3996 matches found
KLA10651 Code injection vulnerability in VLC Media Player
Lack of content restrictions was found in VLC Media Player. By exploiting this vulnerability malicious users can inject arbitrary code. This vulnerability can be exploited remotely via a specially designed URL. Technical details There is lack of URL neutralization in error page generator at VLC w...
KLA10649 Denial of service vulnerabilities in Wireshark
An unspecified vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed file or network packet. Technical details This vulnerability related to next conditions...
KLA10577 Arbitrary code execution vulnerabilities in Windows Journal
An unspecified vulnerabilities were found in Windows products. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed Journal file. Original advisories Microsoft Advisory CVE-2015-1697 CVE-2015-1696...
KLA10453 Multiple vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. These vulnerabilities can be exploited via a specially designed packet. Original advisories - Related products Wireshark CVE list CVE-2015-0564 warning...
KLA10018 SUI vulnerability in WinRAR
UI spoofing vulnerability was found in WinRar. By exploiting this vulnerability maliciousmalicious userss can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed ZIP archive file. Original advisories rarlab An7i Security Related products WinRAR CV...
KLA10103 LPE vulnerability in Cisco AnyConnect
A buffer overflow was found in Cisco AnyConnect. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally. Original advisories Cisco bulletin Related products Cisco-AnyConnect-VPN-Client CVE list CVE-2013-1173 high Solution Update to latest...
KLA10139 Vulnerability in Dolphin Browser HD
An unspecified vulnerability was found in the Dolphin Browser HD. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited via an unknown vector. Original advisories - Related products Dolphin-Browser-HD-for-Android CVE list CVE-2012-1392...
KLA12360 ACE vulnerability in Microsoft Windows
Code execution vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability in Human Interface Device HID to execute arbitrary code. Original advisories CVE-2011-0638 Related products Microsoft-Windows-Vista Microsoft-Windows-Server-2012 Microsoft-Windows-8...
KLA10115 SB vulnerability in Citrix Web Interface
An unspecified vulnerability was found in the Citrix Secure Gateway. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network via a specially designed request. Original advisories Citrix bulletin Related products...
KLA10350 Vulnerabilities in Symantec
Unspecified vulnerabilities were found in Symantec AntiVirus. By exploiting these vulnerabilities malicious users can execute arbitrary code or cause denial of service. This vulnerability can be exploited remotely via specially designed CAB or RAR archives. Original advisories Symantec bulletin...
KLA10178 DoS vulnerability in Google Earth
A buffer overflow was found in Google Earth. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed file. Original advisories - Related products Google-Earth CVE list CVE-2006-7157 high Solution Update to...
KLA70466 Multiple vulnerabilities in Apache HTTP Server
Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities: 1. Security vulnerability in SSRF can be exploited to bypass security restrictions. 2. Security vulnerability ...
KLA65506 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Defender for IoT can be exploited...
KLA62621 Multiple vulnerabilities in OpenOffice
Multiple vulnerabilities were found in OpenOffice. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability can be exploited to cause denial of service. 2. Remote code...
KLA19257 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. Memory safety vulnerability can be exploited to execute...
KLA12582 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Azure Site Recovery can be...
KLA12538 DoS vulnerability in Opera
Type confusion vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Changelog for 85 Stable Channel Update for Desktop Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. Mor...
KLA12434 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in Task Manager can be exploited to execute arbitrary code or caus...
KLA12311 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in .NET Cor...
KLA12075 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions. Below is a complete list of...
KLA12046 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in autofill component can be exploited to...
KLA11983 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebRTC can be exploited t...
KLA11866 Multiple vulnerabilities in Oracle Virtualbox
Multiple vulnerabilities were found in Oracle Virtualbox. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Vulnerability in Core component of Oracle VM VirtualBox can be exploited to obtain...
KLA11688 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code, inject malicious code. Below is a complete list of vulnerabilities: 1. Out of bounds vulnerability can be...
KLA11421 Multiple vulnerabilities in Adobe Acrobat and Acrobat Reader
Multiple vulnerabilities were found in Adobe Acrobat and Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. Multiple buffer errors vulnerabilities can be exploited...
KLA11407 ACE vulnerability in LibreOffice
A directory traversal vulnerability were found in LibreOffice. Malicious users can exploit this vulnerability remotely via specially crafted document to execute arbitrary code. Original advisories CVE-2018-16858 Directory traversal flaw in script execution Exploitation Public exploits exist for...
KLA11411 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: Use-after-free vulnerability can be exploited remotely via specially designed HTML5...
KLA11151 Denial of service vulnerabilities in Wireshark
Multiple vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities remotely to cause a denial of service via injecting a malformed packet. Technical details This vulnerabilities related to next services: 1. NetBIOS dissector; 2. IWARPMPA dissector; 3. CIP...
