3996 matches found
KLA12529 Type confusion vulnerability in Microsoft Developer Tools
Type confusion vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2022-1096 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Relate...
KLA12355 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in Bluetooth HCIISO dissector can be exploited via special crafted packet to cause denial...
KLA12231 PE vulnerability in Microsoft Windows
An elevation of privilege vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2021-34481 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...
KLA11729 DoS vulnerability in Wireshark
Denial of service vulnerability was found in Wireshark. Malicious users can exploit this vulnerability to cause denial of service. Original advisories wnpa-sec-2020-07 Related products Wireshark CVE list CVE-2020-11647 warning Solution Update to the latest version Download Wireshark Impacts DoS...
KLA11464 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in SRVLOC dissector can be exploited remotely via specially designed packet. 2. Denial of...
KLA11391 Use after free vulnerability in Google Chrome
Use afrer free vulnerability was found in Google Chrome’s. This vulnerability related to PDFium component. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE li...
KLA11364 OSI vulnerability in KeePass
Unspecified vulnerability was found in KeePass. Malicious users can exploit this vulnerability remotely via inadvertently decrypting certain database entries into memory to obtain sensetive information. Original advisories - Related products KeePass-Password-Safe CVE list CVE-2017-1000066 warning...
KLA11077 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, bypass security restrictions, gain privileges. Below is a complete list of...
KLA10959 An unspecified vulnerability in Oracle Java SE
An unspecified vulnerability was found in Oracle Java SE components. By exploiting this vulnerability malicious users can gain privileges and obtain sensitive information. This vulnerability can be exploited remotely by an unauthenticater attacker having network access via multiple protocols...
KLA10892 Code execution vulnerability in Adobe Flash Player
Use-after-free vulnerability was found in Adobe Flash Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely. Technical details To update Adobe Flash Player ActiveX detected as Flash.ocx on Windows 8 and higher, install...
KLA10659 Multiple vulnerabilities in Microsoft .NET Framework
Multiple serious vulnerabilities have been found in .NET Framework. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or gain privileges. Below is a complete list of vulnerabilities 1. Improper memory objects validation can be exploited...
KLA10630 Multiple vulnerabilities in Oracle VM VirtualBox
An unspecified vulnerabilities were found in Oracle VM VirtualBox. By exploiting these vulnerabilities malicious users can affect integrity, cause denial of service and obtain sensitive information. These vulnerabilities can be exploited locally via an unknown vectors. Original advisories Oracle...
KLA10578 Multiple vulnerabilities in Microsoft Font Drivers
Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper fonts handling can be exploited remotely via a specially...
KLA10494 Multiple vulnerabilities in Fortinet FortiAuthenticator
Multiple serious vulnerabilities have been found in Fortinet FortiAuthenticator. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, inject code and read arbitrary files. Below is a complete list of vulnerabilities 1. XSS vulnerability can be...
KLA10114 DoS vulnerability in Citrix Secure Gateway
An unspecified vulnerability was found in the Citrix Secure Gateway. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network via a specially designed request. Original advisories Citrix bulletin Related products...
KLA10420 Multiple vulnerabilities in iMesh
An unspecified vulnerability was found in iMesh. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely at points related to IMWeb.dll Original advisories - Related products iMesh CVE list CVE-2007-6492...
KLA10185 Multiple vulnerabilities in Groove
Multiple serious vulnerabilities have been found in Groove products. Malicious users can exploit these vulnerabilities to obtain sensitive information, inject web scripts, bypass security restrictions and spoof filenames. Below is a complete list of vulnerabilities 1. Improper file extension...
KLA73915 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, execute arbitrary code, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of...
KLA20228 OSI vulnerability in Microsoft Device
An information disclosure vulnerability was found in Microsoft Device. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2019-15126 CVE list CVE-2019-15126 warning Solution Install necessary updates from the KB section, that are listed in your...
KLA20045 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A denial of...
KLA12591 OSI vulnerability in Microsoft Azure
An information disclosure vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2022-35798 Related products Microsoft-Azure CVE list CVE-2022-35798 warning KB list Solution Install necessary updates from...
KLA12587 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in WebRTC can be exploited to cause denial of service or execute...
KLA12028 Multiple vulnerabilities in Foxit Reader and Foxit PhantomPDF
Multiple vulnerabilities were found in Foxit Reader and Foxit PhantomPDF. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in PDF file can be exploited remotely to...
KLA11956 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Diagnostics Hub...
KLA11140 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
Multiple serious vulnerabilities have been found in Microsoft Edge and Internet Explorer. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions and obtain sensitive information. Original advisories CVE-2017-11791 CVE-2017-11803 CVE-2017-11827...
KLA11073 Denial of service vulnerability in Wireshark
A large loop vulnerability was found in the GPRS LLC dissector in Wireshark. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely via a specially designed packet, which is injected onto the wire, or by convincing a user to re...
