3996 matches found
KLA10562 Obtain sensitive information vulnerability in Apple OS X
Improper password storage was found in OS X. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via logfile reading. NB: Vendor does not provide CVSS rating. This rating was calculated in Kaspersky Lab and can differ fro...
KLA10469 Multiple vulnerabilities in Microsoft products
Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or conduct code injection. Below is a complete list of vulnerabilities 1. An XSS vulnerabilities can be exploited remotely v...
KLA10071 DoS vulnerability in Apache Subversion
An unspecified vulnerability was found in Apache Subversion. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to moddavsvn via a specially designed OPTIONS request. Original advisories Apache...
KLA10070 RLF vulnerability in Apache Tomcat
An improper class constriction vulnerability was found in Apache Tomcat. By exploiting this vulnerability malicious users can read arbitrary files. This vulnerability can be exploited from the network at a point related to the XML parser via a specially designed web application. Original advisori...
KLA10211 SB vulnerability in IBM Tivoli Storage Manager
An improper permissions vulnerability was found in IBM Tivoli Storage Manager. By exploiting this vulnerability malicious users can bypass access restrictions. This vulnerability can be exploited locally via standard file operations. Original advisories - Related products Tivoli-Storage-Manager C...
KLA10189 DoS vulnerability in HP PKI
An unspecified vulnerability was found in the HP PKI. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely using a process name. Original advisories - Related products HP-PKI-ActiveX-Control-HPPKI.ocx/ CVE list CVE-2012-6501...
KLA10282 Multiple vulnerabilities in Oracle Database
Unspecified vulnerabilities were found in the Oracle Database. By exploiting these vulnerabilities malicious users can affect availability, confidentiality and integrity. These vulnerabilities can be exploited remotely via unknown vectors. Original advisories - Related products Oracle-Database CV...
KLA10263 LPE vulnerability in DebugView
An unspecified vulnerability was found in DebugView. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally at an unknown point. Original advisories - Related products Microsoft-DebugView CVE list CVE-2007-4223 critical Solution Update to...
KLA10032 Multiple vulnerabilities in Adobe Acrobat & Reader
Multiple serious vulnerabilities have been found in Adobe Acrobat & Reader. Malicious users can exploit these vulnerabilities to cause denial of service or remotely execute arbitrary code. Below is a complete list of vulnerabilities: 1. Vectors related to rendering can be exploited to overwrite a...
KLA77106 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code...
KLA60725 DoS vulnerability in Mozilla Thunderbird
Heap buffer overflow vulnerability was found in Mozilla Thunderbird. Malicious users can exploit this vulnerability to cause denial of service. Original advisories MFSA2023-40 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...
KLA50557 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, bypass security restrictions, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Security ...
KLA49156 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges, obtain sensitive information, execute arbitrary code, cause denial of service. Below is a complete list of...
KLA48960 DoS vulnerability in Google Chrome
Type confusion vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such...
KLA12584 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Skype for Business and Lync can be exploited...
KLA12375 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1...
KLA12286 Mutliple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Open Management Infrastructure can be exploited...
KLA12405 ACE vulnerability in OpenOffice
Code execution vulnerability was found in OpenOffice. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2021-30245 Related products OpenOffice.org CVE list CVE-2021-30245 critical Solution Update to the latest version Download OpenOffice Impacts ACE...
KLA12181 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. A use after free vulnerability in WebRTC can be exploited to cause denial of service or execute...
KLA12031 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A security bypass...
KLA12002 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An information disclosure...
KLA12013 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in Blink can be exploited to cause denial of service. 2. A heap...
KLA12076 A buffer overflow vulnerability in VLC media player
A buffer overflow vulnerability was found in VLC media player. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories SB-VLC3011 Related products VLC-media-player CVE list CVE-2020-13428 critical Solution Update to the latest version...
KLA11779 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1...
KLA11724 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Inappropriate implementation vulnerabilit...
KLA11638 ACE vulnerability in Microsoft Browsers
Unspecified vulnerability was found in Internet Explorer. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2020-0640 Related products Microsoft-Internet-Explorer CVE list CVE-2020-0640 critical KB list 4534306 4534276 4534271 4534293 4534297 453425...
KLA11626 SB vulnerability in Apache Tomcat
Unspecified vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories http://tomcat.apache.org/security-9.html http://tomcat.apache.org/security-8.html http://tomcat.apache.org/security-7.html Related products...
KLA11526 Multiple vulnerabilities in Apple iTunes
Multiple vulnerabilities were found in iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A stack overflow vulnerability in libxslt can be exploited...
KLA11499 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Word can be...
