3996 matches found
KLA11478 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, bypass security restrictions, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory...
KLA11463 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Infinite loop vulnerability in GSUP dissector can be exploited remotely via specially designed packet to cause denial of...
KLA11424 PE vulnerability in Microsoft Dynamics 365
An elevation of privilege vulnerability was found in Microsoft Dynamics 365 Server. Malicious users can exploit this vulnerability remotely via specially crafted request to gain privileges. Original advisories CVE-2018-8654 Related products Microsoft-Dynamics-365 CVE list CVE-2018-8654 warning KB...
KLA11030 Speculative Store Bypass and Rogue System Register Read vulnerabilities in Microsoft Surface Products
On January 3, 2018, Microsoft released advisories and security updates related to a recently discovered class of hardware vulnerabilities known as Spectre and Meltdown that affect AMD, ARM, and Intel CPUs. On May 21, 2018, Intel announced the Rogue System Registry Read vulnerability. Also a new...
KLA11216 ACE vulnerability in Microsoft Exchange Server
A remote code execution vulnerability was found in Microsoft Exchange Server. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted file. Original advisories CVE-2018-0986 Exploitation Public exploits exis...
KLA11031 Multiple vulnerabilities in Foxit Reader
Multiple serious vulnerabilities have been found in Foxit Reader and Foxit Phantom PDF. Malicious users can exploit these vulnerabilities to obtain sensitive information or execute arbitary code. Below is a complete list of vulnerabilities: 1. Multiple vulnerabilities related to an improper parsi...
KLA10855 Memory corruption vulnerability in Apache OpenOffice
An unspecified vulnerability was found in Apache OpenOffice Impress. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed .ODP and .OTP files. Technical details An exploitable...
KLA10842 Multiple code execution vulnerabilities in Microsoft Office
An improper memory objects handling and XLA files handling were found in Microsoft Office. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed files. Technical details To mitigate some of these...
KLA10717 Multiple vulnerabilities in Microsoft Silverlight
Multiple serious vulnerabilities have been found in Microsoft Silverlight. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security restrictions. Below is a complete list of vulnerabilities 1. Improper requests handling can be exploited remotely via a special...
KLA11372 Multiple vulnerabilities in OpenOffice
Multiple serious vulnerabilities have been found in OpenOffice. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities: Below is a complete list of vulnerabilities: 1. Lack o...
KLA10700 Code execution vulnerability in LibreOffice
Lack of bookmarks restrictions was found in LibreOffice & OpenOffice. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DOC file. Technical details To exploit this...
KLA10595 Flash Player update for Google Chrome
Google Chrome was updated to address vulnerabilities in Flash Player. For details look at KLA10593. Original advisories Google blog record Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details...
KLA10547 Multiple vulnerabilities in Adobe Flash Player
Memory corruption, buffer overflow, use-after-free, double free and memory leak vulnerabilities were found in Adobe Flash. By exploiting these vulnerabilities malicious users can bypass security restrictions, execute arbitrary code or obtain sensitive information. These vulnerabilities can be...
KLA10456 SB vulnerability in MS Office
An use-after-free vulnerability was found in Microsoft Office. By exploiting this vulnerability malicious users can bypass ASLR protection. This vulnerability can be exploited remotely via a specially designed document. Original advisories MS bulletin CVE-2014-6362 Related products Microsoft-Offi...
KLA10340 Multiple vulnerabilities in Splunk
Multiple serious vulnerabilities have been found in Splunk. Malicious users can exploit these vulnerabilities to inject arbitrary script or read local files. Below is a complete list of vulnerabilities 1. An XSS vulnerability can be exploited remotely via specially designed HTPP headers; 2. A...
KLA10077 WLF vulnerability in Apple iTunes
A permissions vulnerability was found in Apple iTunes. By exploiting this vulnerability malicious users can modify local files. This vulnerability can be exploited locally via standard file system operations. Original advisories Apple bulletin Related products Apple-iTunes CVE list CVE-2014-1347...
KLA10212 DoS vulnerability in IBM WebSphere MQ
An unspecified vulnerability was found in IBM WebSphere MQ. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via unspecified vectors. Original advisories - Related products IBM-WebSphere-MQ CVE list CVE-2014-0911 warning...
