3996 matches found
KLA60821 DoS vulnerability in Mozilla Firefox ESR
Heap buffer overflow vulnerability was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to cause denial of service. Original advisories MFSA2023-44 Exploitation Public exploits exist for this vulnerability. Related products Mozilla-Firefox-ESR CVE list CVE-2023-5217...
KLA51007 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in Core can be exploited to...
KLA20049 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions, obtain sensitive information, execute arbitrary code, gain privileges, perform cross-site scripting attack. Bel...
KLA12554 Multiple vulnerabilities in Apache HTTP Server
Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in aprwrite can be...
KLA12226 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface, execute arbitrary code, cause denial of service, bypass security restrictions, gain privileges. Below is a...
KLA12108 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Internet Explorer can be exploited remotely to execute arbitrary code. 2....
KLA11823 CPU usage vulnerability in Apache Tomcat
CPU usage vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Apache Tomcat 8.5.x vulnerabilities Apache Tomcat 9.x vulnerabilities Related products Apache-Tomcat CVE list CVE-2020-11996 warning Solution Update t...
KLA11635 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, execute arbitrary code, perform cross-site scripting attack, bypass security restrictions. Below is a complete list of...
KLA11623 Multiple vulnerabilities in Apple iTunes
Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Unspecified vulnerability in libexpat can ...
KLA11593 Multiple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, cause denial of service. Below is a complete list of vulnerabilities: 1. Vulnerabilitiy in WebKit can be exploited remotely via...
KLA11591 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Vulnerability related to document.domain can be exploited...
KLA11553 Multiple vulnerabilities in Microsoft Server Software
Multiple vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in Microsoft Exchange can be exploited remotely v...
KLA11533 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A security feature bypass vulnerability in Microsoft...
KLA11534 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges, cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of...
KLA11489 Multiple vulnerabilities in iTunes
Multiple vulnerabilities were found in iTunes. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. An out-of-bounds read vulnerability in WebKit can be exploited remotely to...
KLA11882 ACE vulnerability in Microsoft Products (ESU)
A memory corruption vulnerability was found in Microsoft Products Extended Support Update. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2018-8653 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit...
KLA11227 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11223 Original advisories ADV180007 Related products Microsoft-Windows CVE list KB list 4093110 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Updat...
KLA11008 Arbitrary code execution vulnerabilities in Adobe Flash Player
Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A use-after-free vulnerability related to masking display objects can be exploited remotely to execu...
KLA11001 Use-after-free vulnerability in Mozilla Firefox and Mozilla Firefox ESR
Use-after-free vulnerability was found in Mozilla Firefox and Mozilla Firefox ESR. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely via a Buffer11 API calls within the ANGLE graphics library, used for WebGL content...
KLA10985 Privilege escalation vulnerabilities in Windows kernel-mode drivers
Multiple cases of improper handling of objects in memory have been found in the Windows kernel-mode Win32k driver. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited remotely via a specially designed application by an attacker who has already...
KLA11906 Multiple vulnerabilities for Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in...
KLA10793 Multiple vulnerabilities in Oracle Java SE
An unspecified vulnerabilities were found in Oracle Java SE. By exploiting these vulnerabilities malicious users can cause denial of service and loss of integrity or obtain sensitive vulnerability. These vulnerabilities can be exploited remotely via a multiple vectors related to 2D, Hotspot,...
KLA10791 Buffer overflow vulnerability in VLC media player
Buffer overflow vulnerability was found in VLC media player. By exploiting this vulnerability malicious users can cause a denial of service crash. This vulnerability can be exploited remotely via a crafted wav file. Technical details This vulnerability is in the AStreamPeekStream function in...
KLA10780 Multiple vulnerabilities in Adobe Flash Player
Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security restrictions. Below is a complete list of vulnerabilities 1. An unknown vulnerability at JIT can be exploited to bypass layout...
KLA10622 Multiple vulnerabilities in Mozilla products
Multiple serious vulnerabilities have been found in Mozilla products. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Multiple memory...
KLA10487 Multiple vulnerabilities in IBM GPFS
Multiple serious vulnerabilities have been found in IBM GPFS. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code and gain privileges. Below is a complete list of vulnerabilities 1. An unknown vulnerability can be...
