13538 matches found
Pseudo DarkLeech Exploit Kits Traffic Distribution System
Pseudo DarkLeech Traffic Distribution System TDS operates by silently redirecting the victim to a malicious web page, leading to infection by an exploit kit. Successful infection will allow the attacker to download additional malware to the target...
RoughTED Exploit Kits Traffic Distribution System
RoughTED Traffic Distribution System TDS operates by silently redirecting the victim to a malicious web page, leading to infection by an exploit kit. Successful infection will allow the attacker to download additional malware to the target...
Seamless Exploit Kits Traffic Distribution System
Seamless Traffic Distribution System TDS operates by silently redirecting the victim to a malicious web page, leading to infection by an exploit kit. Successful infection will allow the attacker to download additional malware to the target...
HPE Intelligent Management Center dbman FileTrans Arbitrary File Write (CVE-2017-5822)
An arbitrary file write vulnerability has been reported in the dbman component of HPE Intelligent Management Center. The vulnerability is due to lack of authentication on FileTrans commands, used to transfer files to the host running dbman. A remote, unauthenticated attacker can exploit the...
Schneider Electric U.motion Builder loadtemplate.php SQL Injection (CVE-2017-7973)
An SQL injection vulnerability exists in Schneider Electric U.motion Builder. The vulnerability is due to insufficient validation of the tpl HTTP parameter of the loadtemplate.php request. A remote, unauthenticated user can exploit this vulnerability by sending a crafted HTTP request to the...
Microsoft Windows SMB Server SMBv1 Information Disclosure (CVE-2017-0271)
An information disclosure vulnerability exists in the SMB Server component of Microsoft Windows. The vulnerability is due to improper handling of SMBv1 requests. A remote, unauthenticated attacker could exploit the vulnerability by sending a crafted request to a target SMB server...
Mozilla Firefox WebGL Integer Overflow (CVE-2017-5459)
A memory corruption vulnerability exists in WebGL components of Mozilla Firefox. The vulnerability is due to an integer overflow in Intersect function while calculating destination frame buffer width and height. A remote attacker could exploit this vulnerability by enticing a user to open a...
VideoLan VLC Media Player ParseJSS Heap Buffer Overflow (CVE-2017-8311)
A heap-based buffer overflow exists in VLC Media Player. The vulnerability is due to improper handling of certain directives in JACOsub subtitle files. A remote attacker could exploit this vulnerability by enticing a victim user to open a maliciously crafted subtitle file...
Digium Asterisk pjsip_multipart_parse Denial of Service
A denial of service vulnerability exists in Digium Asterisk. The vulnerability is due to a processing flaw in the pjsipmultipartparse function of sipmultipart.c when the chanpjsip module is used. A remote, unauthenticated attacker could exploit this vulnerability by sending a maliciously crafted...
HPE Network Automation FileServlet Information Disclosure (CVE-2017-5811)
An information disclosure vulnerability exists in HPE Network Automation. The vulnerability is due to a lack of sanitization on a user supplied path on requests handled by FileServlet. A remote attacker could exploit this vulnerability by sending a maliciously crafted request to the target server...
Schneider Electric U.motion Builder css.inc.php Arbitrary File Inclusion (CVE-2017-7974)
An arbitrary file inclusion vulnerability exists in Schneider Electric U.motion Builder. This vulnerability is caused by improper sanitization of directory traversal characters.. by css.inc.php. A remote, unauthenticated attacker could exploit this vulnerability by sending a malicious request to...
IBM Informix Dynamic Server index.php testconn Heap Buffer Overflow (CVE-2017-1092)
A heap buffer overflow exists in IBM's Informix Dynamic Server and Informix Open Admin Tool. The vulnerability is due an input validation error when processing requests sent to index.php. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request...
AlienVault USM and OSSIM fqdn get_fqdn Command Injection
A command injection vulnerability exists in AlienVault USM and OSSIM. The vulnerability is due to a failure to sanitize input on requests to getfqdn function. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the vulnerable application...
Trend Micro IWSVA ManageSRouteSettings HttpServlet Command Injection
A command injection vulnerability exists in Trend Micro IWSVA. This vulnerability is due to incorrect validation of the netid, netmask, router, and interfacevlanidsel HTTP parameters by the ManageSRouteSettings Servlet. A remote authenticated attacker could exploit this vulnerability by sending a...
Marathon UI Docker Command Execution
Command execution vulnerability exist in Marathon UI Docker. The vulnerability is due to improper privilege handling. An attacker can exploit the vulnerability to run code with admin permissions...
