3996 matches found
KLA11873 ACE vulnerability in Microsoft Products (ESU)
A memory corruption vulnerability was found in Microsoft Products Extended Support Update. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-1367 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit...
KLA11579 Multiple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack. Below is a complete list of vulnerabilities: 1. Vulnerabilitiy in WebKit can be exploited remotely via specially crafted text file...
KLA11516 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, perform cross-site scripting attack, spoof user interface, obtain sensitive information, execute arbitrary code. Below is a...
KLA11401 Multiple vulnerabilities in Wireshark
Multiple serious vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. An unspecified vulnerability in 6LoWPAN dissector can be exploited remotely via malformed packet to cause denial ...
KLA11406 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Buffer overflow and out-of-bounds read vulnerability...
KLA11387 Tampering Vulnerability in Microsoft Exchange Server
A tampering vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability via specially designed request to spoof user interface. Original advisories CVE-2018-8604 Related products Microsoft-Exchange-Server CVE list CVE-2018-8604 warning KB list 4468741...
KLA11244 ACE vulnerability in Adobe Flash Player
A type confusion vulnerability was found in Adobe Flash Player. This vulnerability can be exploited remotely. By exploiting this vulnerability malicious users can execute arbitrary code. Technical details To update Adobe Flash Player ActiveX detected as Flash.ocx on Windows 8 and higher, install...
KLA11119 Multiple vulnerabilities in Wireshark 2.2.x
Multiple serious vulnerabilities have been found in Wireshark 2.2.x. Malicious users can exploit these vulnerabilities to cause a denial of service. Below is a complete list of vulnerabilities: 1. A string validation error in DMP dissector can be exploited remotely via a malformed packet to cause...
KLA11116 Multiple vulnerabilities in Mozilla Thunderbird
Multiple serious vulnerabilities have been found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, perform cross-site scripting and execute arbitrary code. Below is a complete list of vulnerabilities: 1. A...
KLA11050 Multiple vulnerabilities in Mozilla Thunderbird
Multiple serious vulnerabilities have been found in Thunderbird. Malicious users can exploit these vulnerabilities to cause a denial of service, spoof user interface, bypass security protections and run arbitrary code. Below is a complete list of vulnerabilities: 1. A use-after-free vulnerability...
KLA10982 PE vulnerability in Microsoft Server Software
An improper handling of web requests was found in Microsoft Outlook Web Access. By exploiting this vulnerability malicious users can gain privileges. A successful exploit allows attackers to perform content/script injection attacks, make user disclose sensitive information. This vulnerability can...
KLA10951 ACE vulnerability in Google Chrome
Incorrect optimisation assumptions in V8 engine were found in Google Chrome. By exploiting this vulnerability malicious users can perform arbitrary read/write operations and execute arbitrary code. This vulnerability can be exploited remotely via a specially designed HTML page. Original advisorie...
KLA10939 Arbitrary code execution vulnerability in Microsoft Office Word 2016 and Microsoft SharePoint Enterprise Server 2016
Memory corruption vulnerability was found in Microsoft Word 2016 and Microsoft SharePoint Enterprise Server 2016. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed document. Original advisories MS17-0...
KLA11907 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of...
KLA10809 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information or cause denial of service. Below is a complete list of vulnerabilities 1. An characters handling can be exploited...
KLA10890 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer & Edge. For details look at KLA10810. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: don’t click a link in an email message or...
KLA10738 Multiple vulnerabilities in Microsoft Office
Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities 1. Improper memory objects handling can be exploited remotely via a...
KLA10676 Multiple vulnerabilities in Microsoft JScript and VBScript
Multiple serious vulnerabilities have been found in Microsoft JScript and VBScript. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improperly handling objects...
KLA10679 Multiple vulnerabilities in Adobe Flash Player & AIR
Multiple serious vulnerabilities have been found in Adobe Flash Player & AIR. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities 1. An unknown vulnerability can be...
KLA10672 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, gain privileges, spoof user interface, impact local files, execute arbitrary code or obtain sensitive information. Below...
KLA10626 Code execution vulnerability in Adobe Flash Player
Use-after-free and memory corruption vulnerabilities were found in Adobe Flash Player. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via an unknown vectors. Original advisories Adobe advisory Exploitation Public...
KLA10553 Denial of service vulnerabilities in Oracle MySQL
An unspecified vulnerabilities were found in Oracle MySQL. By exploiting these vulnerabilities malicious users can affect availability. These vulnerabilities can be exploited remotely via an unknown vectors related to InnoDB, Federated, DDL, Partition, SP, XA, Encryption and other unknown vectors...
