3965 matches found
KLA11517 ACE vulnerability in Microsoft SQL Server
Remote code execution vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-1068 Related products Microsoft-SQL-Server CVE list CVE-2019-1068 high KB list 4505217 4505220 4505219 4505221 4505222...
KLA11518 Multiple vulnerabilities in Microsoft Exchange Server
Multiple vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to spoof user interface, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft Exchange Server can be...
KLA11819 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in...
KLA11515 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, perform cross-site scripting attack, spoof user interface, obtain sensitive information, execute arbitrary code. Below is a complete...
KLA11512 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Excel can be...
KLA11511 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A remote cod...
KLA11524 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, cause denial of service, perform cross-site scripting attack, obtain sensitive information, execute arbitrary code. Below is a...
KLA11516 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, perform cross-site scripting attack, spoof user interface, obtain sensitive information, execute arbitrary code. Below is a...
KLA11513 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security...
KLA11514 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to...
KLA11821 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Automation can be exploited remotely to gain privileges. 2. An elevation o...
KLA11649 User Mode Write Access Violation vulnerabilities in IrfanView
User Mode Write Access Violation vulnerabilities were found in IrfanView. Malicious users can exploit this vulnerability to cause denial of service. Original advisories - Related products IrfanView CVE list CVE-2019-13242 high CVE-2019-13243 high Solution Update to the latest version Download...
KLA12055 ACE vulnerability in Cisco Jabber
A loading mechanism vulnerability was found in Cisco Jabber. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Cisco Jabber for Windows DLL Preloading Vulnerability Related products Cisco-Jabber CVE list CVE-2019-1855 high Solution Update to the latest...
KLA11586 Linux Kernel TCP SACK Denial of Service Vulnerability
Various vulnerabilities was found in Linux Kernel. Microsoft adresses the various effects of these vulnerabilities and provides links to more information: 1. If you are running a Linux kernel in your Azure environment, you should contact the provider of that Linux kernel to understand their...
KLA11587 Outlook for Android Spoofing Vulnerability
A spoofing vulnerability in Outlook for Android can be exploited remotely via specially crafted email to spoof user interface. Original advisories CVE-2019-1105 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related products...
KLA11505 Incorrect parameters parsing vulnerability in Mozilla Firefox ESR
Vulnerability, related to insufficient vetting of parameters passed with the Prompt:Open IPC message was found in Mozilla Firefox. Malicious users can exploit this vulnerability via specially designed website to bypass security restrictions. Original advisories mfsa2019-19 Related products...
KLA11510 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability related to JavaScript objects can be exploited to cause...
KLA11504 Incorrect parameters parsing vulnerability in Mozilla Firefox
Vulnerability, related to insufficient vetting of parameters passed with the Prompt:Open IPC message was found in Mozilla Firefox. Malicious users can exploit this vulnerability via specially designed website to bypass security restrictions. Original advisories - Related products Mozilla-Firefox...
KLA11506 Buffer overflow vulnerability in PostgreSQL
Buffer overflow vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability via special payload during password changing process to cause denial of service. Original advisories PostgreSQL 11.4, 10.9, 9.6.14, 9.5.18, 9.4.23, and 12 Beta 2 Released Exploitation Malware...
KLA11736 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Policy enforcement in Extensions component...
KLA11508 Type confusion vulnerability in Mozilla Firefox ESR
Type confusion vulnerability was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to cause denial of service. Original advisories mfsa2019-18 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related produc...
KLA11507 Type confusion vulnerability in Mozilla Firefox
Type confusion vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Download Mozilla Firefox Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Relat...
KLA11509 Multiple vulnerabilities in VLC media player
Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in VLC media player can be exploited to cause...
KLA11039 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability...
KLA11503 ACE vulnerabilities in Google Chrome
A use-after-free vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2019-5842 warning Solution Update to the latest version. File with...
KLA11502 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability related to icalparser.c can be exploited to cause denial of service; 2. Heap...
