3996 matches found
KLA11683 ACE vulnerability in Microsoft Dynamics
ACE vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2020-0905 Related products Microsoft-Dynamics-365 CVE list CVE-2020-0905 high KB list 4538885 4538886 4538884 4538888 4551259 4538708 4551258 453888...
KLA11642 A spoofing vulnerability in Microsoft Apps
A spoofing vulnerability was found in Microsoft Office for Android. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2019-1460 Related products Microsoft-Outlook CVE list CVE-2019-1460 warning KB list Solution Install necessary updates from the KB...
KLA11566 RCE vulnerability in Foxit Reader
Out-of-bounds reading vulnerabilities was found in Foxit Reader. Malicious users can exploit this vulnerability via specially designed document to execute arbitrary code or cause denial of service. Technical details Potentially vulnerable components are AcroForm, TIF File ConvertToPDF, JPG File...
KLA11762 DOS vulnerability in VLC media player
Heap-based buffer over-read vulnerability was found in VLC media player. Malicious users can exploit this vulnerability to cause denial of service. Original advisories sb-vlc308 Related products VLC-media-player CVE list CVE-2019-13962 critical Solution Update to the latest version Download VLC...
KLA11649 User Mode Write Access Violation vulnerabilities in IrfanView
User Mode Write Access Violation vulnerabilities were found in IrfanView. Malicious users can exploit this vulnerability to cause denial of service. Original advisories - Related products IrfanView CVE list CVE-2019-13242 high CVE-2019-13243 high Solution Update to the latest version Download...
KLA11800 Security vulnerability in Zoom
Validation vulnerability in Zoom for macOS can be exploited remotely to bypass security restrictions, obtain sensitive information. Original advisories Zoom Security CVE-2019-13567 CVE-2019-13567 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. Mo...
KLA11495 DOS vulnerability in Apache Tomcat
Incorrect requests handling int Apache HTTP/2. Malicious users can exploit this vulnerability to cause denial of service. Original advisories - Related products Apache-Tomcat CVE list CVE-2019-0199 warning Solution Update to the latest version Download Tomcat 9 Impacts DoS Denial of service...
KLA11844 OSI vulnerability in Microsoft Windows
An information disclosure vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2017-8554 Related products Microsoft-Windows-Server-2012 Microsoft-Windows-8 Microsoft-Windows-7...
KLA11843 ACE vulnerability in Microsoft System Center
A remote code execution vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-8558 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such...
KLA11840 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Malware Protection Engine can be...
KLA11910 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. DoS vulnerability in Search component can be exploited remotely to cause denial of...
KLA11373 Code execution vulnerability in OpenOffice
Lack of bookmarks restrictions was found in OpenOffice. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DOC file. Technical details To exploit this vulnerability attacker...
KLA10698 Code execution vulnerability in Google Picasa
Buffer overflow was found in Google Picasa. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely. Technical details This vulnerability caused by heap based buffer overflow and triggered via vectors related to phase one 0x412 tag...
KLA10493 Code execution vulnerability in Fortinet SSO
Stack based buffer overflow was found in FSSO. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed message. Original advisories Fortinet advisory Exploitation Public exploits exist for this vulnerabilit...
KLA10128 DoS vulnerability in Core FTP
Buffer overflows were found in the Core FTP client. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited from the network via a specially designed server reply. Original advisories - Exploitation Publ...
KLA10607 Code execution vulnerability in Microsoft Forefront Protection
An unspecified vulnerability was found in Microsoft Forefront Protection. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed message. Original advisories CVE-2014-0294 Related products...
KLA11443 DoS vulnerability in PuTTY
Integer overflow vulnerability was found in PuTTY. Malicious users can exploit this vulnerability remotely to cause denial of service and possibly execute arbitrary code. Original advisories PuTTY vulnerability vuln-signature-stringlen Related products PuTTY CVE list CVE-2013-4852 high Solution...
KLA10084 DoS vulnerability in Siemens ALM
A memory leak was found in Siemens ALM. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via specially designed packets. Original advisories Siemens bulletin Related products Automation-License-Manager CVE list CVE-2012-469...
KLA10162 ACE vulnerability in FlashFXP
Buffer overflows were found in FlashFXP. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed strings in listbox or combobox. Original advisories FlashFXP bulletin Exploitation Public exploits exist for th...
KLA10062 LPE vulnerability in ALFtp
An untrusted path vulnerability was found in ALFtp. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited from the network at point related to unknown vectors. Original advisories ALtools advisory Related products Altools-ALFTP CVE list...
KLA10196 ACE vulnerability in Honeywell ScanServer ActiveX
A use-after-free vulnerability was found in Honeywell ScanServer ActiveX control. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed HTML. Original advisories - Related products...
KLA10058 WLF vulnerability in Altiris Notification Server
An unspecified vulnerability was found in the Symantec products. By exploiting this vulnerability malicious users can download and write local files. This vulnerability can be exploited from the network at a point related to eXpress NS SC Download. Original advisories Symantec security advisory...
