3996 matches found
KLA12382 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Security bypass vulnerability in ANGLE can be exploited to...
KLA12349 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft Edge can be exploited remotely to spoof user interface...
KLA12265 DoS vulnerability in Mozilla Firefox
Header splitting vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability to cause denial of service. Original advisories MFSA2021-37 Related products Mozilla-Firefox CVE list CVE-2021-29991 unknown Solution Update to the latest version Download Firefox Impacts D...
KLA12030 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A security bypass...
KLA11954 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Scripting Engine can be exploited remotely to execute...
KLA11924 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerabilit...
KLA11687 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Word can be...
KLA11631 Type confusion vulnerability in Mozilla Firefox ESR
Type confusion vulnerability was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to cause denial of service. Original advisories mfsa2020-03 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related produc...
KLA11697 RCE vulnerabilities in Microsoft Apps
Remote code execution vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerability to execute arbitrary code. Original advisories CVE-2019-1182 CVE-2019-1181 Exploitation Public exploits exist for this vulnerability. Related products Microsoft-Remote-Desktop CVE...
KLA11700 OSI vulnerability in Microsoft products (ESU)
An Information disclosure vulnerability was found in Microsoft Extended Security Updates. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2019-1125 Related products Microsoft-Windows Microsoft-Windows-Server Microsoft-Windows-Server-2012...
KLA11594 SB vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds memory write vulnerability in libvorbis can be exploited to bypass security restrictions; 2. Out...
KLA11233 Oracle Java SE 9 end of life
Oracle announced the end of support of Java SE 9. Users should immediately make transition to Java SE 10 18.3. Original advisories Oracle Java SE Support Roadmap Related products Oracle-Java-JRE-1.9.x CVE list Solution Update to Java SE 10 18.3 Download Java Affected Products - Oracle Java SE 9...
KLA11068 Denial of Service Vulnerability in Microsoft .NET Framework
An improper handling of web requests has been found in Microsoft Common Object Runtime Library. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited by issuing specially designed requests to the .NET web application. Original advisori...
KLA10865 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions or inject arbitrary code. Below is a complete list of vulnerabilities 1. An improper values validation at Skia can be exploited remotely via a...
KLA10759 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
Multiple serious vulnerabilities have been found in Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. Lack of requests...
KLA10685 Multiple vulnerabilities at Apple iTunes
Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code or cause denial of service. Below is a complete list of vulnerabilities 1. Multiple memory corruptions at WebKit can be exploited via iTunes Store...
KLA10585 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, conduct cross-scripting attack, cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilitie...
KLA10474 Multiple vulnerabilities in Microsoft products
Multiple critical vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to fain privileges, bypass security restrictions or cause denial of service. Below is a complete list of vulnerabilities 1. A double-free and other unknown vulnerability can ...
KLA10226 Multiple vulnerabilities in WahtsUp Gold
Multiple serious vulnerabilities have been found in WhatsUp Gold. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Unknown vectors can be exploited remotely via a specially designed GET request; ...
KLA68914 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in DNS...
KLA61977 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A security feature bypass vulnerability in Microsoft...
KLA12281 RCE vulnerability in Microsoft Windows
A remote code execution vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2021-36958 CVE list CVE-2021-36958 unknown KB list 5005613 5005568 5005627 5005565 5005623 5005573 5005569 5005566 5005607 Soluti...
KLA12252 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, execute arbitrary code, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. A memory corruption...
KLA12081 DoS vulnerabilities in Wireshark
DoSvulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. DoS vulnerability in the Kafka dissector can be exploited via special crafted file to cause denial of service. 2. DoS...
KLA12084 DoS vulnerability in Apache Tomcat
DoS vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Apache Tomcat 7.x vulnerabilities Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...
KLA11651 Multiple vulnerabilities in Apple iTunes
Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, perform cross-site scripting attack, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Multiple memory corruption...
KLA11602 Multiple vulnerabilities in Apple iTunes
Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, cause denial of service. Below is a complete list of vulnerabilities: 1. Multiple memory corruption vulnerabilities in WebKit...
KLA11507 Type confusion vulnerability in Mozilla Firefox
Type confusion vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Download Mozilla Firefox Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Relat...
KLA11471 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Multiple vulnerabilities in Core component of Oracle ...
