiilog.dll ISAPI Overflow Buffer Overflow - Ver2 (CVE-2003-0349)

A buffer overflow vulnerability has been reported in Microsoft IIS. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

5.4AI score0.82542EPSS
Exploits6
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•13 views

Microsoft Office Excel Index Parsing Pointer Corruption Code Execution - Ver2 (CVE-2009-3132)

A code execution vulnerability has been reported in Microsoft Office Excel. The vulnerability is due to an error in Microsoft Office Excel that fails to properly parse the Excel spreadsheet file format. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitra...

7.3AI score0.25883EPSS
Exploits0
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•20 views

Microsoft Office PICT Filter Map Structure Memory Corruption - Ver2 (CVE-2008-3021)

A memory corruption vulnerability has been reported in Microsoft Office. The vulnerability is due to a memory corruption error when a malformed PICT file is opened by any of the affected Microsoft Office applications. Successful exploitation of this vulnerability could allow a remote attacker to...

7.2AI score0.35905EPSS
Exploits1
Check Point Advisories
Check Point Advisories
•added 2014/04/16 12:0 a.m.•15 views

Microsoft Windows Common Controls OLE Remote Code Execution - Ver2 (CVE-2013-1313)

A code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in the way that OLE Automation parses a specially crafted file. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.3AI score0.22701EPSS
Exploits0
Total number of security vulnerabilities13538