13538 matches found
IBM Domino IMAP Mailbox Name Stack Buffer Overflow (CVE-2017-1274)
A stack buffer overflow vulnerability exist in IBM Domino IMAP Server. The vulnerability is due to incorrect processing of encoded mailbox name arguments in IMAP commands. A remote, authenticated attacker can exploit this vulnerability to cause a buffer overflow...
Digium Asterisk SIP CSeq Heap Buffer Overflow
A heap-based buffer overflow vulnerability exists in Digium Asterisk. The vulnerability is due to a flaw while processing a very long CSeq header in SIP packet where Via header contains no branch parameter. A remote unauthenticated attacker can exploit this vulnerability by sending a crafted...
ISC BIND Referral CNAME and DNAME Assertion Failure Denial of Service (CVE-2017-3137)
A denial of service vulnerability exists in ISC BIND9. The vulnerability is due to improper handling of responses containing CNAME and DNAME records after receiving a referral. A remote attacker could exploit this vulnerability by providing two specially crafted responses to the server...
PowerShell Script Encoding Evasion
Certain evasion tools obfuscate powershell scripts in order to circumvent inspection by security software. An attacker could use such evasion methods in order to execute arbitrary code on the target...
Jenkins CI Server Multiple Cross-Site Request Forgery (CVE-2017-1000356)
Multiple Cross-Site Request Forgery vulnerabilities exists in Jenkins CI. The vulnerabilities are due to a lack of CSRF protections on certain types of requests. A remote, unauthenticated attacker can exploit these vulnerabilities by enticing an authenticated user to click a maliciously crafted...
HPE Network Automation PermissionFilter Authentication Bypass (CVE-2017-5812)
An authentication bypass vulnerability has been reported in HPE Network Automation. The vulnerability is due to errors in handling specific strings contained in the request URI. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the target system...
HPE Intelligent Management Center UrlAccessController Authentication Bypass (CVE-2017-5791)
An authentication bypass vulnerability has been reported in HPE Intelligent Management Center. The vulnerability is due to errors in handling specific strings contained in the request URI. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the target...
Trend Micro IWSVA ReportHandler DoCmd Command Injection
An authentication bypass vulnerability has been reported in HPE Intelligent Management Center. The vulnerability is due to errors in handling specific strings contained in the request URI. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the target...
LibTIFF tiffcrop Integer Overflow (CVE-2016-9537)
An out-of-bounds write vulnerability exists in LibTIFF tiffcrop component. The vulnerability is due to the integer overflow when calculating the size of the image data from the maliciously crafted TIFF image file. A remote attacker could exploit this vulnerability by sending maliciously crafted...
Mozilla Firefox createImageBitmap Integer Overflow (CVE-2017-5428)
An integer overflow exists in Mozilla Firefox. The vulnerability is due to an overly large value of image offset, length and layout arguments of createImageBitmap method. A remote attacker could exploit this vulnerability by enticing the target user to open a specially crafted web page...
Mantis MantisBT Bug Tracker adm_config_report.php move_attachments_page.php XSS (CVE-2017-7309)
Three cross-site scripting vulnerabilities exist in Mantis Bug Tracker MantisBT. These vulnerabilities are due to insufficient input validation of the action, type and configoption HTTP parameters by admconfigreport.php and moveattachmentspage.php. A remote attacker could exploit this vulnerabili...
ISC BIND rndc Control Channel Interface Assertion Failure Denial of Service (CVE-2017-3138)
A denial-of-service vulnerability exist in ISC BIND. The vulnerability is due to improper handling of a null command string sent to rndc control channel interface. A remote, authenticated attacker could exploit this vulnerability by sending a maliciously crafted packet to the rndc control channel...
Trend Micro Control Manager XML External Entity Processing
An XML external entity processing vulnerability exists in Trend Micro Control Manager. The vulnerability is due to lack of validation of user-supplied input prior to executing an XML query. A remote, authenticated attacker could exploit this vulnerability by sending a malicious HTTP request to th...
PowerPoint Malicious Hover Exploit
There exists a malicious downloader vulnerability in Microsoft Office PowerPoint. This is because of the way PowerPoint presentation format handles link hover. A successful attack could lead to malicious files being downloaded...
Quest Privilege Manager pmmasterd Buffer Overflow (CVE-2017-6553)
A Buffer Overflow vulnerability exists in Quest One Identity Privilege Manager. The vulnerability is due to improper handling requests. A remote, unauthenticated attacker could exploit this vulnerability to run arbitrary code with elevated privileges...
Windows Browser MFT Crash Bug
A Windows crash vulnerability exists in windows 7 and 8.1 on browsers Internet Explorer and Firefox. The vulnerability is due to an error in the way IE and Firefox handle Microsoft File Type lookup. A successful attack can crash windows 7 and 8.1...
