3996 matches found
KLA11205 Multiple vulnerabilities in IrfanView
Multiple serious vulnerabilities have been found in IrfanView 4.50. Malicious users can exploit these vulnerabilities to cause a denial of service or execute arbitrary code. Below is a complete list of vulnerabilities: 1. A buffer overflow vulnerability can be exploited locally via a specially...
KLA11841 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in DirectX can be exploited remotely via specially...
KLA11016 Denial of service vulnerability in IrfanView
An improper processing of .FPX FlashPix files was found in IrfanView 4.44 32-bit with FPX Plugin before 4.45. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely via a specially designed .FPX file. Original advisories...
KLA10926 Cross-site scripting vulnerability in Tenable Nessus
Cross-site scripting vulnerability was found in Tenable Nessus. By exploiting this vulnerability malicious users can inject HTML code or arbitrary web script. This vulnerability can be exploited remotely via unspecified vectors. Original advisories Nessus 6.9.3 Release Notes Related products Ness...
KLA10790 Multiple vulnerabilities in PostgreSQL
Multiple serious vulnerabilities have been found in PostgreSQL. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information or cause denial of service. Below is a complete list of vulnerabilities 1. An unknown vulnerability can be exploited via ...
KLA11445 ACE vulnerability in PuTTY
Integer overflow vulnerability was found in PuTTY. Malicious users can exploit this vulnerability remotely to execute arbitrary code and cause denial of service. Original advisories PuTTY vulnerability vuln-ech-overflow Related products PuTTY CVE list CVE-2015-5309 warning Solution Update to the...
KLA10558 Obtain sensitive information vulnerability in MSXML
An unspecified vulnerability was found in Microsoft XML Core Services. By exploiting this vulnerability malicious users can bypass security restrictions or obtain sensitive information. This vulnerability can be exploited remotely via a specially designed DTD. Original advisories MS15-039...
KLA10175 DoS vulnerability in GnuPG
An unspecified vulnerability was found in GnuPG. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via specially designed packets. Original advisories - Related products GnuPG-gpg CVE list CVE-2014-4617 warning Solution Upda...
KLA10207 ACE vulnerability in IBM SPSS SamplePower
A buffer overflow was found in the IBM SPSS SamplePower. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ComboList. Original advisories - Related products IBM-SPSS-SamplePower CVE list CVE-2014-0895...
KLA10441 Vulnerability in Shockwave Player
An unspecified vulnerability was found in the Shockwave Player. By exploiting this vulnerability malicious users can execute arbitrary code or cause denial of service. Original advisories APSB Related products Adobe-Shockwave-Player CVE list CVE-2014-0505 critical Solution Update to latest versio...
KLA10193 OSI vulnerability in HP SMH
An unspecified vulnerability was found in HP SMH. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely by unknown vectors. Original advisories - Related products HP-System-Management-Homepage CVE list CVE-2013-4846 warning...
KLA10327 Vulnerabilities in Skype
An unspecified vulnerability was found in Skype. By exploiting this vulnerability malicious users can cause unknown impact via unknown vectors. Original advisories Skype changelog Related products Skype-for-Windows CVE list Solution Update to latest version Affected Products - Skype...
KLA10041 ACE vulnerability in Adobe Flash
An unspecified vulnerability was found in Adobe Flash Professional. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited via unknown vectors.. Original advisories Adobe bulletin Related products Adobe-Flash-CS3 Adobe-Flash-CS4 Adobe-Flas...
KLA10356 Multiple vulnerabilities in pcAnywhere
Multiple serious vulnerabilities have been found in Symantec products. Malicious users can exploit these vulnerabilities to obtain access to client information or cause denial of service. Below is a complete list of vulnerabilities 1. lack of client state control can be exploited remotely by...
KLA10406 ACe vulnerability in Yahoo! Messenger
An integer overflow was found in Yahoo! Messenger. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed JPG image. Original advisories - Related products Yahoo!-Messenger CVE list CVE-2012-0268 high...
KLA10385 ACE vulnerability in VMware
A buffer overflow was found in VMware products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ISO image. Original advisories VMware bulletin Related products VMware-Workstation VMware-Player...
KLA10432 DoS vulnerability in Monkey's Audio
An unspecified vulnerability was found in Monkey’s Audio. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed APE file. Original advisories - Related products Monkey's-Audio CVE list CVE-2009-5075...
KLA10056 RLF vulnerability in Alcatel-Lucent OmniVista 4760
A directory traversal vulnerability was found in OmniVista. By exploiting this vulnerability malicious users can read local files. This vulnerability can be exploited from the network at a point related to NMS server via specially designed GET request. Original advisories Alcatel bulletin Related...
KLA10225 DoS vulnerability in WS FTP
A format string vulnerability was found in WS FTP. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed format string. Original advisories - Exploitation Public exploits exist for this vulnerability...
KLA10213 LPE vulnerability in IBM WebSphere MQ
An unspecified vulnerability was found in the IBM WebSphere MQ. By exploiting this vulnerability malicious users can gain priveleges. This vulnerability can be exploited locally at a point related to the queue manager. Original advisories - Related products IBM-WebSphere-MQ CVE list CVE-2009-0439...