Trend Micro InterScan Web Security Virtual Appliance VerboseLog Directory Traversal
A directory traversal vulnerability exists in Trend Micro InterScan Web Security Virtual Appliance IWSVA. The vulnerability is due to improper validation of the HTTP request parameters when processing requests to the VerboseLog servlet. A remote, authenticated attacker can exploit this...
HPE Smart Storage Administrator Code Execution (CVE-2016-8523)
A remote code execution vulnerability exists in HPE Smart Storage Administrator. A remote attacker could exploit this vulnerability by sending a crafted HTTP request to the vulnerable server. Successful exploitation could result in arbitrary code execution in the security context of the process...
Mozilla Firefox http-index-format File Out-Of-Bounds Read (CVE-2017-5444)
An out-of-bounds read has been reported in Mozilla Firefox. The vulnerability is due to improper parsing of application/http-index-format format content which can result in a read past the end of an allocated object. A remote attacker could exploit this vulnerability by enticing a user to open a...
Siemens SIPROTEC Denial of Service (CVE-2015-5374)
A vulnerability exists in Siemens SIPROTEC. This vulnerability, aka Crash Override or Industroyer, is due to the way SIPROTEC handles certain malformed protocol requests. A successful attack can lead to a denial of service...
Adobe Flash Player Memory Corruption (APSB17-17: CVE-2017-3077)
A Memory Corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted PNG file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...
Adobe Flash Player Use After Free Code Execution (APSB17-17: CVE-2017-3075)
A use after free vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Adobe Flash Player Memory Corruption (APSB17-17: CVE-2017-3078)
A memory corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted ATF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted ATF file...
Adobe Flash Player Memory Corruption (APSB17-17: CVE-2017-3076)
A memory corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted FLV file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted FLV file...
Microsoft Win32k Elevation of Privilege (CVE-2017-8465)
An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is caused when the Windows kernel-mode fails to properly handle objects in memory. A remote attacker can exploit this vulnerability by enticing a user to run a specially crafted executable file...
Adobe Flash Player Use After Free Code Execution (APSB17-17: CVE-2017-3083)
A remote code execution vulnerability exists in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted SWF file...
Microsoft Device Guard Code Integrity Policy Security Feature Bypass (CVE-2017-0215)
A security feature bypass vulnerability exists in Microsoft Windows Device Guard. The vulnerability is due to the way Device Guard improperly validates certain elements of a signed PowerShell script. A remote attacker could exploit this vulnerability by enticing a target user to open a specially...
Microsoft Windows Search Remote Code Execution (CVE-2017-8543)
A remote code execution vulnerability exists in Windows Search Service. The vulnerability is due to out of bounds memory access. A remote attacker can exploit this issue by sending specially crafted SMB requests. A successful exploitation could lead to arbitrary code execution...
Microsoft Browser Scripting Engine Memory Corruption (CVE-2017-8524)
A remote code execution Vulnerability exists in Microsoft Edge and Internet Explorer 11. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a speciall...
Microsoft Office Malicious Macros
Microsoft Office files might contain a malicious downloader. A remote attacker could send spam e-mails including those downloaders, and use social engineering in order to convince users to manually enable them. This would allow the malicious code to run and infect the target system...
Microsoft LNK Remote Code Execution (CVE-2017-8464; CVE-2018-0978)
A vulnerability has been found in the way Windows Explorer handles LNK files. An attacker exploiting this vulnerability could achieve Remote Code Execution...
Adobe Flash Player Memory Corruption (APSB17-17: CVE-2017-3079)
A memory corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Adobe Flash Player Use After Free Code Execution (APSB17-17: CVE-2017-3081)
A remote code execution vulnerability exists in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted SWF file...
Adobe Flash Player Use After Free Code Execution (APSB17-17: CVE-2017-3084)
A remote code execution vulnerability exists in Adobe Flash Player. The vulnerability is due to a use-after-free error in Adobe Flash Player while handling a specially crafted SWF file. A remote attacker can exploit this vulnerability by enticing a target user to open a specially crafted SWF file...
Adobe Flash Player Memory Corruption (APSB17-17: CVE-2017-3082)
A memory corruption vulnerability exists in Adobe Flash Player. The vulnerability is due to an error in Adobe Flash Player while parsing a specially crafted SWF file. A remote attacker can exploit this issue by enticing a victim to open a specially crafted SWF file...
