Lucene search
K
KasperskyRecent

3996 matches found

Kaspersky
Kaspersky
added 2016/09/13 12:0 a.m.85 views

KLA10876 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper value...

9.8CVSS10AI score0.05037EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2016/09/09 12:0 a.m.1855 views

KLA10995 Multiple arbitrary code execution vulnerabilities in Microsoft office

Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. An improper validation of input before loading DLL files can be exploited remotely via a specially...

9.3CVSS8.4AI score0.99933EPSS
Exploits31References20
Kaspersky
Kaspersky
added 2016/09/09 12:0 a.m.40 views

KLA10867 Denial of service vulnerabilities in Wireshark

Multiple vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet. Technical details These vulnerabilities related to multiple dissectors: 1...

5.9CVSS6.9AI score0.02652EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/08/31 12:0 a.m.63 views

KLA10865 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions or inject arbitrary code. Below is a complete list of vulnerabilities 1. An improper values validation at Skia can be exploited remotely via a...

8.8CVSS9.5AI score0.04702EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/08/09 12:0 a.m.158 views

KLA10856 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, gain privileges or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper embedded...

9.3CVSS8.7AI score0.50506EPSS
Exploits17References37
Kaspersky
Kaspersky
added 2016/08/09 12:0 a.m.76 views

KLA10857 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information or execute arbitrary code. Below is a complete list of vulnerabilities 1. An improper memory contents handling at OneNote can be exploited remote...

9.3CVSS8.2AI score0.50506EPSS
Exploits9References46
Kaspersky
Kaspersky
added 2016/08/09 12:0 a.m.61 views

KLA11908 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation...

9.3CVSS9AI score0.50506EPSS
Exploits16References36
Kaspersky
Kaspersky
added 2016/08/09 12:0 a.m.127 views

KLA10858 Multiple vulnerabilities in Microsoft Edge and Internet Explorer

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer and Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper memory objects handling can be exploite...

9.3CVSS8AI score0.51804EPSS
Exploits4References27
Kaspersky
Kaspersky
added 2016/08/08 12:0 a.m.72 views

KLA10853 Multiple vulnerabilities in Foxit Reader

Multiple serious vulnerabilities have been found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information or execute arbitrary code. Below is a complete list of vulnerabilities 1. Out-of-bounds access can be exploited remotely via...

8.8AI score
Exploits0References4
Kaspersky
Kaspersky
added 2016/08/07 12:0 a.m.46 views

KLA10854 Privileges escalation vulnerabilities in VMware products

Untrusted search path vulnerability was found in VMware products. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via DLL hijack. Technical details This vulnerability related to HGFS aka Shared Folders feature. Original advisories...

7.8CVSS6.9AI score0.1802EPSS
Exploits5References5
Kaspersky
Kaspersky
added 2016/08/06 12:0 a.m.47 views

KLA10851 Denial of service vulnerabilities in Wireshark

Multiple different vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet or file. Technical details WBXML dissector epan/dissectors/packet-wbxml.c...

7.5CVSS7.2AI score0.0771EPSS
Exploits5References3
Kaspersky
Kaspersky
added 2016/08/03 12:0 a.m.33 views

KLA10850 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, bypass security restrictions or conduct another unknown impact. Below is a complete list of vulnerabilities 1. Lack of restriction...

9.8CVSS9.5AI score0.01849EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/08/03 12:0 a.m.50 views

KLA10859 Security bypass vulnerabilities in cURL

Multiple serious vulnerabilities have been found in cURL. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities 1. Use-after-free vulnerability can be exploited to control which connection is used; 2. An improper TLS...

8.1CVSS7.8AI score0.15063EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/08/02 12:0 a.m.53 views

KLA10852 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code, spoof user interface, bypass security restrictions, conduct cross-site scripting or read local...

9.8CVSS10AI score0.04577EPSS
Exploits3References4
Kaspersky
Kaspersky
added 2016/07/21 12:0 a.m.43 views

KLA10855 Memory corruption vulnerability in Apache OpenOffice

An unspecified vulnerability was found in Apache OpenOffice Impress. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed .ODP and .OTP files. Technical details An exploitable...

7.8CVSS8.1AI score0.04484EPSS
Exploits1References4
Kaspersky
Kaspersky
added 2016/07/20 12:0 a.m.55 views

KLA10846 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities ...

9.6CVSS9.7AI score0.0246EPSS
Exploits2References3
Kaspersky
Kaspersky
added 2016/07/19 12:0 a.m.65 views

KLA10848 Multiple vulnerabilities in Oracle VM VirtualBox

An unspecified vulnerabilities were found in Oracle VM VirtualBox. By exploiting these vulnerabilities malicious users can cause denial of service or obtain sensitive vulnerabilities. These vulnerabilities can be exploited remotely or locally. Original advisories Oracle bulletin Related products...

5.9CVSS6.2AI score0.0261EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/07/19 12:0 a.m.245 views

KLA10847 Multiple vulnerabilities in Oracle MySQL

An unspecified vulnerabilities were found in Oracle MySQL server. By exploiting these vulnerabilities malicious users can cause denial of service affect integrity or obtain sensitive information. These vulnerabilities can be exploited locally or remotely. Technical details These vulnerabilities...