Trend Micro Control Manager ProductTree_RightWindow XML External Entity Processing
An XML external entity XXE processing vulnerability exist in Trend Micro Control Manager. The vulnerability is due to lack of validation of user-supplied input prior to executing an XML query in ProductTreeRightWindow.aspx. A remote, authenticated attacker could exploit this vulnerability by...
RIG Exploit Kit Landing Page URL
RIG exploit kit is a web exploit kit that operates by delivering malicious payload to the victim's computer. Successful infection will allow the attacker to download additional malware to the target...
Microsoft Malware Protection Engine Remote Code Execution (CVE-2017-8542)
A memory corruption vulnerability has been reported in Microsoft Malware Protection Engine. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file. A successful exploitation could lead to arbitrary code execution...
Microsoft Malware Protection Engine Denial of Service (CVE-2017-8535)
A memory corruption vulnerability has been reported in Microsoft Malware Protection Engine. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file. A successful exploitation could lead to a denial of service...
Microsoft Malware Protection Engine Denial of Service (CVE-2017-8539)
A memory corruption vulnerability has been reported in Microsoft Malware Protection Engine. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file. A successful exploitation could lead to a denial of service...
Microsoft Malware Protection Engine Remote Code Execution (CVE-2017-8541)
A memory corruption vulnerability has been reported in Microsoft Malware Protection Engine. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file. A successful exploitation could lead to arbitrary code execution...
Foxit PDF Reader JBIG2 Symbol Dictionary Out of Bounds Read (CVE-2016-8334)
An out-of-bounds vulnerability has been reported in the JBIG2 component of Foxit PDF Reader. This vulnerability is due to improper processing of Symbol Dictionary segment in an embedded JBIG2 image. A remote attacker could exploit this vulnerability by enticing a victim user to visit a malicious...
Microsoft Malware Protection Engine Remote Code Execution (CVE-2017-8538)
A memory corruption vulnerability has been reported in Microsoft Malware Protection Engine. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file. A successful exploitation could lead to arbitrary code execution...
Microsoft Malware Protection Engine Denial of Service (CVE-2017-8537)
A memory corruption vulnerability has been reported in Microsoft Malware Protection Engine. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file. A successful exploitation could lead to a denial of service...
Microsoft Malware Protection Engine Remote Code Execution (CVE-2017-8540)
A memory corruption vulnerability has been reported in Microsoft Malware Protection Engine. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file. A successful exploitation could lead to arbitrary code execution...
Microsoft Malware Protection Engine Denial of Service (CVE-2017-8536)
A memory corruption vulnerability has been reported in Microsoft Malware Protection Engine. A remote attacker can exploit this issue by enticing a target user to open a specially crafted file. A successful exploitation could lead to a denial of service...
ISC BIND DNS64 and RPZ Query Processing Denial of Service (CVE-2017-3135)
A denial-of-service vulnerability exists in ISC BIND. The vulnerability is due to a defect that can cause the named service to exit with an assertion failure or crash due to a NULL pointer dereference while processing a query and running a specific configuration. A remote, unauthenticated attacke...
Linux EternalRed Samba Remote Code Execution (CVE-2017-7494)
A remote code execution vulnerability exist in Linux Samba. A remote authenticated attacker can change an existing file to include malicious code. Successful exploitation could result in arbitrary code execution on the client machine...
Microsoft Windows ArchiTouch SMB Scanner
The ArchiTouch Vulnerability Scanning tool comes from a cluster of other attack tools. This module is used to gather information from servers about their vulnerabilities. Such scans may indicate preparation for further attacks...
Trend Micro Smart Protection Server wcs_bwlists_handler.php Command Injection
A remote command execution vulnerability exists in the wcsbwlistshandler.php script of Trend Micro Smart Protection Server. The vulnerability is due to insufficient validation of user-supplied input. A remote, authenticated attacker could exploit this vulnerability by providing crafted input to t...
Trend Micro IWSVA PacFileManagement delete_pac_files Command Injection
A command injection vulnerability has been reported in Trend Micro InterScan Web Security Virtual Appliance IWSVA. The vulnerability exists due to improper validation of the HTTP request parameters when processing requests to the PacFileManagement servlet. A remote, authenticated attacker can...
PNG Containing Malicious JavaScript Code
A code execution vulnerability exists in multiple web-browsers when handling PNG files containing malicious JavaScript code. Opening those files would allow the malicious code to run and infect the target system...
WordPress REST API Posts Controller Privilege Escalation
A privilege escalation vulnerability exists in WordPress. The vulnerability is due to improper handling of post id's within the REST API posts controller. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to a vulnerable WordPress website...
