3996 matches found
KLA52367 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, spoof user interface, execute arbitrary code, gain privileges. Below is a complete list of...
KLA48561 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics 365. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in Microsoft Dynamics 365 on-premises can be exploited...
KLA20231 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in 3D Builder can be exploited remotely to execute arbitrary code. 2. A remote...
KLA20188 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in GuestView can be exploited to cause...
KLA20016 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Information disclosure vulnerability in...
KLA19267 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Import can be exploited to cause...
KLA12576 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1...
KLA12547 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service, spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Denia...
KLA12475 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in XSLT parameter processing can be exploited to cause...
KLA12328 OSI vulnerability in LibreOffice
An improper Certificate Validation vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories Content Manipulation with Certificate Validation Attack Related products LibreOffice CVE lis...
KLA12324 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An use after free vulnerability in V8 can be exploited to cause denial ...
KLA12292 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free...
KLA12235 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebSerial can be exploited to cause denial of service or...
KLA12177 Multiple vulnerabilities in PostgreSQL
Multiple vulnerabilities were found in PostgreSQL. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability can be exploited to obtain sensitive information. 2...
KLA12142 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain privileges, bypass security restrictions, spoof user interface. Below is a...
KLA11925 Multiple vulnerabilites in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebUSB can be exploited to cause denial of service. 2. Heap buffer...
KLA11858 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Skype for Business via Microsoft Edge...
KLA11803 Path traversal vulnerabilities in Zoom
Path traversal vulnerabilities were found in Zoom. Malicious users can exploit this vulnerabilities to execute arbitrary code. Original advisories Talos Blog for Zoom CVE-2020-6109 CVE-2020-6110 Related products Zoom-MSI CVE list CVE-2020-6109 critical CVE-2020-6110 high Solution Update to the...
KLA11648 Multiple vulnerabilities in Foxit PDF Reader
A multiple use-after-free vulnerabilities in the JavaScript engine can be exploited by a specially crafted PDF document to execute arbitrary code. Original advisories Foxit Security Bulletins Related products Foxit-Reader Foxit-Phantom-PDF Foxit-Reader-Enterprise CVE list CVE-2019-5130 high...
KLA11519 Multiple vulnerabilities in LibreOffice
Multiple vulnerabilities were found in LibreOffice. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An improper script handling issue can be exploited remotely via a specially crafted file t...
KLA11487 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A type confusion...
KLA11897 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Diagnostics Hub...
KLA11733 Memory vulnerability in Opera
Memory vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Changelog for Opera 57 Stable Channel Update for Desktop Related products Opera CVE list CVE-2018-17478 high Solution Update to the latest version Download Opera...
KLA11292 Multiple vulnerabilities in Apple iTunes
Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code and bypass security restrictions. Below is a complete list of vulnerabilities: 1. An unknown...
KLA11731 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. PE vulnerability in extensions components can be exploited to gain privileges. 2. Type confusio...
KLA11095 Denial of service vulnerability in Wireshark
A buffer overflow vulnerability was found in the Profinet I/O dissector in Wireshark. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely via a specially designed packet, which is injected onto the wire, or by convincing a...
KLA11129 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause a denial of service, bypass security restrictions, spoof user interface, execute arbitrary code, escalate privileges, obtain sensitive information and perform cross-site...
KLA10936 Multiple vulnerabilities in Adobe Flash Player
Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information or execute arbitrary code. Below is a complete list of vulnerabilities: 1. Vulnerability related to handling TCP...
KLA10896 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer & Edge. For details look at KLA10830. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: don’t click a link in an email message or...
KLA10787 Code execution vulnerability in Micrsoft XML Core Services
An improper user input processing was found in Microsoft XML Core Services. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Original advisories CVE-2016-0147 Related products...
KLA10753 Multiple vulnerabilities in Microsoft .NET Framework
Multiple serious vulnerabilities have been found in Microsoft .NET Framework. Malicious users can exploit these vulnerabilities to cause denial of service or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper handling of XSLT can be exploited remotely via a...
KLA10699 Multiple vulnerabilities in LibreOffice
Multiple serious vulnerabilities have been found in LibreOffice. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Lack of configuration restrictions at LinkUpdateMod...