Microsoft Windows Cursor Elevation of Privilege (CVE-2017-8466)
An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is caused when Windows fails to properly handle objects in memory. A remote attacker can exploit this vulnerability by enticing a user to run a specially crafted executable file...
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-8497)
A remote code execution Vulnerability exists in Microsoft Edge. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...
Microsoft Office Remote Code Execution (CVE-2017-8509)
A remote code execution vulnerability exists in Microsoft Office software. The vulnerability is due to Office software failing to properly handle objects in memory. An attacker can successfully exploit this vulnerability by enticing a user to open a specially crafted file, enabling arbitrary...
Microsoft Browser Information Disclosure (CVE-2017-8529)
An information disclosure vulnerability exists in Microsoft Edge and Internet Explorer. The vulnerability is due to Microsoft Edge improperly handling objects in memory. A remote attacker could exploit this vulnerability by enticing the target user to open a specially crafted html file...
Microsoft Internet Explorer Memory Corruption (CVE-2017-8547)
A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to the way JavaScript engine renders when handling objects in memory. A remote unauthenticated attacker could exploit this vulnerability by enticing the target user to open a specially crafted we...
Microsoft Win32k Elevation of Privilege (CVE-2017-8468)
An elevation of privilege vulnerability exists in Microsoft Windows. The vulnerability is caused when the Windows kernel-mode fails to properly handle objects in memory. A remote attacker can exploit this vulnerability by enticing a user to run a specially crafted executable file...
Microsoft Edge Scripting Engine Memory Corruption (CVE-2017-8496)
A type confusion vulnerability exists in Microsoft Edge. The vulnerability is due to a CAttribute object being confused for a CAttrArray object by the PrivateFindInl method. A remote attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...
VMware vSphere Data Protection Remote Code Execution (CVE-2017-4914)
Multiple vulnerabilities have been reported in VMware vSphere Data Protection. The vulnerabilities are due to improper Java deserialization and use of reversible encryption. A remote attacker could exploit one of the vulnerabilities by sending specially crafted data to the targeted server, which...
Digium Asterisk chan_skinny SCCP packet Denial of Service
A denial of service vulnerability exists in Digium Asterisk. The vulnerability is due to a processing flaw in the chanskinny SCCP packet processing module. A remote unauthenticated attacker can exploit this vulnerability by sending a maliciously crafted SCCP packet to a vulnerable Asterisk server...
Trend Micro SafeSync for Enterprise deviceTool.pm get_device_info SQL Injection
An SQL Injection vulnerability exists in Trend Micro's SafeSync for Enterprise deviceTool.pm page. The vulnerability is due to insufficient validation of the user-supplied role or deviceid parameter when sending a query to get the information about a SafeSync storage device. A remote,...
Trend Micro SafeSync for Enterprise deviceTool.pm get_nic_device SQL Injection
An SQL Injection vulnerability exists in Trend Micro's SafeSync's deviceTool.pm Perl module. The vulnerability is due to insufficient validation of the user-supplied role or role parameter when sending a query to get the information about a SafeSync nic device. A remote, authenticated, attacker...
OpenLDAP ldapsearch pagesize Double Free Denial of Service (CVE-2017-9287)
A double free vulnerability exists in the ldapsearch function of OpenLDAP. The vulnerability is due to improper handling of ldapsearch queries with a pagesize of 0. A remote attacker can exploit this vulnerability by sending a crafted query to he target OpenLDAP server...
OpenVPN P_CONTROL Denial of Service (CVE-2017-7478)
A denial-of-service vulnerability exists in OpenVPN. This vulnerability is due to an assertion in OpenVPN server that can be reached during the processing of a malicious packet. A remote, unauthenticated attacker can exploit this vulnerability to cause the OpenVPN server program to terminate,...
Microsoft Windows SMB Server SMBv1 Out of Bounds Read (CVE-2017-0267)
An out of bounds read vulnerability exists in the SMB Server component of Microsoft Windows. The vulnerability is due to improper handling of SMBv1 requests. A remote, unauthenticated attacker could exploit the vulnerability by sending a crafted request to a target SMB server...
PowerShell Script Encoding Evasion
Certain evasion tools obfuscate powershell scripts in order to circumvent inspection by security software. An attacker could use such evasion methods in order to execute arbitrary code on the target...
HPE Network Automation RedirectServlet SQL Injection (CVE-2017-5810)
A SQL injection vulnerability exists in HPE Network Automation. The vulnerability is due to insufficient sanitization of certain HTTP request parameters in RedirectServlet. A remote attacker could exploit this vulnerability by sending a maliciously crafted request to the target server...