3996 matches found
KLA10876 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper value...
KLA10995 Multiple arbitrary code execution vulnerabilities in Microsoft office
Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. An improper validation of input before loading DLL files can be exploited remotely via a specially...
KLA10867 Denial of service vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet. Technical details These vulnerabilities related to multiple dissectors: 1...
KLA10865 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions or inject arbitrary code. Below is a complete list of vulnerabilities 1. An improper values validation at Skia can be exploited remotely via a...
KLA10856 Multiple vulnerabilities in Microsoft Windows
Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, gain privileges or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper embedded...
KLA10857 Multiple vulnerabilities in Microsoft Office
Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information or execute arbitrary code. Below is a complete list of vulnerabilities 1. An improper memory contents handling at OneNote can be exploited remote...
KLA11908 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation...
KLA10858 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
Multiple serious vulnerabilities have been found in Microsoft Internet Explorer and Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper memory objects handling can be exploite...
KLA10853 Multiple vulnerabilities in Foxit Reader
Multiple serious vulnerabilities have been found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information or execute arbitrary code. Below is a complete list of vulnerabilities 1. Out-of-bounds access can be exploited remotely via...
KLA10854 Privileges escalation vulnerabilities in VMware products
Untrusted search path vulnerability was found in VMware products. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via DLL hijack. Technical details This vulnerability related to HGFS aka Shared Folders feature. Original advisories...
KLA10851 Denial of service vulnerabilities in Wireshark
Multiple different vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet or file. Technical details WBXML dissector epan/dissectors/packet-wbxml.c...
KLA10850 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, bypass security restrictions or conduct another unknown impact. Below is a complete list of vulnerabilities 1. Lack of restriction...
KLA10859 Security bypass vulnerabilities in cURL
Multiple serious vulnerabilities have been found in cURL. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities 1. Use-after-free vulnerability can be exploited to control which connection is used; 2. An improper TLS...
KLA10852 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code, spoof user interface, bypass security restrictions, conduct cross-site scripting or read local...
KLA10855 Memory corruption vulnerability in Apache OpenOffice
An unspecified vulnerability was found in Apache OpenOffice Impress. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed .ODP and .OTP files. Technical details An exploitable...
KLA10846 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities ...
KLA10848 Multiple vulnerabilities in Oracle VM VirtualBox
An unspecified vulnerabilities were found in Oracle VM VirtualBox. By exploiting these vulnerabilities malicious users can cause denial of service or obtain sensitive vulnerabilities. These vulnerabilities can be exploited remotely or locally. Original advisories Oracle bulletin Related products...
KLA10847 Multiple vulnerabilities in Oracle MySQL
An unspecified vulnerabilities were found in Oracle MySQL server. By exploiting these vulnerabilities malicious users can cause denial of service affect integrity or obtain sensitive information. These vulnerabilities can be exploited locally or remotely. Technical details These vulnerabilities...
KLA10849 Multiple vulnerabilities in Oracle Java SE
An unspecified vulnerabilities were found in Oracle Java SE. By exploiting these vulnerabilities malicious users can cause denial of service affect integrity or obtain sensitive information. These vulnerabilities can be exploited remotely or locally. Technical details These vulnerabilities relate...
KLA11831 OSI vulnerability in Microsoft Windows
An information disclosure vulnerability vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2016-3272 Related products Microsoft-Windows Microsoft-Windows-Server Microsoft-Windows-Server-2012...
KLA10860 Code execution vulnerability in GIMP
Use-after-free vulnerability was found in GIMP. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed XCF file. Technical details This vulnerability related to xcfloadimage...
KLA10845 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10839. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
KLA10842 Multiple code execution vulnerabilities in Microsoft Office
An improper memory objects handling and XLA files handling were found in Microsoft Office. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed files. Technical details To mitigate some of these...
KLA10840 Multiple vulnerabilities in Microsoft Windows
Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, gain privileges or obtain sensitive information. Below is a complete list of vulnerabilities 1. Lack of print driver...
KLA10844 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
Multiple serious vulnerabilities have been found in Microsoft browsers. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper memory objects handling can be...
KLA10839 Multiple vulnerabilities in Adobe Flash Player
Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information and possibly cause denial of service. Below is a complete list of vulnerabilities 1. Race condition and lack of...
KLA10843 Code execution vulnerability in Microsoft JScript and VBScript engines
An improper objects handling was found in Microsoft JScript and VBScript. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Technical details To mitigate this vulnerability you can restrict...
