3996 matches found
KLA11359 ACE vulnerability in Pidgin
Out of bound write vulnerability was found in Pidgin. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Pidgin Security Advisory Related products Pidgin CVE list CVE-2017-2640 critical Solution Update to the latest version Download Pidgin Impacts ACE...
KLA11903 DoS vulnerability in Microsoft Products (ESU)
A denial of service vulnerability was found in Microsoft Products Extended Support Update. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2017-0004 Related products Microsoft-Windows-Vista-4 Microsoft-Windows-7 Microsoft-Windows-Server-2008 CVE...
KLA10532 Denial of service vulnerabilities in Cisco Unity Connection
An unspecified vulnerabilities were found in Cisco Unity Connector. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via SIP messages, sessions and connections manipulation. Original advisories Cisco advisory Related...
KLA10523 Multiple vulnerabilities in IBM SAM
Lack of unicast respond restrictions was found in IBM SAM. By exploiting this vulnerability malicious users cause denial of service or obtain sensitive information. This vulnerability can be exploited remotely via a specially designed packets. Original advisories IBM advisory Related products...
KLA10181 ACE vulnerability in Sketchup
Multiple critical vulnerabilities have been found in Google SketchUp. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities 1. A buffer overflow can be exploited remotely via a specially designed BMP file; 2. The out of bounds wri...
KLA10128 DoS vulnerability in Core FTP
Buffer overflows were found in the Core FTP client. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited from the network via a specially designed server reply. Original advisories - Exploitation Publ...
KLA10149 ACE vulnerability in Ericom
A buffer overflow was found in Ericom products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed request. Original advisories Ericom bulletin Exploitation Public exploits exist for this vulnerability...
KLA10015 SUI Opera vulnerability
An unspecified vulnerability was found in Opera 18 and earlier. By exploiting this vulnerability malicious users can fool legitimate users. This vulnerability can be exploited from the network at a point related to the address bar by spoofing the user interface. Original advisories Opera blog...
KLA10303 SB vulnerability in RPM
Improper error handling was found in RPM. By exploiting this vulnerability malicious users can bypass signature checks. This vulnerability can be exploited remotely via a specially designed packet. Original advisories - Related products RPM-Remote-Print-Manager CVE list CVE-2012-6088 warning...
KLA10219 ACE vulnerability in ImgBurn
An untrusted path vulnerability was found in ImgBurn. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via DLL hijacking. Original advisories - Related products ImgBurn CVE list CVE-2011-0403 critical Solution Update to late...
KLA10042 Critical vulnerability in Adobe Download Manager
Improper request validation at NOS Microsystems getPlus Download Manager was found in Adobe Download Manager. Malicious users can exploit this vulnerability to bypass security and install arbitrary programs via a specially designed download site name. Original advisories Adobe bulletin Related...
KLA10308 ACE vulnerability in RealVNC
An unspecified vulnerability was found in RealVNC. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed RFB data. Original advisories - Related products RealVNC-Viewer CVE list CVE-2008-4770 critical...
KLA10100 ACE vulnerability in CenterTools DriveLock
A buffer overflow was found in CenterTools DriveLock. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed HTTP request. Original advisories - Related products CenterTools-DriveLock CVE list CVE-2007-5209...
KLA10416 ACE vulnerability in eBay Enhanced Picture Services
A buffer overflow was found in eBay Enhanced Picture Services. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed HTML Original advisories - Related products...
KLA10295 Vulnerability in Pocket Controller
An unspecified vulnerability was found in Pocket Controller. By exploiting this vulnerability malicious users can turn off, reboot or reset PDA. This vulnerability can be exploited remotely. Original advisories - Related products Pocket-Controller-Professional CVE list CVE-2005-4152 high Solution...
KLA80110 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Visual Studio Co...
KLA73222 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, obtain sensitive information. Below is a...
KLA71455 SUI vulnerability in Microsoft Office
Spoofing vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-38200 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related products...
KLA70407 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft SharePoint...
KLA65693 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, spoof user interface, obtain sensitive information, perform cross-site scripting attack. Below is a...
KLA65258 ACE vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Opera 108.0.5067.40 Stable update Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability...
KLA64773 Multiple vulnerabilities in VMware Workstation
Multiple vulnerabilities were found in VMware Workstation. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in UHCI USB controller can be exploited to execute...
KLA65144 Multiple vulnerabilities in Apache Tomcat
Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in WebSocket client can be exploited remotely to cause denial of service. 2. A deni...
KLA62190 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds memory access vulnerability in libavif can be exploited to cause denial of...
KLA61357 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Azure Identity SDK can be exploited remotely to execute...
KLA50320 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to spoof user interface. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft Power Apps can be exploited remotely to spoof user interface. 2. A spoofing...
KLA48514 Multiple vulnerabilities in Foxit PDF Reader
Use After Free vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Original advisories Security updates available in Foxit PDF Reader 11.2.1 and Foxit PDF Editor 11.2.2 Related products Foxit-Reader...
KLA20003 PE vulnerability in Microsoft System Center
An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-37971 Related products Microsoft-Defender-for-Endpoint-for-Windows CVE list CVE-2022-37971 high KB list Solution Install...