KLA10587 Denial of service vulnerability in Wireshark
Lack of length validation was found in Wireshark. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed packet. Original advisories WNPA security advisory Related products Wireshark CVE list CVE-2013-408...
KLA10099 LPE vulnerability in Camtasia Studio
An untrusted path vulnerability was found in Camtasia Studio. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via DLL hijacking. Original advisories - Related products Camtasia-Studio CVE list CVE-2010-5234 high Solution Update to...
KLA10292 Multiple vulnerabilities in PcVue
Multiple critical vulnerabilities have been found in PcVue. Malicious users can exploit these vulnerabilities to execute arbitrary code, modify local files or cause denial of service. Below is a complete list of vulnerabilities 1. Unspecified vectors can be exploited remotely; 2. A buffer overflo...
KLA10317 ACE vulnerability in SafeNet SoftRemote
A buffer overflow was found in SoftRemote. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Related products SafeNet-SoftRemote CVE list CVE-2009-1943 critical Solution...
KLA10239 Multiple vulnerabilities in KIWI CatTools
A buffer overflow was found in Kingsoft Writer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed WPS file. Below is a complete list of vulnerabilities 1. A directory traversal vulnerability can be...
KLA10252 ACE vulnerability in multiple software
A buffer overflow was found in multiple products, exploiting NCTAudioFile2.AudioFile. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed call. Original advisories - Related products...
KLA10134 DoS vulnerability in IBM DB2
An unspecified vulnerability was found in the IBM DB2 Universal Database. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to INSO services or db2fmp processes. Original advisories - Related...
KLA10264 LPE vulnerability in PsTools
An improper disconnection was found in PsTools. By exploiting this vulnerability malicious users can gain privileged access to shares. This vulnerability can be exploited locally. Original advisories - Related products Microsoft-PsSuspend Microsoft-PsExec Microsoft-PsInfo Microsoft-PsGetSid...
KLA71827 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, bypass security restrictions, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Inappropriate...
KLA71478 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in .NET and Visua...
KLA67434 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, cause denial of service, obtain sensitive information. Below is a complete list of...
KLA65225 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. Out of...
KLA63323 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Integer underflow vulnerability in WebUI...
KLA62822 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A security feature bypass vulnerability in NET, .NET...
KLA61888 DoS vulnerability in Google Chrome
Use after free vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service, execute arbitrary code. Original advisories Chrome Releases: Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2023-5996 critical Solutio...
KLA61312 DoS vulnerability in Opera
Heap buffer overflow vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Opera 102.0.4880.51 Stable update Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability. Malware exists for...
KLA60569 DoS vulnerablity in Microsoft Browser
Heap buffer overflow vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2023-4863 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...
KLA61309 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in V8 can be exploited to cause denial of...
KLA51620 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Memory safety vulnerability can be...
KLA48769 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in Navigation can be exploit...
KLA48563 ACE vulnerability in Microsoft Mariner
A remote code execution vulnerability was found in Microsoft Mariner. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2022-43552 Related products CBL-Mariner-2.0 CVE list CVE-2022-43552 high KB list Solution Install necessary updates from the KB...
KLA20200 DoS vulnerability in Opera
Type confusion vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Opera 94 Stable Exploitation Public exploits exist for this vulnerability. Related products Opera CVE list CVE-2022-4262 critical Solution Update to the...
KLA15724 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in ANGLE can be exploited to...
KLA12595 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in cursor can be exploited to spoo...
KLA12592 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free in Views can be exploited to cause denial of service or execute arbitrary...
KLA12542 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code and cause denial of service. Original advisories MFSA2022-19 Exploitation Public exploits exist for this vulnerability. Related products Mozilla-Firefox-ESR CVE...
KLA12555 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in ANGLE can be exploited to cause denial of service or execute arbitrar...
KLA12511 Remote code execution vulnerability in Windows Apps
Remote code execution vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2022-26903 Related products Microsoft-Excel Microsoft-Word CVE list CVE-2022-26903 critical KB list Solution Install necessary updates...
KLA12383 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Defender f...
KLA12376 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1...
KLA12255 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft SharePoint Server can be exploited remotely to to spoof...
KLA12148 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, execute arbitrary code, spoof user interface, gain privileges. Below is a complete list of...
KLA12135 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. A security vulnerability can be exploited via special crafted version of key to...