MailStore Server search-result Reflected Cross-Site Scripting
A reflected cross-site scripting vulnerability has been reported in MailStore Server. The vulnerability is due to insufficient input validation on user input for search results. A remote user can exploit this vulnerability by enticing an authenticated user to click on a malicious link...
Netgear R7000 and R6400 cgi-bin Command Injection (CVE-2016-6277)
A command injection vulnerability exists in Netgear R7000 and R6400. The vulnerability is due to insufficient input validation in the router's web administration. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code...
Microsoft Windows EternalSynergy SMB Remote Code Execution
A remote code execution vulnerability exist in Microsoft Server Message Block SMB. The vulnerability is due to the way SMB service handles certain requests. The Fuzzbunch tool uses SMBTouch to scan for vulnerabilities, allows attackers to execute this exploit. An attacker who successfully exploit...
Microsoft Windows SMBTouch Scanner
The SMBTouch Vulnerability Scanning tool comes from a cluster of other attack tools. This module is used to gather information from servers about their vulnerabilities. Such scans may indicate preparation for further attacks...
Zabbix Server Active Proxy Trapper Command Injection (CVE-2017-2824)
A command injection vulnerability exists in Zabbix. The vulnerability is due to improper validation of user supplied input within the Trapper functionality of the server when the Auto-discovery or Auto-registration features are enabled. A remote, unauthenticated attacker could exploit this...
Red Hat JBoss BPM Suite BRMS Tasks List Cross-Site Scripting (CVE-2017-2674)
A cross-site scripting vulnerability exists in Red Hat JBoss BPM Suite and JBoss BRMS. The vulnerability is due to insufficient validation of user supplied input within the Tasks List component of business-central. An authenticated attacker can exploit this vulnerability by creating a malicious...
PDF File Containing Ransomware Downloader
A malicious PDF file containing a downloader was observed as part of Locky ransomware campaign. A remote attacker could send spam e-mails including those PDF files and convince users to open embedded links in them. This would allow the malicious code to run and infect the target system...
Disk Pulse Enterprise Server HttpParser Buffer Overflow
A buffer overflow vulnerability has been reported in the web server component of Disk Pulse Enterprise Server. The vulnerability is due to a failure on part of the application to implement proper bounds checking on components found in HTTP requests. A remote, unauthenticated attacker could exploi...
Dell SonicWALL GMS-Analyzer license.jsp Information Disclosure
An information disclosure vulnerability exists in the license.jsp component of Dell SonicWALL GMS, Analyzer. The vulnerability is due to a design weakness where the page containing sensitive information, license.jsp, can be accessed without authentication. This page returns the serial number for...
VLC ParseJSS Null Skip Subtitle Remote Code Execution
A remote code execution vulnerability exists in VLC Subtitles mechanism. The vulnerability is due to the way VLC parses subtitle files. Successful exploitation could result in arbitrary code execution on the client machine...
StremIO Subtitles Remote Code Execution
A remote code execution vulnerability exists in StremIO Subtitles mechanism. The vulnerability is due to the way StreamIO parses subtitle files. Successful exploitation could result in arbitrary code execution on the client machine...
Joomla com_fields Component SQL Injection (CVE-2017-8917)
An SQL injection vulnerability exists in Joomla comfields Component. Remote attackers may leverage this vulnerability to gain arbitrary code execution over the vulnerable server...
Microsoft Windows Eternalchampion SMB Remote Code Execution
A remote code execution vulnerability exist in Microsoft Server Message Block SMB. The vulnerability is due to the way SMB service handles certain requests. The Fuzzbunch tool allows attackers to execute this exploit. An attacker who successfully exploits this vulnerability can execute arbitrary...
Dell SonicWALL Scrutinizer methodDetail SQL Injection (CVE-2014-4977)
An SQL injection vulnerability exists in Dell SonicWALL Scrutinizer. A remote, authenticated attacker can exploit this vulnerability by sending a crafted request. Successful exploitation of this vulnerability can lead to arbitrary code execution in the context of SYSTEM for windows or as Apache f...
Microsoft Windows EsteemAudit RDP Remote Code Execution (CVE-2017-0176; CVE-2017-9073)
A remote code execution vulnerability exist in Microsoft Remote Desktop Protocol RDP. The vulnerability is due to the Windows Smart Card logon mechanism allowing a buffer overflow. The Fuzzbunch tool allows attackers to execute this exploit. An attacker who successfully exploits this vulnerabilit...
Trend Micro IWSVA LogSettingHandler doPostMountDevice Command Injection
A command injection vulnerability exists in Trend Micro InterScan Web Security Virtual Appliance IWSVA. The vulnerability exists due to improper validation of the HTTP request parameters when processing requests to the /rest/commonlog/logsetting/mountdevice URI. A remote, unauthenticated attacker...