KLA19255 SUI vulnerability in Microsoft System Center
A spoofing vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2022-37972 Related products Microsoft-Endpoint-Configuration-Manager CVE list CVE-2022-37972 critical KB list Solution Install necessary...
KLA12347 PE vulnerabilities in Microsoft Windows
Elevation of privilege vulnerabilities were found in Microsoft Windows. Malicious users can remotely exploit this vulnerability to gain privileges. Original advisories CVE-2021-43211 CVE-2021-42297 Related products Microsoft-Windows CVE list CVE-2021-43211 high CVE-2021-42297 critical KB list...
KLA12279 SUI vulnerability in Microsoft Browser
A tampering vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2021-38669 Related products Microsoft-Edge CVE list CVE-2021-38669 critical KB list Solution Install necessary updates from the Settings and mo...
KLA12212 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Edge Chromium-based can be exploited...
KLA12126 ACE vulnerability in Foxit Reader
An out of bounds read vulnerability was found in Foxit Reader. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Foxit Security Bulletins Related products Foxit-Reader CVE list CVE-2021-27270 critical Solution Update to the latest version Download Foxit...
KLA12130 ACE vulnerability in Microsoft Developer Tools
A remote code execution vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2020-17163 Related products Microsoft-Visual-Studio CVE list CVE-2020-17163 critical KB list Solution Install necessary...
KLA12067 OSI vulnerability in Microsoft Browser
An information disclosure vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2021-24100 Related products Microsoft-Edge CVE list CVE-2021-24100 warning KB list Solution Install necessary updates fro...
KLA12379 ACE vulnerability in Zoom
Code execution vulnerability was found in Zoom. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2020-9767 critical Solution Update to the latest version Download Zoom Impacts ACE Arbitrary...
KLA11870 PE vulnerability in Microsoft Browser
An elevation of privilege vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2020-1341 Related products Microsoft-Edge CVE list CVE-2020-1341 unknown KB list Solution Install necessary updates from the Settings...
KLA12117 Use after free vulnerability in VMware Workstation and Player
A use after freevulnerability was found in VMware Workstation and Player. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories VMSA-2019-0009 Related products VMware-Workstation VMware-Player CVE list CVE-2019-5525 critical Solution Update to the latest...
KLA12116 PE vulnerability in VMware Workstation and Player
A DLL hijacking vulnerability was found in VMware Workstation and Player. Malicious users can exploit this vulnerability to gain privileges. Original advisories VMSA-2019-0007 Related products VMware-Workstation VMware-Player CVE list CVE-2019-5526 critical Solution Update to the latest version...
KLA11798 DoS vulnerability in Zoom
DoS vulnerability was found in Zoom. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Zoom Security CVE-2019-13449 CVE-2019-13449 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related...
KLA10713 Obsolete Adobe Flash Player for Windows
Obsolete version of Adobe Flash Player can be exploited via multiple vectors Technical details To read further details about this vulnerability you can look at KLA10711 Original advisories Microsoft Advisory Related products Microsoft-Windows CVE list KB list 3119147 Solution Install necessary...
KLA10366 OSI vulnerability in Titan FTP Server
A directory traversal vulnerability was found in Titan FTP Server. By exploiting this vulnerability malicious users can list usernames or home folder. This vulnerability can be exploited remotely via specially designed parameters. Original advisories Changelog Exploitation Public exploits exist f...
KLA10281 OSI vulnerability in OpenVPN
An unspecified vulnerability was found in OpenVPN. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a timing attack. Original advisories - Related products OpenVPN CVE list CVE-2013-2061 warning Solution Update to...
KLA11441 OSI vulnerability in PuTTy
A buffer overflow vulnerability was found in PuTTY. Malicious users can exploit this vulnerability locally to obtain sensitive information. Original advisories PuTTY vulnerability password-not-wiped Related products PuTTY CVE list CVE-2011-4607 warning Solution Update to the latest version Downlo...
KLA10049 CI vulnerability in APC PowerChute
A cross-site scripting vulnerability was found in PowerChute. By exploiting this vulnerability malicious users can inject arbitrary web script. This vulnerability can be exploited from the network at a point related to unknown vectors. Original advisories vulnerability description Related product...
KLA10402 ACE vulnerability in Vallen Zipper
A heap overflow was found in Vallen Zipper. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZIP file. Original advisories Xforce advisory Related products Vallen-Zipper CVE list KB list Solution...
KLA10328 ACE vulnerability in Skype
An untrusted path was found in Skype. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally and possibly remotely via a DLL hijack. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10117 ACE vulnerability in Citrix XenApp Online plug-in
An unspecified vulnerability was found in the Citrix XenApp Online plug-in. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed web site Original advisories Citrix bulletin Related products...
KLA10409 ACE vulnerability in ZipGenius
A buffer overflow was found in ZipGenius. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZIP file. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10140 ACE vulnerability in Download Accelerator Plus
A buffer overflow was found in Download Accelerator Plus. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed M3U file. Original advisories - Exploitation Public exploits exist for this vulnerability...