KLA11094 Multiple vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause a denial of service. Below is a complete list of vulnerabilities: 1. Buffer overflow vulnerability in the IrCOMM dissector can be exploited remotely via a specially designed...
KLA11090 Multiple vulnerabilities in Mozilla Thunderbird
Multiple serious vulnerabilities have been found in Thunderbird. Malicious users can exploit these vulnerabilities to cause a denial of service, bypass security restrictions execute arbitrary code, obtain sensitive information and spoof user interface. Below is a complete list of vulnerabilities:...
KLA11088 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer. For details look at KLA11085. Original advisories ADV170010 Related products Microsoft-Windows CVE list KB list 4034662 Solution Install necessary updates from the KB section, that are listed in your Windo...
KLA11014 Mupltiple vulnerabilities in PostgreSQL
Multiple serious vulnerabilities have been found in PostgreSQL. Malicious users can exploit these vulnerabilities to bypass security restrictions and obtain sensitive information. Below is a complete list of vulnerabilities: 1. An incorrect check of user privileges in some selectivity estimation...
KLA11007 Multiple vulnerabilities in Mozilla Thunderbird
Multiple serious vulnerabilities have been found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, read and write local files. Below is a complete list of vulnerabilities: 1. A use-after-free vulnerabilit...
KLA11060 Multiple vulnerabilities in Microsoft Windows Hyper-V
Multiple serious vulnerabilities have been found in Microsoft Windows Hyper-V. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code and cause a denial of service. Below is a complete list of vulnerabilities: 1. Multiple vulnerabilities related ...
KLA10947 Denial of service vulnerability in Kaspersky products
Vulnerability was found in window broadcast message handling functionality of Kaspersky products. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited locally via a specially designed unhandled window messages, which cause termination...
KLA11904 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in...
KLA10909 Security vulnerabilitity in Mozilla Firefox
An unspecified vulnerability was found in Mozilla Firefox 49 and 50. It can be exploited to gain priveleges. Technical details Redirection from HTTP connection to a data:URL assigns the referring of site origin to the data: URL in some cases. Because of that same-origin violations against a domai...
KLA10905 Multiple denial of service vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. These vulnerabilities can be exploited remotely via a specially designed files or packets. Below is a complete list of vulnerabilities 1. Lack of certain...
KLA10903 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Heap corruption at FFmpeg can be exploited remote...
KLA10889 Multiple vulnerabilities in Mozilla Thunderbird
Multiple serious vulnerabilities have been found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. Heap buffer...
KLA10830 Multiple vulnerabilities in Adobe Flash Player
Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Type confusion, use-after-free, heap...
KLA10712 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, inject arbitrary code or execute arbitrary code. Below is a complete list of vulnerabilities 1. Improper objects handling ...
KLA10693 Information disclosure vulnerability in Microsoft Lync & Skype for Business
An improper information sanitization was found in Microsoft Lync and Skype for Business. By exploiting this vulnerability malicious users can execute arbitrary code or obtain sensitive information. This vulnerability can be exploited remotely via a specially designed message. Technical details Th...
KLA10641 Multiple vulnerabilities in HP System Management Homepage
Multiple serious vulnerabilities have been found in HP System Management Homepage. Malicious users can exploit remotely these vulnerabilities to cause a denial of service, execution of arbitrary code, unauthorized modifications and access, disclosure of information and CSRF cross-site request...
KLA10638 Multiple vulnerabilities in Oracle MySQL
Unspecified vulnerabilities were found in MySQL Server. Malicious users can exploit these vulnerabilities to affect confidentiality,integrity and availability via unknown vectors related to Partition, DML, GIS and RBR. Original advisories Oracle Critical Patch Update Advisory Related products MyS...
KLA10596 Code execution vulnerability in Windows Media Player
An unspecified vulnerability was found in Windows Media Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DataObject. Original advisories Microsoft bulletin CVE-2015-1728 Related products...
KLA10201 ACE vulnerability in IBM
An unspecified vulnerability was found in IBM products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to gcc keys. Original advisories - Related products IBM-Notes IBM-Domino CVE list CVE-2014-0892...
KLA10349 Vulnerability in Sylpheed
An unspecified vulnerability was found in Sylpheed. By exploiting this vulnerability malicious users can cause unknown impact via unknown vectors. Original advisories Changelog Related products Sylpheed CVE list Solution Update to latest version Affected Products - Sylpheed versions 3.3.0 and...
KLA10190 DoS vulnerability in HP Photo Creations
A buffer overflow was found in HP Photo Creation. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed web page. Original advisories iss Xforce Related products HP-Photo-Creations CVE list Solution Upda...
KLA10054 ACE vulnerability in Akamai Download Manager
CRLF injection vulnerability was found in the Akamai Download Manager. By using this vulnerability spiteful abuser can execute arbitrary code. This vulnerability can be exploited from network at point related to unknown. Via specially designed URL. Original advisories vulnerability description...