3996 matches found
KLA10518 Denial of service vulnerabilities in Wireshark
Integer overflows and other unspecified vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet. Original advisories Wireshark advisories Related...
KLA10400 DoS vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities 1. Improper handling of n and r symbols can be exploited remotely via a specially designed packet; 2. Improper...
KLA10436 Multiple vulnerabilities in VMware vSphere Client
Multiple critical vulnerabilities have been found in VMware vSphere. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security. Below is a complete list of vulnerabilities 1. An improper client file update validation can be exploited remotely; 2. An improper...
KLA10404 ACE vulnerability in XnView
An integer overflow was found in XnView. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed JXR file. Original advisories - Related products XnView CVE list CVE-2013-3938 critical Solution Update to...
KLA10435 ACE vulnerability in Adobe Photoshop
An untrusted path was found in Adobe Photoshop. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited on the network via a DLL hijack. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10137 ACE vulnerability in DivX Web Player
An integer signing error was found in DivX Web Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DivX file. Original advisories - Related products DivX-Web-Player CVE list CVE-2008-5259 critic...
KLA10392 ACE vulnerability in Microsoft Intelligent Application Gateway
An unspecified vulnerability was found in Microsoft IAG. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed arguments. Original advisories - Related products Microsoft-Intelligent-Application-Gateway CVE...
KLA20164 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in BPv6, OpenFlow, and Kafka protocol dissectors can be exploited to cause denial of...
KLA20042 Multiple vulnerabilities in Microsoft Server Software
Multiple vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to spoof user interface, gain privileges. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft Exchange Server can be exploited remotely to spoof us...
KLA12606 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Office ca...
KLA12579 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in WebRTC can be exploited to cause denial of service ...
KLA12480 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A security feature bypass...
KLA12385 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Visual Studio Code WSL...
KLA12143 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A use after free vulnerability in Blink can be exploited to...
KLA12182 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A use after free vulnerability in V8 can be exploited to cause denial o...
KLA12072 PE vulnerabilities in Microsoft System Center
An elevation of privilege vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in System Center Operations Manager can be exploited...
KLA12024 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerabili...
KLA12014 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Data validation vulnerability in installer component can be exploited to...
KLA12100 Multiple vulnerabilities in VMware Workstation and Player
Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. An out of bounds read vulnerability in ACPI device can be exploited to...
KLA11758 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds read and write vulnerability in PDFium component can be exploited to potentially...
KLA11725 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. Out of bounds write vulnerability in GMPDecodeData can be exploited t...
KLA11689 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, spoof user interface, cause denial of service. Below is a complete list of vulnerabilities: 1. An elevation of...
KLA11624 Multiple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Unspecified vulnerability in libexpat can be exploited remotely via...
KLA11989 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, spoof user interface, gain privileges. Below is a complete list of vulnerabilities...
KLA11229 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A buffer overflow vulnerability can be exploited remotely...
KLA11215 DoS vulnerability in VMware Products
An unspecified vulnerability was found in VMware Workstation, Player and Fusion. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a opening a large number of VNC sessions. Original advisories VMSA-2018-0008 Related...
KLA11104 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer. For details look at KLA11103. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe Flash...
KLA11022 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer. For details look at KLA11008. Original advisories ADV170006 Related products Microsoft-Windows CVE list KB list 4020821 Solution Install necessary updates from the KB section, that are listed in your Windo...
KLA11061 Information disclosure vulnerability in Microsoft Windows
An incorrect handling of objects in memory has been found in libjpeg image-processing library functionality used in Microsoft Windows. Malicious users can exploit this vulnerability to obtain sensitive information. This vulnerability can be exploited remotely by convincing a user to run a special...
KLA10987 Information disclosure in Windows DVD Maker
An improper parsing of .msdvd files was found in Windows DVD maker. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed .msdvd file. Original advisories MS17-020 CVE-2017-0045 Exploitation Public...
KLA10913 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple serious vulnerabilities have been found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code, possibly cause denial of service, gain priveleges or make code injections. Below is a...
KLA10910 Multiple vulnerabilities in PostgreSQL
Multiple serious vulnerabilities have been found in PostgreSQL before 9.1.23, 9.2.x before 9.2.18, 9.3.x before 9.3.14, 9.4.x before 9.4.9, and 9.5.x before 9.5.4. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, possibly execute arbitrar...
KLA10786 Code execution vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in .NET Framework can be exploited remotely to execute arbitrary cod...
KLA10586 Denial of service vulnerabilities in Wireshark
An unspecified vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet trace. Original advisories Wireshark security advisories Related products...
KLA10554 Denial of service vulnerability in Mozilla Firefox
Race condition was found in Mozilla Firefox. By exploiting this vulnerability malicious users can cause denial of service or other unknown impact. This vulnerability can be exploited remotely via an unknown vectors related to plugins. Original advisories MFSA Related products Mozilla-Firefox CVE...
KLA10489 Multiple vulnerabilities in IBM PowerVC
Multiple vulnerabilities have been found in IBM PowerVC. Malicious users can exploit these vulnerabilities to spoof user interface or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper certificate validation can be exploited remotely via a specially designed...
KLA10354 ACE vulnerability in Symantec Endpoint Protection
A buffer overflow was found in Symantec products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed argument. Original advisories Symantec advisory Exploitation Public exploits exist for this...
KLA10036 Multiple vulnerabilities in Adobe Flash and Adobe AIR
Multiple serious vulnerabilities have been found in Adobe Flash Player and Adobe AIR SDK. Malicious users can exploit these vulnerabilities to bypass security restrictions and obtain sensitive information. Below is a complete list of vulnerabilities: 1. Vectors related to unknown applications can...
KLA10242 Vulnerability in LibreOffice
Automatic macros execution was found in LibreOffice. By exploiting this vulnerability malicious users can have an unspecified impact via unspecified attack vectors. Original advisories LibreOffice bulletin Related products LibreOffice CVE list CVE-2014-0247 critical Solution Update to latest...
KLA10394 Multiple vulnerabilities in Siemens
Multiple critical vulnerabilities have been found in Siemens products. Malicious users can exploit these vulnerabilities to read & modify arbitrary files, cause denial of service, execute arbitrary code, bypass authentication, obtain access and inject arbitrary HTTP headers. Below is a complete...
KLA65512 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, bypass security restrictions, execute arbitrary code, spoof user interface, gain privileges. Below is a...
KLA63960 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in .NET can be exploited remotely to cause deni...
KLA48843 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability...
KLA15723 DoS vulnerability in Microsoft Browser
Validation of untrusted input vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2022-2856 Related products Microsoft-Edge CVE list CVE-2022-2856 high KB list Solution Install necessary updates from the...
KLA12596 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Cast UI and Toolbar can be exploited to cause denial of service or...
KLA12398 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, inject malicious code, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Heap buffer overflow...
KLA12333 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Data validation vulnerability in New Tab Page can be...
KLA12317 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Code execution vulnerability can be exploited via special crafte...
KLA12128 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, spoof user interface, cause denial of service. Below is a complete list of vulnerabilities: 1. A memory safety vulnerability can b...
KLA12087 Multiple vulnerabilities in Apache Tomcat
Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability can be exploited to obtain sensitive information. ...