3996 matches found
KLA12160 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. A security bypass vulnerability in Core component can...
KLA12112 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory...
KLA12049 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebS...
KLA12026 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Dynamics CRM Webclie...
KLA11861 Multiple vulnerabilities in Microsoft Products (OSS)
Multiple vulnerabilities were found in Microsoft Products Open Source Software. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in Bond can be exploited remotely via...
KLA11828 Use after free vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service, bypass security restrictions. Original advisories Changelog for Opera 69 Stable Channel Update for Desktop Related products Opera CVE list CVE-2020-6509 high Solution Update...
KLA11669 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, perform cross-site scripting attack. Below is a complete list of vulnerabilities: 1. A memory corruption...
KLA11578 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Microsoft Edge bas...
KLA11738 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. DoS vulnerability in V8 component can be exploited remotely via special crafted webpage. 2. OSI...
KLA11500 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Microsoft...
KLA11599 DoS vulnerability in LibreOffice
Unspecified vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2018-14939 Related products LibreOffice CVE list CVE-2018-14939 critical Solution Update to the latest version Get LibreOffice Impacts DoS Denial ...
KLA11855 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges, cause denial of service. Below is a complete list of vulnerabilities: 1. An information...
KLA11103 Multiple arbitrary code execution vulnerabilities in Adobe Flash Player
Multiple serious memory corruption vulnerabilities have been found in Adobe Flash Player versions earlier than 27.0.0.130. Malicious users can exploit these vulnerabilities to execute arbitrary code. NB: These vulnerabilities does not have any public CVSS ratings, so overall rating can be changed...
KLA11081 Arbitrary code execution vulnerability in Microsoft Edge
An improper access to objects in memory was found in Microsoft Edge. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed website. NB: Not every vulnerability already has CVSS rating so cumulative CVSS...
KLA10949 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome prior to 55.0.2883.75. Malicious users can exploit these vulnerabilities to bypass security restrictions, make code injections and possibly cause denial of service, obtain sensitive information. Below is a complete list of...
KLA10867 Denial of service vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet. Technical details These vulnerabilities related to multiple dissectors: 1...
KLA10843 Code execution vulnerability in Microsoft JScript and VBScript engines
An improper objects handling was found in Microsoft JScript and VBScript. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Technical details To mitigate this vulnerability you can restrict...
KLA10815 Security bypass vulnerability in cURL
An improper TLS connections handling was found in cURL. By exploiting this vulnerability malicious users can bypass sec. This vulnerability can be exploited remotely via TLS certificate manipulations. Technical details Libcurl affected only if mbedTLS or PolarSSL as TLS backend. Original advisori...
KLA10777 Code execution vulnerability in ABB Panel Builder 800
An unspecified vulnerability was found in ABB Panel Builder 800. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a DLL hijack. Technical details This vulnerability can be mitigated via disabling .pba files associations...
KLA10754 Multiple vulnerabilities in Microsoft Office
Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code or gain privileges. Below is a complete list of vulnerabilities 1. An improper memory objects handling can be exploited remotely via a specially design...
KLA10749 Multiple vulnerabilities in MariaDB
Multiple serious vulnerabilities have been found in MariaDB. Malicious users can exploit these vulnerabilities to cause denial of service, affect integrity, bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities 1. Improper server hostname verification...
KLA10673 Security bypass vulnerabilties at Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities 1. Improper method restrictions at Google V8 can be exploited remotely via a specially designed method...
KLA10671 Flash Player update for Google Chrome
Google Chrome was updated to address vulnerabilities in Flash Player. For details look at KLA10670. Original advisories Blog entry Exploitation Public exploits exist for this vulnerability. Related products Google-Chrome CVE list CVE-2015-5573 critical CVE-2015-5574 critical CVE-2015-5575 critica...
KLA10657 Multiple vulnerabilities in Microsoft communication services
Improper content sanitization at jQuery engine and other vectors were found in Lync Server and Skype for Business Server. By exploiting these vulnerabilities malicious users can gain privileges or obtain sensitive information. These vulnerabilities can be exploited remotely via a specially design...
KLA10624 Privelege escalation vulnerability in VMware products
An unspecified vulnerability was found in VMware products. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited remotely via a thread manipulations. Original advisories VMware advisory Related products VMware-Workstation VMware-Player...
KLA10520 Multiple vulnerabilities in HP Operations Orchestration
An unspecified vulnerabilities were found in HP Operations Orchestration. By exploiting these vulnerabilities malicious users can bypass authentication,obtain sensitive information or modify data. These vulnerabilities can be exploited remotely via an unknown vector. Original advisories HP securi...
