3996 matches found
KLA10138 ACE vulnerability in DjVu Browser Plug-in
A buffer overflow was found in the DjVu Browser Plug-in. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed djvu file. Original advisories Changelog Related products DjVu-Browser-Plug-In CVE list...
KLA10075 Multiple vulnerabilities in Apple Safari
Multiple critical vulnerabilities have been found in Apple Safari. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, inject code, bypass security restrictions, spoof user interfaces or read local files. Below is a complete list of...
KLA10179 Vulnerability in Google Desktop
An unspecified vulnerability was found in Google Desktop. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited by vectors related to Gadgets. Original advisories securityfocus Related products Google-Desktop CVE list Solution Update to...
KLA10097 WLF vulnerability in CDBurnerXP
An unspecified vulnerability was found in CDBurnerXP. By exploiting this vulnerability malicious users can overwrite arbitrary files. This vulnerability can be exploited from the network at a point related to NMS DVD Burning SDK. Original advisories vulnerability description Exploitation Public...
KLA61934 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebAudio can be exploited to cause denia...
KLA50771 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability...
KLA50316 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, spoof user interface, bypass security restrictions, cause denial of service. Below is a...
KLA48555 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in GitHub can be exploited remotely to gain...
KLA20167 Multiple vulnerabilities in Apache HTTP Server
Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in moddav can be exploited to cause denial of...
KLA20033 SB vulnerability in Apache Tomcat
Security vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Apache Tomcat 8.x vulnerabilities Apache Tomcat 10.1.x vulnerabilities Related products Apache-Tomcat CVE list CVE-2022-42252 critical Solution...
KLA12541 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code and cause denial of service. Original advisories MFSA2022-19 Exploitation Public exploits exist for this vulnerability. Related products Mozilla-Thunderbird CVE...
KLA12497 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Out of bounds memory read vulnerability in JIT Codegen Extensions...
KLA12439 Multiple vulnerabilities in Samba
Multiple vulnerabilities were found in Samba. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Out of bounds heap read write vulnerability can be exploited remotely to execute arbitrary code. 2...
KLA12437 Multiple vulnerabilities in Foxit PDF Reader
Multiple vulnerabilities were found in Foxit PDF Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability can be...
KLA12386 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Office app can be exploited remotely to...
KLA12351 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Use aft...
KLA12309 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions, obtain sensitive information, gain privileges, execute arbitrary code, cause denial of service. Below is a...
KLA12257 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in .NET Core and Visual Studio can ...
KLA12206 Out of bounds read vulnerability in Mozilla Firefox
An out of bounds read vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability to obtain sensitive information, cause denial of service. Original advisories MFSA2021-27 Related products Mozilla-Firefox CVE list CVE-2021-29968 critical Solution Update to the lates...
KLA12161 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. A data validation vulnerability in V8 can be exploited to...
KLA12145 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An...
KLA12180 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in V8 can be exploited to cause denial of service. 2. Heap buffer...
KLA12041 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, spoof user interface, bypass security restrictions, cause denial of service. Below is a...
KLA12006 Multiple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. An input validation vulnerability in WebKit can be...
KLA11984 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security vulnerability in Core component of Oracle VM...
KLA12077 DoS vulnerability in Wireshark
A denial of service vulnerability was found in Wireshark. Malicious users can exploit this vulnerability to cause denial of service. Original advisories wnpa-sec-2020-09 · GVCP dissector infinite loop Related products Wireshark CVE list CVE-2020-15466 critical Solution Update to the latest versio...
KLA11773 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface. Below is a complete list of...
KLA11749 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to...
KLA11692 Multiple vulnerabilities in Microsoft products (ESU)
Multiple vulnerabilities were found in Microsoft Extended Security Updates. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege...
KLA11641 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Vulnerability in Core component of Oracle VM VirtualB...
KLA11714 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, cause denial of service. Below is a complete list of vulnerabilities: 1. Cross-origin data leak vulnerability can be exploited to arbitrary code executio...