8.1CVSS7.3AI score0.3965EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2016/07/19 12:0 a.m.62 views

KLA10849 Multiple vulnerabilities in Oracle Java SE

An unspecified vulnerabilities were found in Oracle Java SE. By exploiting these vulnerabilities malicious users can cause denial of service affect integrity or obtain sensitive information. These vulnerabilities can be exploited remotely or locally. Technical details These vulnerabilities relate...

9.6CVSS7.9AI score0.0669EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2016/07/18 12:0 a.m.35 views

KLA11831 OSI vulnerability in Microsoft Windows

An information disclosure vulnerability vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2016-3272 Related products Microsoft-Windows Microsoft-Windows-Server Microsoft-Windows-Server-2012...

2.8CVSS4.2AI score0.43284EPSS
Exploits0References11
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.38 views

KLA10860 Code execution vulnerability in GIMP

Use-after-free vulnerability was found in GIMP. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed XCF file. Technical details This vulnerability related to xcfloadimage...

7.8CVSS6.6AI score0.03113EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.24 views

KLA10845 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10839. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...

7.3AI score
Exploits0References4
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.43 views

KLA10842 Multiple code execution vulnerabilities in Microsoft Office

An improper memory objects handling and XLA files handling were found in Microsoft Office. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed files. Technical details To mitigate some of these...

9.3CVSS7.7AI score0.26291EPSS
Exploits0References37
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.86 views

KLA10840 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, gain privileges or obtain sensitive information. Below is a complete list of vulnerabilities 1. Lack of print driver...

9.3CVSS8.1AI score0.58073EPSS
Exploits0References33
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.57 views

KLA10844 Multiple vulnerabilities in Microsoft Edge and Internet Explorer

Multiple serious vulnerabilities have been found in Microsoft browsers. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper memory objects handling can be...

9.3CVSS8.4AI score0.36361EPSS
Exploits0References27
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.52 views

KLA10839 Multiple vulnerabilities in Adobe Flash Player

Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information and possibly cause denial of service. Below is a complete list of vulnerabilities 1. Race condition and lack of...

9.3CVSS9.5AI score0.36456EPSS
Exploits26References5
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.40 views

KLA10843 Code execution vulnerability in Microsoft JScript and VBScript engines

An improper objects handling was found in Microsoft JScript and VBScript. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Technical details To mitigate this vulnerability you can restrict...

9.3CVSS9.1AI score0.18778EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.143 views

KLA10838 Multiple vulnerabilities in Adobe Acrobat & Reader

Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions or cause a denial of service. Below is a complete list of vulnerabilities 1. Integer overflow, use-after-free, buffer...

10CVSS10AI score0.27116EPSS
Exploits21References8
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.52 views

KLA11909 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, spoof user interface, obtain sensitive information, bypass security restrictions. Below is a complete list of...

9.3CVSS8.9AI score0.58073EPSS
Exploits0References34
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.41 views

KLA10841 OSI vulnerability in Microsoft Developer Tools

Information disclosure vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2016-3255 Related products Microsoft-.NET-Framework CVE list CVE-2016-3255 critical KB list 3172985 3163912 3164024...

7.5CVSS7.6AI score0.24665EPSS
Exploits0References15
Kaspersky
Kaspersky
added 2016/07/11 12:0 a.m.157 views

KLA10904 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer & Edge. For details look at KLA10839. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: don’t click a link in an email message or...

7.3AI score
Exploits0References6
Kaspersky
Kaspersky
added 2016/06/28 12:0 a.m.66 views

KLA10837 Code execution vulnerabilities in LibreOffice

Lack of validation was found in LibreOffice. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed RTF file. Original advisories LibreOffice advisory Related products LibreOffice CVE list CVE-2016-4324 hi...

7.8CVSS8AI score0.02819EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2016/06/28 12:0 a.m.42 views

KLA10834 Arbitrary code execution vulnerability in Opera Mail

An unspecified vulnerability was found in Opera Mail. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed e-mail message. Original advisories Opera advisory Related products Opera-Mail CVE list...

9.3CVSS9.2AI score0.02932EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/06/27 12:0 a.m.37 views

KLA10836 Multiple vulnerabilities in Foxit Reader and Foxit PhantomPDF

Multiple serious vulnerabilities have been found in multiple Foxit products. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Use-after-free vulnerability can be...

7.8CVSS8.9AI score0.05318EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2016/06/22 12:0 a.m.38 views

KLA10812 Privilege escalation vulnerabilities in Lenovo Solution Center

Multiple serious vulnerabilities have been found in Lenovo Solution Center. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities 1. An unknown vulnerability at SystemService can be exploited locally to terminate arbitrary process via...

7.8CVSS7.7AI score0.00638EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/06/21 12:0 a.m.42 views

KLA10932 Multiple vulnerabilities in Pidgin

Multiple serious vulnerabilities have been found in Pidgin. Malicious users can exploit these vulnerabilities to overwrite arbitrary files, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A directory traversal vulnerability in the handling of...