KLA10091 RCE vulnerability in BlackBerry Desktop Manager
An untrusted path vulnerability was found in BlackBerry Desktop Software. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via DLL hijacking. Original advisories BlackBerry bulletin Related products BlackBerry-Desktop-Softwa...
KLA10210 Vulnerability in IBM Tivoli Storage Manager
An unspecified vulnerability was found in IBM Tivoli Storage Manager. By exploiting this vulnerability malicious users can conduct a man-in-the-middle attack and read arbitrary files. This vulnerability can be exploited remotely at a point related to SSL. Original advisories - Related products...
KLA10090 RCE vulnerability in BlackBerry Desktop Manager
A buffer overflow was found in BlackBerry Desktop Software. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to Lotus Notes Intellisync via a specially designed web page. Original advisories BlackBerry...
KLA10308 ACE vulnerability in RealVNC
An unspecified vulnerability was found in RealVNC. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed RFB data. Original advisories - Related products RealVNC-Viewer CVE list CVE-2008-4770 critical...
KLA10100 ACE vulnerability in CenterTools DriveLock
A buffer overflow was found in CenterTools DriveLock. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed HTTP request. Original advisories - Related products CenterTools-DriveLock CVE list CVE-2007-5209...
KLA10083 ACE vulnerability in AutoMate
A buffer overflow vulnerability was found in AutoMate. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely with user assistance via a specially designed ACE archive. Original advisories - Related products AutoMate CVE list...
KLA10053 DoS vulnerability in ActivePerl
An integer overflow vulnerability was found in ActivePerl. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited at a point related to the duplication operator via a large multiplier. Original advisories...
KLA73521 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in V8 ca...
KLA73222 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, obtain sensitive information. Below is a...
KLA70407 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft SharePoint...
KLA65693 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, spoof user interface, obtain sensitive information, perform cross-site scripting attack. Below is a...
KLA65258 ACE vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Opera 108.0.5067.40 Stable update Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability...
KLA64773 Multiple vulnerabilities in VMware Workstation
Multiple vulnerabilities were found in VMware Workstation. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in UHCI USB controller can be exploited to execute...
KLA65144 Multiple vulnerabilities in Apache Tomcat
Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in WebSocket client can be exploited remotely to cause denial of service. 2. A deni...
KLA66493 Multiple vulnerabilities in Adobe Acrobat and Adobe Acrobat Reader
Multiple vulnerabilities were found in Adobe Acrobat and Adobe Acrobat Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability can be exploited to cause denial of...
KLA62190 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds memory access vulnerability in libavif can be exploited to cause denial of...
KLA61360 ACE vulnerability in Microsoft Server Software
A remote code execution vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2023-36778 Related products Microsoft-Exchange-Server CVE list CVE-2023-36778 critical KB list 5030877 Solution Install...
KLA61758 OSI vulnerability in Wireshark
Information disclosure vulnerability was found in Wireshark. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories Wireshark • wnpa-sec-2023-27 RTPS dissector memory leak Related products Wireshark CVE list CVE-2023-5371 high Solution Update to the...
KLA52354 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Edge Chromium-based can be exploited...
KLA50322 Multiple vulnerabilities in Microsoft Azure
A spoofing vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to spoof user interface. Original advisories CVE-2023-21569 CVE-2023-21565 Related products Microsoft-Azure CVE list CVE-2023-21565 high CVE-2023-21569 high KB list Solution Install necessa...
KLA49165 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Out of bounds...
KLA49047 Multiple vulnerabilities in Foxit PDF Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use After Free vulnerability can be exploited to cause denial of service and execute arbitrary...
KLA20212 DoS vulnerability in VMware Workstation
Arbitrary file deletion vulnerability was found in VMWare Workstation. Malicious users can exploit this vulnerability to cause denial of service, bypass security restrictions. Original advisories VMSA-2023-0003 Related products VMware-Workstation CVE list CVE-2023-20854 critical Solution Update t...
KLA61753 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in EAP dissector can be exploited to cause denial of servic...
KLA20041 OSI vulnerability in Microsoft Dynamics
Information disclosure vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2022-41066 Related products Microsoft-Dynamics-365 CVE list CVE-2022-41066 warning KB list 5021002 5021000 5021001 5021004...
KLA12523 Security vulnerability in Pidgin
Security vulnerability was found in Pidgin. Malicious users can exploit this vulnerability to bypass security restrictions, gain privileges. Original advisories CVE-2022-26491-00 Related products Pidgin CVE list CVE-2022-26491 unknown Solution Update to the latest version Download Pidgin Impacts ...
KLA12465 Security vulnerability in LibreOffice
Security vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Incorrect trust validation of signature with ambiguous KeyInfo children Related products LibreOffice CVE list CVE-2021-25636 critical Solution Updat...
KLA12397 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Buffer overflow vulnerability in libolm can be exploited remotely via special crafted...