KLA10615 Multiple vulnerabilities in Microsoft SQL Server
Multiple serious vulnerabilities have been found in Microsoft SQL Server. Malicious users can exploit these vulnerabilities to cause denial of service or inject arbitrary code. Below is a complete list of vulnerabilities 1. Lack of stack memory restrictions can be exploited remotely via a special...
KLA10393 LPE & OSI vulnerabilities in Siemens Simatic WinCC
Multiple serious vulnerabilities have been found in Siemens Simatic WinCC. Malicious users can exploit these vulnerabilities to gain privileges or obtain sensitive information. Below is a complete list of vulnerabilities 1. An unsafe encryption key can be exploited remotely via key extraction; 2...
KLA10116 ACE vulnerability in Citrix
An unspecified vulnerability was found in Citrix XenApp & XenDesktop. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed web site. Original advisories - Related products Citrix-XenApp CVE list...
KLA10280 DoS vulnerability in OpenOffice.org
Multiple critical vulnerabilities have been found in OpenOffice.org. Malicious users can exploit these vulnerabilities to cause denial of service or possibly execute arbitrary code. Below is a complete list of vulnerabilities 1. An integer overflow can be exploited remotely via specially designed...
KLA10334 DoS vulnerability in TFTP Server
An unspecified vulnerability was found in the TFTP Server. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Exploitation Public exploits exist for this vulnerability...
KLA10285 RLF vulnerability in Orb
A directory traversal vulnerability was found in Orb. By exploiting this vulnerability malicious users can read arbitrary files. This vulnerability can be exploited remotely via a specially designed GET request. Original advisories - Related products Orb CVE list CVE-2008-5645 high Solution Updat...
KLA10109 ACE vulnerability in CitectSCADA
A buffer overflow was found in Citect products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed TCP packet. Original advisories - Exploitation Public exploits exist for this vulnerability. Malware...
KLA10355 LPE vulnerability in Symantec
An unspecified vulnerability was found in Symantec products. By exploiting this vulnerability malicious users can gain system privileges. This vulnerability can be exploited locally via an unknown vector. Original advisories Symantec advisory Related products Symantec-Windows-LiveUpdate...
KLA63965 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain privileges, spoof user interface. Below is a complete list of vulnerabilitie...
KLA48969 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Code execution vulnerability ...
KLA48839 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Security ...
KLA12603 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, obtain sensitive information, bypass security restrictions. Below is a complete list of...
KLA12297 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Open Management...
KLA12229 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. A memory safety vulnerability can be exploited to execute arbitrary code. 2. An out of...
KLA12167 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code...
KLA12017 Mulitple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A use after free vulnerability in...
KLA11564 ACE vulnerability in Microsoft Browser
Unspecified vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-1367 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related products...
KLA11486 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, cause denial of service, spoof user interface, perform cross-site scripting attack, execute arbitrary code. Below is a complete...
KLA12361 Multiple vulnerabilities in Apache HTTP Server
Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in modcachesocache...
KLA11057 Arbitrary code execution vulnerability in Microsoft Malware Protection Engine
An improper scanning of specially designed files was found in Microsoft Malware Protection Engine in Microsoft Windows. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely by putting a specially designed file to a directory...
KLA11013 Buffer overflow vulnerability in Apple iTunes
A buffer overflow vulnerability was found in WebKit component of Apple iTunes versions earlier than 12.6.1. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed web content. Original advisories Apple...
KLA11058 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
Multiple serious vulnerabilities have been found in Microsoft Internet Explorer and Microsoft Edge. Malicious users can exploit these vulnerabilities to to gain privileges, execute arbitrary code, bypass security restrictions and obtain sensitive information. Below is a complete list of...
KLA10911 Multiple vulnerabilities in Adobe Flash Player
Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use-after-free vulnerabilities can be exploited remotely to execute...
KLA10906 Use-after-free vulnerability in Mozilla products
A use-after-free vulnerability was found in Mozilla Firefox before 50.0.2, Mozilla Firefox ESR before 45.5.1 and Mozilla Thunderbird before 45.5.1. Exploiting this vulnerability can possibly lead to a denial of service and also an execution of arbitrary code. This vulnerability can be exploited...