KLA10540 Multiple vulnerability in Apple OS X
Multiple serious vulnerabilities have been found in Apple OS X. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Unsaf...
KLA10471 Multiple vulnerabilities in VBScript engine
An unspecified vulnerability was found in VBScript engine. By exploiting this vulnerability malicious users execute arbitrary code or cause denial of service. This vulnerability can be exploited remotely via a specially designed web site. Original advisories Microsoft advisory CVE-2015-0032 Relat...
KLA10464 Multiple vulnerabilities in Mozilla products
Multiple serious vulnerabilities have been found in Mozilla products. Malicious users can exploit these vulnerabilities to cause denial of service, gain privilleges, obtain sensitiv information, execute arbitrary code, spoof user interface or read local files. Below is a complete list of...
KLA10475 Code execution vulnerability in Internet Explorer
Multiple critical vulnerabilities have been found in Internet Explorer. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. An unknwon...
KLA10289 OSI vulnerability in PHP
An unspecified vulnerability was found in PHP. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely at a point related to phpinfo. Original advisories - Related products PHP CVE list CVE-2014-4721 warning Solution Update t...
KLA10237 ACE vulnerability in Kingsoft Writer
A buffer overflow was found in Kingsoft Writer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed RTF document. Original advisories Kingsoft bulletin Related products Kingsoft-Writer CVE list...
KLA10030 ACE vulnerabilities in Adobe Photoshop
Multiple serious vulnerabilities have been found in Adobe Photoshop. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities 1. Use-after-free vulnerability can be exploited via specially designed TIFF image. 2. Buffer overflow...
KLA10192 ACE vulnerability in HP Software Update
An unspecified vulnerability was found in an HP Software Update. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to Hpufunction.dll. Original advisories - Exploitation Public exploits exist for th...
KLA10143 ACE vulnerability in EF Commander
A buffer overflow was found in EF Commander. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ISO or user assistance. Original advisories - Related products EF-Commander CVE list CVE-2007-0180 high...
KLA10362 OSI vulnerability in The Bat
An insecure ACL was found in The Bat! By exploiting this vulnerability malicious users can read e-mail messages. This vulnerability can be exploited locally. Original advisories - Related products The-Bat! CVE list CVE-2003-1133 warning Solution Update to latest version Impacts OSI Obtain sensiti...
KLA73894 Multiple vulnerabilities in TeamViewer
Remote code execution vulnerability was found in TeamViewer. Malicious users can exploit this vulnerability to execute arbitrary code, bypass security restrictions. Original advisories Hotfix for curl and libcurl vulnerability Exploitation Public exploits exist for this vulnerability. Malware...
KLA62469 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in FedCM can be exploited to...
KLA61362 Multiple vulnerabilities in Apache Tomcat
Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Improper Input Validation vulnerability in HTTP trailer headers...
KLA52396 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Vulkan can be exploited to cause denial of service or execute...
KLA49378 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Memory safety vulnerability can...
KLA12605 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in .NET can be exploited remotely to spoof user interface. ...
KLA12568 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, gain privileges, execute arbitrary code, bypass security restrictions. Below is a complete list of...
KLA12503 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Windows ALPC can be exploited remotely to gain...
KLA12184 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. A data validation vulnerability in V8 can be exploited to bypass security...
KLA12090 Multiple vulnerablities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, execute arbitrary code, spoof user interface, perform cross-site scripting attack. Below is a complete...
KLA12068 SUI vulnerabilities in Microsoft Exchange Server
A spoofing vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2021-24085 CVE-2021-1730 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More...
KLA11978 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities...
KLA11952 Multiple vulnerabilities in Microsoft ESU products
Multiple vulnerabilities were found in Microsoft ESU products. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerabili...
KLA12368 Multiple vulnerabilities in Apache HTTP Server
Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in “Cache-Digest” header c...
KLA11920 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerabilit...
KLA11813 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Internet Explorer...
KLA11791 Multiple vulnerabilities in Apple iTunes
Multiple vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. A logic vulnerability in...
KLA11723 Policy enforcement vulneravility in Opera
Policy enforcement vulneravility was found in Opera. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Download for Opera 67 Stable Channel Update for Desktop Related products Opera CVE list CVE-2020-6420 high Solution Update to the latest version...