KLA11159 SUI vulnerability in Microsoft Exchange Server
Improper web requests handling was found in Microsoft Exchange Server at Outlook Web Access. By exploiting this vulnerability malicious users can spoof user interface. This vulnerability can be exploited remotely via a specially designed email with malicious link. Original advisories ADV170023...
KLA11079 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface and obtain sensitive information. Below is a complete list of vulnerabilities: 1. A use-after-free in IndexedDB can be exploited...
KLA11051 Multiple vulnerabilities in Microsoft Windows
Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, cause a denial of service, obtain sensitive information and possibly to write local files. Below is a complete list of...
KLA11052 Multiple vulnerabilities in Windows Uniscribe
Multiple serious vulnerabilities have been found in Microsoft Windows Uniscribe. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information. Below is a complete list of vulnerabilities: 1. An improper handling of objects in memory can be exploited...
KLA10972 CIA hacking issue in Notepad++
An issue of a hijacked DLL was found in Notepad++. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a sciexer.dll, which is replaced by version of sciexer.dll built by CIA. Technical details This vulnerability has...
KLA10907 Denial of service vulnerability in Apache HTTP Server
An unspecified vulnerability was found in Apache HTTP Server 2.4.17 through 2.4.23. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via crafted continuation frames in a HTTP/2 request. Technical details Vulnerability occur...
KLA11908 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation...
KLA10849 Multiple vulnerabilities in Oracle Java SE
An unspecified vulnerabilities were found in Oracle Java SE. By exploiting these vulnerabilities malicious users can cause denial of service affect integrity or obtain sensitive information. These vulnerabilities can be exploited remotely or locally. Technical details These vulnerabilities relate...
KLA10795 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions, inject arbitrary code, elevate privileges, cause denial of service or obtain sensitive information. Below is a complete list of vulnerabilities 1...
KLA10774 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10757. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
KLA10763 Multiple vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service or gain privileges. Below is a complete list of vulnerabilities 1. Multiple vulnerabilities in LLRP, RSL, LBMC, HiQnet, HTTP/2, X.509AF, DNP3 and ASN.1 BER...
KLA10745 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Multiple unspecified vulnerabilities at HarfBuzz and V8 c...
KLA10688 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10680. Original advisories Microsoft Advisory Related products Adobe-Flash-Player-ActiveX CVE list KB list 3065820 2929825 3074683 2770041 2805940 3033408 2785605 3001237 3087040...
KLA10681 Information disclosure vulnerability in Mozilla Firefox
Improper CORS implementation was found in Mozilla Firefox at fetch API. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed web page. Original advisories Mozilla advisory Related products...
KLA10556 Obtain sensitive information vulnerability in .NET Framework
An unspecified vulnerability was found in Microsoft .NET. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed request. Original advisories MS15-041 CVE-2015-1648 Related products...
KLA10026 OAF vulnerability in Foxit
An XSS vulnerability was found in Foxit Reader, Foxit Enterprise Reader and Foxit PhantomPDF. By exploiting this vulnerability malicious users can overwrite registry entries and load malicious files. This vulnerability can be exploited locally at a point related to the Recent Documents section of...
KLA10016 Multiple vulnerabilities in Apple QuickTime
Multiple serious vulnerabilities have been found in Apple QuickTime. Malicious users can exploit these vulnerabilities to execute arbitrary code or cause denial of service. Below is a complete list of vulnerabilities 1. Improper byte-swapping can be exploited to execute arbitrary code or cause...
KLA10216 Multiple vulnerabilities in IDA Pro
Multiple critical vulnerabilities have been found in IDA Pro. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or conduct other unknown attacks. Below is a complete list of vulnerabilities 1. Unspecified vulnerabilities can be exploited from...
KLA10375 WLF vulnerability in UltraEdit
A directory traversal vulnerability was found in UltrEdit. By exploiting this vulnerability malicious users can create & overwrite arbitrary files. This vulnerability can be exploited remotely via a specially designed response. Original advisories - Related products UltraEdit CVE list CVE-2008-27...
KLA71485 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions, execute arbitrary code, cause denial of service, gain privileges, obtain sensitive information. Below is a...
KLA65129 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Skype for Consumer can be...