KLA10051 ACE vulnerability in Axis Camera Control
A buffer overflow vulnerability was found in Axis Camera Control. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to AxisCamControl.ocx via a specially designed imagepantilt property value. Origin...
KLA10258 ACE vulnerability in Maxthon Browser
A buffer overflow was found in Maxthon Browser. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed HTTP request. Original advisories - Related products Maxthon-Browser CVE list CVE-2008-3667 high...
KLA10335 ACE vulnerability in SonicWall Global VPN client
Format string vulnerabilities were found in the SonicWall Global VPN client. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via specially designed format strings. Original advisories - Related products...
KLA10222 ACE vulnerabilities in player
A buffer overflow was found in Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed attributes. Original advisories - Related products InterActual-Player Roxio-CinePlayer CVE list CVE-2007-0348...
KLA10367 Vulnerability in Toshiba Bluetooth Stack
An unspecified vulnerability was found in Toshiba Bluetooth Stack. By exploiting this vulnerability malicious users can cause unknown impact. This vulnerability can be exploited remotely. Original advisories - Related products Toshiba-Bluetooth-Stack CVE list CVE-2006-5611 critical Solution Updat...
KLA10125 ACE vulnerability in Compression Plus
A buffer overflow was found in the Compression Plus library. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZOO file. Original advisories BeCubed changelog Related products Compression-Plus CVE lis...
KLA10254 ACE vulnerabilities in Adobe Flash Player
Multiple unspecified vulnerabilities were found in Flash Player. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed SWF file. Original advisories - Related products Adobe-Flash-Player-ActiveX...
KLA10267 ACE vulnerability in NJStar Word Processor
A buffer overflow was found in NJStar Word Processor. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via NJX documents. Original advisories - Related products NJStar-Chinese-Word-Processor NJStar-Japanese-Word-Processor CV...
KLA10399 Multiple vulnerabilities in Winmail
Multiple serious vulnerabilities have been found in Winmail Server. Malicious users can exploit these vulnerabilities to inject scripts or overwrite local files. Below is a complete list of vulnerabilities 1. A directory traversal can be exploited remotely via a side parameter; 2. An XSS...
KLA10410 ACE vulnerability in ZipGenius
Buffer overflows were found in ZipGenius. By exploiting these vulnerabilities malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed ZIP & ACE archives or UUE, XXE or MIM files with specially designed filenames. Original advisories...
KLA91035 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, gain privileges, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code...
KLA67223 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft Edge Chromium-based can be...
KLA65313 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in WebAssembly can be exploited to cause denial of service. 2. U...
KLA65130 ACE vulnerability in Microsoft Exchange Server
A remote code execution vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2024-26198 Exploitation Public exploits exist for this vulnerability. Related products Microsoft-Exchange-Server CVE list...
KLA65122 DoS vulnerability in Google Chrome
Use after free vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Chrome Releases: Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability. Related...
KLA63962 PE vulnerability in Microsoft System Center
An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2024-21315 Related products Microsoft-Windows Microsoft-Defender-for-Endpoint-for-Windows CVE list CVE-2024-21315 critical KB li...
KLA62191 ACE vulnerability in Apache Tomcat
A improper input validation vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Fixed in Apache Tomcat 9.0.83 Related products Apache-Tomcat CVE list CVE-2023-46589 critical Solution Update to the latest version...
KLA61568 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Information disclosure vulnerability ca...
KLA61311 DoS vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Opera 102.0.4880.33 Stable update Stable Channel Update for Desktop Related products Opera CVE list CVE-2023-4572 critical Soluti...
KLA60730 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Autodesk® FBX® SDK 20...
KLA49015 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds memory access vulnerability in Service Worker API can be exploited to cause...
KLA48635 OSI vulnerability in Apache Tomcat
Information disclosure vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories Fixed in Apache Tomcat 8.5.86 Fixed in Apache Tomcat 10.1.6 Related products Apache-Tomcat CVE list CVE-2023-28708 warning Solution...
KLA20174 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Security bypass vulnerability in libusrsctp can be exploited...
KLA20171 ACE vulnerability in Foxit PDF Reader
Use after free vulnerability was found in Foxit PDF Reader. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Security updates available in Foxit PDF Reader 12.1 and Foxit PDF Editor 12.1 Related products Foxit-Reader...
KLA20115 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Memory safety vulnerability can be exploited to execute...
KLA20043 PE vulnerability in Microsoft Open Source Software
Elevation of privilege vulnerability was found in Microsoft Open Source Software. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-38014 Related products Microsoft-Windows CVE list CVE-2022-38014 high KB list Solution Install necessary updates from t...
KLA19999 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds write vulnerability in V8 can be exploited to cause denial of service. 2. U...
KLA19247 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to execute arbitrary code. Original advisories CVE-2022-34700 CVE-2022-35805 Related products Microsoft-Dynamics-AX Microsoft-Dynamics-365 CVE list CVE-2022-34700 critical CVE-2022-35805...
KLA12574 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, bypass security restrictions, gain privileges, spoof user interface. Below is a complete list of...
KLA12546 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service, spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Denia...