KLA11504 Incorrect parameters parsing vulnerability in Mozilla Firefox
Vulnerability, related to insufficient vetting of parameters passed with the Prompt:Open IPC message was found in Mozilla Firefox. Malicious users can exploit this vulnerability via specially designed website to bypass security restrictions. Original advisories - Related products Mozilla-Firefox...
KLA11484 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in...
KLA11015 Race condition vulnerability in Google Chrome
A race condition vulnerability was found in the WebRTC component of Google Chrome earlier than 58.0.3029.96. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely. Technical details Vulnerability was found in framebuffer2.cc NB:...
KLA10998 Information disclosure vulnerability in Microsoft Windows Media Player
An improper handling of objects in memory was found in Microsoft Windows Media Player. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed website. Original advisories Microsoft Security Update...
KLA10930 Denial of service vulnerability in PHP
An unspecified vulnerability was found in PHP before 5.6.29 and 7.x before 7.0.14. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely via an empty boolean element in a wddxPacket XML document. Technical details This...
KLA10914 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome prior to 54.0.2840.59. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, inject code or possibly cause denial of service. Below is a complete list of vulnerabilities: 1. Missed...
KLA10886 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, conduct XSS attack, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An unknown vulnerabiliti...
KLA10859 Security bypass vulnerabilities in cURL
Multiple serious vulnerabilities have been found in cURL. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities 1. Use-after-free vulnerability can be exploited to control which connection is used; 2. An improper TLS...
KLA10826 OSI vulnerability in Microsoft Server Software
An information disclosure vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2016-0028 ADV160012 Related products Microsoft-Exchange-Server CVE list CVE-2016-0028 high KB list 3151086 315050...
KLA10736 Spoofing vulnerability in Microsoft Exchange Server
Improper web requests handling was found in Microsoft Exchange Server at Outlook Web Access. By exploiting this vulnerability malicious users can spoof user interface. This vulnerability can be exploited remotely via a specially designed email with malicious link. Original advisories CVE-2016-003...
KLA10725 Code execution vulnerabilities in Aurodesk Design Review
Multiple serious vulnerabilities have been found in Autodesk Design Review. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities 1. Integer overflow can be exploited remotely via a specially designed BMP file; 2. Buffer overflows...
KLA10663 Code execution vulnerability in Adobe Shockwave Player
An unspecified vulnerabilities were found in Adobe Shockwave Player. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via an unknown vectors. Original advisories Adobe Advisory Related products Adobe-Shockwave-Player C...
KLA10577 Arbitrary code execution vulnerabilities in Windows Journal
An unspecified vulnerabilities were found in Windows products. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed Journal file. Original advisories Microsoft Advisory CVE-2015-1697 CVE-2015-1696...
KLA10453 Multiple vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. These vulnerabilities can be exploited via a specially designed packet. Original advisories - Related products Wireshark CVE list CVE-2015-0564 warning...
KLA10018 SUI vulnerability in WinRAR
UI spoofing vulnerability was found in WinRar. By exploiting this vulnerability maliciousmalicious userss can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed ZIP archive file. Original advisories rarlab An7i Security Related products WinRAR CV...
KLA10103 LPE vulnerability in Cisco AnyConnect
A buffer overflow was found in Cisco AnyConnect. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally. Original advisories Cisco bulletin Related products Cisco-AnyConnect-VPN-Client CVE list CVE-2013-1173 high Solution Update to latest...
KLA10139 Vulnerability in Dolphin Browser HD
An unspecified vulnerability was found in the Dolphin Browser HD. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited via an unknown vector. Original advisories - Related products Dolphin-Browser-HD-for-Android CVE list CVE-2012-1392...
KLA12360 ACE vulnerability in Microsoft Windows
Code execution vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability in Human Interface Device HID to execute arbitrary code. Original advisories CVE-2011-0638 Related products Microsoft-Windows-Vista Microsoft-Windows-Server-2012 Microsoft-Windows-8...
KLA10115 SB vulnerability in Citrix Web Interface
An unspecified vulnerability was found in the Citrix Secure Gateway. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network via a specially designed request. Original advisories Citrix bulletin Related products...