KLA10516 Denial of service vulnerability in MongoDB
An unspecified vulnerability was found in MongoDB. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed string in BSON request. Original advisories MongoDB JIRA Related products MongoDB CVE list...
KLA10509 Multiple vulnerabilities in McAfee DLPe
Multiple serious vulnerabilities have been found in McAfee DLPe. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, bypass security restrictions, inject arbitrary code or write local files. Below is a complete list of vulnerabilities 1. XSS...
KLA10176 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service and other possible impact. Below is a complete list of vulnerabilities 1. Unknown vectors can be exploited remotely; 2...
KLA10023 DoS vulnerability in GOM Media Player
An unspecified vulnerability was found in the GOM Media Player. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to an unknown application via a specially designed .OGG file. Original advisories N...
KLA10019 DoS vulnerability in Winamp
An unspecified vulnerability was found in Winamp. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to Winamp F263 Decoder Service via a malformed .FLV file. Original advisories NVD Related product...
KLA10543 Security bypass vulnerability in Microsoft Silverlight
An unspecified vulnerability was found in Microsoft Silverlight. By exploiting this vulnerability malicious users can bypass security restrictions. This vulnerability can be exploited remotely via an unknown vectors. Original advisories MS14-014 CVE-2014-0319 Related products Microsoft-Silverligh...
KLA10243 DoS vulnerability in LibreOffice
An unspecified vulnerability was found in LibreOffice. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed XML document. Original advisories LibreOffice advisory Related products LibreOffice CVE list...
KLA10233 ACE vulnerability in Kantaris Media Player
A buffer overflow was found in Kantaris Media Player. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed file. Original advisories Juniper description Related products...
KLA10244 ACE vulnerability in LinkedIn Browser Toolbar
Improper update verification was found in the LinkedIn Browser Toolbar. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a man-in-the-middle attack. Original advisories - Related products LinkedIn-Internet-Explorer-Toolb...
KLA10387 DoS vulnerability in VMware
An unspecified vulnerability was found in VMware products. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via vectors related to Reconfig.DLL Original advisories VMware advisory Related products VMware-Workstation...
KLA10390 LPE vulnerability in WebAdmin
An nspecified vulnerability was found in WebAdmin. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited remotely via mailbox manipulations. Original advisories - Related products WebAdmin CVE list CVE-2006-4620 warning Solution Update to latest...
KLA10378 DoS vulnerability in Veritas Backup Exec Remote Agent
An unspecified vulnerability was found in Veritas Backup Exec Remote Agent. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited locally. Original advisories Symantec advisory Related products VERITAS-Backup-Exec-Remote-Agent CVE list...
KLA10231 DoS vulnerability in browser
An unspecified vulnerability was found in the browsers. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed web site. Original advisories - Related products Mozilla-Firefox K-Meleon Netscape CVE list...
KLA10380 ACE vulnerability in Veritas Storage
A buffer overflow was found in Veritas Storage. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at points related to DCOM server components. Original advisories Symantec bulletin Related products VERITAS-Storage-Exec...
KLA73225 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. An elevation ...
KLA71396 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Inappropriate implementation vulnerability in V8 can be exploited to cause denial of service...
KLA65505 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft SharePoint Server can be exploited remotely to spoof us...
KLA65510 Multiple vulnerabilities in Microsoft Outlook
A spoofing vulnerability was found in Microsoft Outlook. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-20670 Related products Microsoft-Outlook Microsoft-Windows CVE list CVE-2024-20670 critical KB list Solution Install necessary updates from...
KLA65472 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Out of bounds memory access vulnerability in V8 can be exploited to...
KLA64088 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, spoof user interface, execute arbitrary code, gain privileges, bypass security restrictions. Below is a complete list of...
KLA63685 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Network can be exploited to cause denial of service or...
KLA62432 SUI vulnerability in Microsoft Developer Tools
A spoofing vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2023-21751 Related products Microsoft-Azure CVE list CVE-2023-21751 high KB list Solution Install necessary updates from the KB section,...
KLA61972 Multiple vulnerabilities in Adobe Acrobat and Adobe Acrobat Reader
Multiple vulnerabilities were found in Adobe Acrobat and Adobe Acrobat Reader. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerability can be exploited execute arbitrary...
KLA60816 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in vp8 encoding can be exploited to cause denial of servic...