KLA10838 Multiple vulnerabilities in Adobe Acrobat & Reader
Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions or cause a denial of service. Below is a complete list of vulnerabilities 1. Integer overflow, use-after-free, buffer...
KLA11909 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, spoof user interface, obtain sensitive information, bypass security restrictions. Below is a complete list of...
KLA10841 OSI vulnerability in Microsoft Developer Tools
Information disclosure vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2016-3255 Related products Microsoft-.NET-Framework CVE list CVE-2016-3255 critical KB list 3172985 3163912 3164024...
KLA10904 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer & Edge. For details look at KLA10839. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: don’t click a link in an email message or...
KLA10837 Code execution vulnerabilities in LibreOffice
Lack of validation was found in LibreOffice. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed RTF file. Original advisories LibreOffice advisory Related products LibreOffice CVE list CVE-2016-4324 hi...
KLA10834 Arbitrary code execution vulnerability in Opera Mail
An unspecified vulnerability was found in Opera Mail. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed e-mail message. Original advisories Opera advisory Related products Opera-Mail CVE list...
KLA10836 Multiple vulnerabilities in Foxit Reader and Foxit PhantomPDF
Multiple serious vulnerabilities have been found in multiple Foxit products. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Use-after-free vulnerability can be...
KLA10812 Privilege escalation vulnerabilities in Lenovo Solution Center
Multiple serious vulnerabilities have been found in Lenovo Solution Center. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities 1. An unknown vulnerability at SystemService can be exploited locally to terminate arbitrary process via...
KLA10932 Multiple vulnerabilities in Pidgin
Multiple serious vulnerabilities have been found in Pidgin. Malicious users can exploit these vulnerabilities to overwrite arbitrary files, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A directory traversal vulnerability in the handling of...
KLA10942 Multiple vulnerabilities in Pidgin
Multiple serious vulnerabilities have been found in Pidgin. Malicious users can exploit these vulnerabilities to cause a denial of sevice, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Null pointer derefence vulnerabilities and...
KLA11910 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. DoS vulnerability in Search component can be exploited remotely to cause denial of...
KLA11830 DoS vulnerability in Microsoft Windows
Denial of service vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to cause denial of service, bypass security restrictions. Original advisories CVE-2016-3230 Related products Microsoft-Windows Microsoft-Windows-Server Microsoft-Windows-Server-2012...
KLA10832 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10830. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
KLA10954 Remote Security Vulnerability in Oracle VM VirtualBox
A remote security vulnerability was found in Oracle Virtualization Oracle VM VirtualBox component. By exploiting this vulnerability malicious users can gain privileges and cause a partial denial of service. This vulnerability can be exploited remotely over the HTTP protocol. Technical details...
KLA10831 Code execution vulnerability in Adobe AIR
An improper updates resolve was found in Adobe AIR. By exploiting this vulnerability malicious users can execute arbitrary code. Original advisories Adobe bulletin Related products Adobe-AIR CVE list CVE-2016-4126 critical Solution Update to the latest version Get AIR Impacts ACE Arbitrary code...
KLA10830 Multiple vulnerabilities in Adobe Flash Player
Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Type confusion, use-after-free, heap...
KLA10833 Multiple unknown vulnerabilities in Google Chrome
Multiple unspecified vulnerability were found in Google Chrome. Original advisories Google Chrome releases blog entry Related products Google-Chrome CVE list CVE-2016-1704 high Solution Update to the latest version. File with name oldchrome can be still detected after update. It caused by Google...
KLA11911 Multiple vulnerabilites in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, perform cross-site scripting attack. Below is a complete list of vulnerabilities: 1. An...
KLA10829 Multiple vulnerabilities in Microsoft Edge and Internet Explorer
Multiple serious vulnerabilities have been found in Microsoft Edge. Malicious users can exploit these vulnerabilities to bypass security restrictions, perform privilege escalation, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper...
KLA10896 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer & Edge. For details look at KLA10830. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: don’t click a link in an email message or...
KLA11837 Microsoft Advisory for Adobe Flash
Original advisories ADV160003 APSB16-18 Related products Adobe-Flash CVE list KB list 3167685 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Update usually can be accessed from the Control Panel Affected Products - Adobe Flash Player earlier...
KLA10828 Code execution vulnerabilities in Microsoft JScript and VBScript
An improper memory objects handling was found in Microsoft VBScript and JScript. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Technical details To mitigate this vulnerability you can...
KLA10826 OSI vulnerability in Microsoft Server Software
An information disclosure vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2016-0028 ADV160012 Related products Microsoft-Exchange-Server CVE list CVE-2016-0028 high KB list 3151086 315050...