KLA11019 Multiple vulnerabilities in VMware products
Multiple serious vulnerabilities have been found in VMware Workstation Pro and VMware Workstation Player. Malicious users can exploit these vulnerabilities to gain privileges and cause a denial of service. Below is a complete list of vulnerabilities: 1. An insecure library loading vulnerability c...
KLA11362 ACE vulnerability in KeePass
Unspecified vulnerability was found in KeePass . Malicious users can exploit this vulnerability remotely via spoofing the version check response and supplying a crafted update to execute arbitrary code. Original advisories - Related products KeePass-Password-Safe CVE list CVE-2016-5119 high...
KLA10579 Multiple vulnerabilities in Microsoft Internet Explorer
Multiple serious vulnerabilities have been found in Microsoft Internet Explorer. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper ASLR...
KLA10531 Security bypass vulnerabilities in Mozilla Firefox
Multiple serious vulnerabilities have been found in Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities 1. Lack of privileges restrictions can be exploited remotely via vectors related to reader mode. Firefox for...
KLA10515 Multiple vulnerabilities in PHP and extensions
Multiple serious vulnerabilities have been found in PHP and extensions. Malicious users can exploit these vulnerabilities to cause denial of service or inject code. Below is a complete list of vulnerabilities 1. Multiple integer overflows can be exploited remotely via a specially designed year...
KLA10604 Multiple vulnerabilities in Microsoft SharePoint
Multiple serious vulnerabilities have been found in Microsoft SharePoint. Malicious users can exploit these vulnerabilities to gain privileges or execute arbitrary code. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via a specially designed requests; 2...
KLA10511 Multiple vulnerabilities in Oracle products
An unspecified vulnerabilities were found in Oracle products. By exploiting this vulnerability malicious users can affect integrity, confidentiality and availability. This vulnerability can be exploited remotely via an unknown vectors related to 2D, Beans, CORBA, Deployment, Hotspot, Install, JAA...
KLA11268 Out-of-bounds write vulnerability in Google Chrome
An out-of-bounds vulnerability was found in Google Chrome. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed website. Original advisories Stable Channel Update for Desktop Related products Google-Chro...
KLA10363 ACE vulnerability in The Bat!
A buffer overflow was found in The Bat! By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed e-mail. Original advisories - Related products The-Bat! CVE list CVE-2006-0918 high Solution Update to latest...
KLA19250 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely to execute arbitrary...
KLA12485 Multiple vulnerabilities in Apache HTTP Server
Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Integer overflow vulnerability in LimitXMLRequestBody can ...
KLA12303 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A memory safety vulnerability can be...
KLA11728 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Leak memory vulnerability in LTE RRC dissector can be exploiter via special deigned packet to cause denial of service. 2...
KLA11668 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, cause denial of service. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability can be exploited to...
KLA11552 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, obtain sensitive information, spoof user interface, execute arbitrary code, bypass security restrictions. Below is a complete list of...
KLA11530 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use-after-free vulnerability in PDFium ExecuteFieldAction can be exploited to cause denial of...
KLA11490 Multiple vulnerabilities in iCloud
Multiple vulnerabilities were found in iCloud. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. An out-of-bounds read vulnerability in WebKit can be exploited remotely to...
KLA11409 Multiple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack. Below is a complete list of vulnerabilities: 1. Multiple memory corruption vulnerabilities in SQLite can be exploited remotely to...
KLA11160 Obsolete Adobe Flash Player for Windows
A remote code execution vulnerability was found in Adobe Flash Player. This vulnerability can be exploited via a specially designed webpage to execute arbitrary code. Original advisories ADV170022 Related products Microsoft-Windows CVE list KB list 4053577 Solution Install necessary updates from...
KLA11084 Multiple vulnerabilities in Microsoft Edge and Microsoft Internet Explorer
Multiple serious vulnerabilities have been found in Microsoft Internet Explorer and Microsoft Edge. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, execute arbitrary code and obtain sensitive information. Below is a complete list of...
KLA10917 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer & Edge. For details look at KLA10892. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: don’t click a link in an email message or...
KLA10833 Multiple unknown vulnerabilities in Google Chrome
Multiple unspecified vulnerability were found in Google Chrome. Original advisories Google Chrome releases blog entry Related products Google-Chrome CVE list CVE-2016-1704 high Solution Update to the latest version. File with name oldchrome can be still detected after update. It caused by Google...
KLA10684 Flash Player update for Google Chrome
Google Chrome was updated to address vulnerabilities in Flash Player. For details look at KLA10680. Original advisories Google release blog entry Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is classified as Exploit. More...
KLA10591 Code injection in Microsoft Exchange Server
Multiple XSS vulnerabilities were found in Microsoft Exchange Server. By exploiting these vulnerabilities malicious users can inject arbitrary web script or spoof user interface. These vulnerabilities can be exploited remotely via a specially designed URL, msgParam or other unknown vectors...