8.1CVSS7.6AI score0.02522EPSS
Exploits4References3
Kaspersky
Kaspersky
added 2016/06/21 12:0 a.m.38 views

KLA10942 Multiple vulnerabilities in Pidgin

Multiple serious vulnerabilities have been found in Pidgin. Malicious users can exploit these vulnerabilities to cause a denial of sevice, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Null pointer derefence vulnerabilities and...

8.1CVSS8.4AI score0.04554EPSS
Exploits13References3
Kaspersky
Kaspersky
added 2016/06/16 12:0 a.m.29 views

KLA11910 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. DoS vulnerability in Search component can be exploited remotely to cause denial of...

6.5CVSS6.1AI score0.107EPSS
Exploits0References13
Kaspersky
Kaspersky
added 2016/06/16 12:0 a.m.48 views

KLA11830 DoS vulnerability in Microsoft Windows

Denial of service vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to cause denial of service, bypass security restrictions. Original advisories CVE-2016-3230 Related products Microsoft-Windows Microsoft-Windows-Server Microsoft-Windows-Server-2012...

5CVSS5.9AI score0.02718EPSS
Exploits0References13
Kaspersky
Kaspersky
added 2016/06/16 12:0 a.m.20 views

KLA10832 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10830. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...

7.3AI score
Exploits0References2
Kaspersky
Kaspersky
added 2016/06/16 12:0 a.m.54 views

KLA10954 Remote Security Vulnerability in Oracle VM VirtualBox

A remote security vulnerability was found in Oracle Virtualization Oracle VM VirtualBox component. By exploiting this vulnerability malicious users can gain privileges and cause a partial denial of service. This vulnerability can be exploited remotely over the HTTP protocol. Technical details...

6.8CVSS7.2AI score0.01488EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/06/16 12:0 a.m.34 views

KLA10831 Code execution vulnerability in Adobe AIR

An improper updates resolve was found in Adobe AIR. By exploiting this vulnerability malicious users can execute arbitrary code. Original advisories Adobe bulletin Related products Adobe-AIR CVE list CVE-2016-4126 critical Solution Update to the latest version Get AIR Impacts ACE Arbitrary code...

9.3CVSS9.2AI score0.04053EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/06/16 12:0 a.m.47 views

KLA10830 Multiple vulnerabilities in Adobe Flash Player

Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Type confusion, use-after-free, heap...

10CVSS9.9AI score0.25419EPSS
Exploits8References5
Kaspersky
Kaspersky
added 2016/06/15 12:0 a.m.76 views

KLA10833 Multiple unknown vulnerabilities in Google Chrome

Multiple unspecified vulnerability were found in Google Chrome. Original advisories Google Chrome releases blog entry Related products Google-Chrome CVE list CVE-2016-1704 high Solution Update to the latest version. File with name oldchrome can be still detected after update. It caused by Google...

8.8CVSS8.8AI score0.01094EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/06/14 12:0 a.m.85 views

KLA11911 Multiple vulnerabilites in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, perform cross-site scripting attack. Below is a complete list of vulnerabilities: 1. An...

10CVSS9.4AI score0.77658EPSS
Exploits19References44
Kaspersky
Kaspersky
added 2016/06/14 12:0 a.m.72 views

KLA10829 Multiple vulnerabilities in Microsoft Edge and Internet Explorer

Multiple serious vulnerabilities have been found in Microsoft Edge. Malicious users can exploit these vulnerabilities to bypass security restrictions, perform privilege escalation, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper...

9.3CVSS9.1AI score0.70288EPSS
Exploits8References23
Kaspersky
Kaspersky
added 2016/06/14 12:0 a.m.39 views

KLA10896 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer & Edge. For details look at KLA10830. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: don’t click a link in an email message or...

7.3AI score
Exploits0References4
Kaspersky
Kaspersky
added 2016/06/14 12:0 a.m.20 views

KLA11837 Microsoft Advisory for Adobe Flash

Original advisories ADV160003 APSB16-18 Related products Adobe-Flash CVE list KB list 3167685 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Update usually can be accessed from the Control Panel Affected Products - Adobe Flash Player earlier...

7.2AI score
Exploits0References5
Kaspersky
Kaspersky
added 2016/06/14 12:0 a.m.59 views

KLA10828 Code execution vulnerabilities in Microsoft JScript and VBScript

An improper memory objects handling was found in Microsoft VBScript and JScript. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Technical details To mitigate this vulnerability you can...

7.6CVSS8.1AI score0.17401EPSS
Exploits0References7
Kaspersky
Kaspersky
added 2016/06/14 12:0 a.m.50 views

KLA10826 OSI vulnerability in Microsoft Server Software

An information disclosure vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2016-0028 ADV160012 Related products Microsoft-Exchange-Server CVE list CVE-2016-0028 high KB list 3151086 315050...

5.5CVSS5.8AI score0.22554EPSS
Exploits0References8
Total number of security vulnerabilities3996