KLA10569 Vulnerability in OpenOffice
Vulnerability in OpenOffice’s HWP filter was found in Apache OpenOffice 4.1.1 and older. By exploiting this vulnerability malicious users can cause denial of service crash or possibly execute arbitrary code. This vulnerability can be exploited via a crafted HWP document. Original advisories...
KLA10541 Multiple vulnerabilities in Juniper Junos
Multiple serious vulnerabilities have been found in Juniper Junos. Malicious users can exploit these vulnerabilities to gainprivileges, execute arbitrary code orspoof user interface. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via unspecified vectors...
KLA10497 Security bypass vulnerability in IBM Rational ClearQuest
Cross site reference forgery was found in IBM Rational ClearQuest. By exploiting this vulnerability malicious users can bypass security restrictions. This vulnerability can be exploited remotely via a auth hijack. Original advisories - Related products IBM-Rational-ClearQuest CVE list CVE-2014-89...
KLA10459 Security bypass vulnerability in Microsoft Windows
Improper TLS restriction was found in Microsoft products. By exploiting this vulnerability malicious users bypass security. This vulnerability can be exploited remotely via a specially designed TLS traffic. Original advisories MS bulletin CVE-2015-1637 Related products Microsoft-Windows-Vista...
KLA10590 Multiple vulnerabilities in Microsoft Office
An unspecified vulnerabilities were found in Microsoft Office. By exploiting these vulnerabilities malicious users can cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed Office document. Original advisories CVE-2015-0064...
KLA10609 Multiple vulnerabilities in Microsoft Lync Server
Multiple serious vulnerabilities have been found in Microsoft Lync Server. Malicious users can exploit these vulnerabilities to inject arbitrary code or cause denial of service. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via a specially designed URL...
KLA10098 Vulnerability in CVSNT
An unspecified vulnerability was found in CVSNT. By exploiting this vulnerability malicious users can bypass permission checks, modify directories and execute arbitrary code. This vulnerability can be exploited remotely via specially designed branching. Original advisories March Hare bulletin...
KLA10129 ACE vulnerability in Core FTP
A buffer overflow was found in Core FTP. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed server reply. Original advisories Core FTP changelog Related products Core-FTP-client...
KLA10337 DoS vulnerability in Sophos UTM
A memory leak was found in Sophos UTM. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via unspecified vectors. Original advisories - Related products Sophos-Unified-Threat-Management CVE list CVE-2014-2537 high Solution...
KLA10078 DoS vulnerability in B-e-soft Artweaver
A buffer overflow vulnerability was found in Artweaver. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited from the network at a point related to unknown applications via a specially designed AWD...
KLA10146 OSI vulnerability in EMC NetWorker
An unspecified vulnerability was found in EMC NetWorker. By exploiting this vulnerability malicious users can obtain configuration information. This vulnerability can be exploited locally. Original advisories - Related products EMC-NetWorker CVE list CVE-2013-0943 warning Solution Update to lates...
KLA10431 LPE vulnerability in KeePass Password Safe
An untrusted path vulnerability was found in KeePass Password Safe. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via a DLL hijack. Original advisories - Related products KeePass-Password-Safe CVE list CVE-2010-5200 high Solution...
KLA10389 ACE vulnerability in Warcraft III
An unspecified vulnerability was found in Warcraft III. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed map. Original advisories - Related products Warcraft-III:-The-Frozen-Throne CVE list...
KLA10358 ACE vulnerability in multiple products
Buffer overflows were found in multiple products. By exploiting these vulnerabilities malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed tabs. Original advisories - Related products TSC2-Help-Desk ComponentOne-Studio-Enterprise-2005...
KLA10365 DoS vulnerability in Timbuktu
An unspecified vulnerability was found in Timbuktu. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed message. Original advisories - Related products Timbuktu-Pro CVE list CVE-2008-1337 warning...
KLA10060 ACE vulnerability in Kazaa & Grokster
A buffer overflow vulnerability was found in Kazaa & Grokster. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to Altnet Download Manager via a specially designed installation method call. Origina...
KLA10251 DoS vulnerability in Clearswift MIMEsweeper
An unspecified vulnerability was found in Clearswift MIMEsweeper. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed RAR file. Original advisories - Related products MIMEsweeper-for-Web CVE list...
KLA10215 DoS vulnerability in IDA pro
An unspecified vulnerability was found in IDA Pro. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed dll name. Original advisories - Related products IDA-Pro CVE li...