KLA11498 OSI vulnerability in Mozilla Firefox
Unspecified vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories mfsa2019-16 Related products Mozilla-Firefox CVE list CVE-2019-11702 warning Solution Update to the latest version Download Mozilla Firefox...
KLA11497 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11496. Original advisories ADV190015 Related products Microsoft-Windows CVE list KB list 4503308 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Upda...
KLA11874 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products ESU. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, execute arbitrary code, obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of...
KLA11496 ACE vulnerabilities in Adobe Flash Player
Multiple vulnerabilities was found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information. Below is a complete list of vulnerabilities: 1. A use-after-free vulnerability can be exploited remotely to execute arbitrary cod...
KLA11501 Security UI vulnerability in Microsoft Developer Tools
A spoofing vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2019-0996 Related products Microsoft-Azure CVE list CVE-2019-0996 warning KB list Solution Install necessary updates from the KB section...
KLA11499 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Word can be...
KLA11492 Bypass security restrictions vulnerability in Microsoft Exchange Server
Microsoft has released an update for Microsoft Exchange Server that provides enhanced security as a defense in depth measure, preventing crashes from uploading certain file types. Original advisories ADV190018 Related products Microsoft-Exchange-Server CVE list ADV190018 unknown KB list 4503027...
KLA11500 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Microsoft...
KLA11493 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, execute arbitrary code, obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of...
KLA12117 Use after free vulnerability in VMware Workstation and Player
A use after freevulnerability was found in VMware Workstation and Player. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories VMSA-2019-0009 Related products VMware-Workstation VMware-Player CVE list CVE-2019-5525 critical Solution Update to the latest...
KLA11491 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. Use-after-free vulnerability in...
KLA11490 Multiple vulnerabilities in iCloud
Multiple vulnerabilities were found in iCloud. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. An out-of-bounds read vulnerability in WebKit can be exploited remotely to...
KLA11489 Multiple vulnerabilities in iTunes
Multiple vulnerabilities were found in iTunes. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. An out-of-bounds read vulnerability in WebKit can be exploited remotely to...
KLA11568 DoS vulnerability in Wireshark
Unspecified vulnerability was found in Wireshark. Malicious users can exploit this vulnerability via injecting a malformed packet to cause denial of service. Original advisories wnpa-sec-2019-19 Related products Wireshark CVE list CVE-2019-12295 warning Solution Update to latest version Get...
KLA11488 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A type confusion...
KLA11487 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A type confusion...
KLA11486 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, cause denial of service, spoof user interface, perform cross-site scripting attack, execute arbitrary code. Below is a complete...
KLA12061 PE vulnerability in Iperius Backup
A privilege escalation vulnerability was found in Iperius Backup. Malicious users can exploit this vulnerability to gain privileges. Original advisories Iperius Backup 6.1.0 – Privilege Escalation CVE list Solution Update to the latest version Download Iperius Backup Affected Products - Iperius...
KLA11483 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability...
KLA11707 Security update for Adobe Flash Player
This security update addresses the multiple vulnerability, which is described in Adobe Security Bulletin APSB19-26 or KLA11479. Original advisories ADV190012 Related products Adobe-Flash-Player-ActiveX Adobe-Flash-Player-NPAPI Adobe-Flash-Player-PPAPI CVE list KB list 4497932 Solution Install...
KLA11477 OSI vulnerability in Microsoft SQL Server
An information disclosure vulnerability in Microsoft SQL Server Analysis Services can be exploited remotely via specially crafted query to obtain sensitive information. Original advisories CVE-2019-0819 Related products Microsoft-SQL-Server CVE list CVE-2019-0819 warning KB list 4494351 4494352...
KLA12116 PE vulnerability in VMware Workstation and Player
A DLL hijacking vulnerability was found in VMware Workstation and Player. Malicious users can exploit this vulnerability to gain privileges. Original advisories VMSA-2019-0007 Related products VMware-Workstation VMware-Player CVE list CVE-2019-5526 critical Solution Update to the latest version...
KLA11484 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in...
KLA11485 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, gain privileges, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A deni...