KLA11572 Multiple vulnerabilities in PostgreSQL
Multiple vulnerabilities were found in PostgreSQL. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A vulnerability in PostgreSQL can be exploited via reading th...
KLA11236 Multiple vulnerabilities in Oracle VM VirtualBox
Multiple serious vulnerabilities have been found in Oracle VM VirtualBox. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, gain privileges, read and write local files. Below is a complete list of vulnerabilities: 1. Multiple unspecified...
KLA11224 ACE vulnerability in Microsoft Internet Explorer
An unspecified vulnerability was found in Microsoft Internet Explorer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted website. Original advisories CVE-2018-8118 Related products...
KLA11145 Multiple vulnerabilities in Mozilla Thunderbird
Multiple serious vulnerabilities have been found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or bypass security restrictions. 1. A use-after-free vulnerability can be exploited remotely to cause denial of service; 2....
KLA11143 Multiple vulnerabilities in VMware Workstation, Fusion and Horizon View Client
Multiple serious vulnerabilities have been found in VMware Workstation, Fusion and Horizon View Client. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or bypass security restrictions. Below is a complete list of vulnerabilities: 1. A heap...
KLA11120 DoS vulnerability in Wireshark 2.0.x
A string validation error was found in DMP dissector in Wireshark 2.0.x. This vulnerability can be exploited remotely via a malformed packet to cause a denial of service. Original advisories CVE-2017-15191 Related products Wireshark CVE list CVE-2017-15191 warning Solution Update to the latest...
KLA11091 Multiple vulnerabilities in PostgreSQL
Multiple serious vulnerabilities have been found in PostgreSQL. Malicious users can exploit these vulnerabilities to bypass security restrictions and obtain sensitive information. Below is a complete list of vulnerabilities: 1. An improper handling of empty passwords in libpq can be exploited...
KLA11034 Multiple vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities possibly to cause a denial of service. Below is a complete list of vulnerabilities: 1. An improper handling of dividing by zero in the L2CAP dissector can be exploited remotely via a...
KLA11017 A buffer overflow vulnerability in LibreOffice
An out-of-bounds write vulnerability was found in LibreOffice. By exploiting this vulnerability malicious users can possibly cause a denial of service or obtain sensitive information. This vulnerability can be exploited remotely. Technical details This vulnerability is related to the ReadJPEG...
KLA10952 Multiple vulnerabilities in Mozilla Thunderbird
Multiple serious vulnerabilities have been found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause a denial of service, obtain sensitive information and execute arbitrary code. Below is a complete list of vulnerabilities 1. Errors in...
KLA11832 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. An elevation of...
KLA11270 Multiple vulnerabilities in Mozilla Firefox
Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service and obtain sensitive information. Below is a complete list of vulnerabilities: 1. An use-after-free vulnerability can be exploited remotely to cause...
KLA10816 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information or conduct another unknown impact. Below is a complete list of vulnerabilities: 1. Multiple...
KLA10678 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions cause denial of service or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper DOM tree workaround at Blink can be...
KLA10633 code execution vulnerability in Microsoft VBScript
An unspecified vulnerability was found in Microsoft VBScript. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed web site. Original advisories CVE-2015-2372 Related products...
KLA10620 Multiple vulnerabilities in Apple iTunes
Multiple memory corruption vulnerabilities were found in Apple iTunes. By exploiting these vulnerabilities malicious users can cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely via a man-in-the-middle attack at vectors related to iTunes Store...
KLA10488 Code injection vulnerabilities in IBM BPM
An unspecified vulnerabilities were found in IBM BPM. By exploiting these vulnerabilities malicious users inject arbitrary web script. This vulnerability can be exploited remotely via a specially designed URL or vectors related to data fields. Original advisories - Related products...
KLA10468 Multiple vulnerabilities in Microsoft products
Multiple critical vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information or execute arbitrary code. Below is a complete list of vulnerabilities 1. Improper memory allocation and some other...
KLA10612 Information disclosure vulnerability in Microsoft AD Federation Services
An unspecified vulnerability was found in Microsoft AD Federation Services. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via unattended workstation manipulations. Original advisories CVE-2014-6331 Related products...
KLA10343 Multiple vulnerabilities in Stunnel
An obsolete version of OpenSSL was found in Stunnel. By exploiting this vulnerability malicious users can cause denial of service, obtain sensitive information and bypass security. This vulnerability can be exploited remotely. Original advisories Stunnel changelog Exploitation Public exploits exi...
KLA10313 Vulnerability in SRWare Iron
An unspecified vulnerability was found in SRWare Iron. By exploiting this vulnerability malicious users can cause unknown impact. This vulnerability can be exploited from an unknown vector. Original advisories changelog Related products SRWare-Iron CVE list Solution Update to latest version...