Lucene search
K
KasperskyRecent

3996 matches found

Kaspersky
Kaspersky
added 2016/01/04 12:0 a.m.38 views

KLA10730 Denial of service vulnerabilities in Wireshark

Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities 1. Improper data validation and lack of restrictions can be exploited remotely via a specially designed packet o...

5.5CVSS7.2AI score0.07142EPSS
Exploits14References3
Kaspersky
Kaspersky
added 2015/12/30 12:0 a.m.35 views

KLA10706 Potentially vulnerable Dell certificate

Microsoft updates Certificate Trust list to exclude potentially vulnerable eDellCert certificate. Via this vulnerability malicious can obtain sensitive information or bypass security restrictions. Technical details For further details about problem you can visit Dell blog entry related. And also ...

6.8AI score
Exploits0References6
Kaspersky
Kaspersky
added 2015/12/29 12:0 a.m.41 views

KLA10728 Obsolete Adobe Flash Player for Windows

Obsolete version of Adobe Flash Player was found in Microsoft Internet Explorer. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely. Technical details For further information look at KLA10727 Origina...

7.8AI score
Exploits0References5
Kaspersky
Kaspersky
added 2015/12/28 12:0 a.m.314 views

KLA10727 Code execution vulnerabilities in Adobe Flash Player and AIR

Type confusion, integer overflow, use-after-free and memory corruption vulnerabilities were found in Adobe products. By exploiting these vulnerabilities malicious users can cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely via an unknown vectors...

10CVSS10AI score0.67922EPSS
Exploits4References7
Kaspersky
Kaspersky
added 2015/12/23 12:0 a.m.30 views

KLA10726 Security bypass vulnerability in Dovetones AD Self Password Reset

An unspecified vulnerability was found in Dovestones AD Self Password Reset. By exploiting this vulnerability malicious users can reset arbitrary passwords. This vulnerability can be exploited remotely via a specially designed request. Technical details This vulnerability related to...

10CVSS9.6AI score0.0238EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/12/22 12:0 a.m.150 views

KLA10732 Security bypass vulnerability in Mozilla Firefox and Firefox ESR

Lack of security enforcement was found in Mozilla Firefox. By exploiting this vulnerability malicious users can conduct man-in-the-middle attack. This vulnerability can be exploited remotely via a collision-based attacks. Technical details This vulnerability caused by not rejecting MD5 signatures...

5.9CVSS6.5AI score0.0288EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2015/12/17 12:0 a.m.928 views

KLA10729 Privilege escalation vulnerability in WinRAR

Improper files handling was found in WinRAR. By exploiting this vulnerability malicious users can execute arbitrary code with WinRAR privileges. This vulnerability can be exploited remotely via a specially designed archive. Technical details This vulnerability related to two WinRAR functions:one...

7.4CVSS7.7AI score0.00914EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/12/16 12:0 a.m.41 views

KLA10724 Code execution vulnerability in Foxit products

Multiple use-after-free vulnerabilities were found in Foxit products. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed PDF document. Technical details Vulnerabilities related to Print method an...

6.8CVSS7.7AI score0.03691EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/12/15 12:0 a.m.89 views

KLA10723 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, bypass security restrictions, gain privileges, execute arbitrary code or obtain sensitive information. Below is a complete list ...

10CVSS10AI score0.06058EPSS
Exploits1References4
Kaspersky
Kaspersky
added 2015/12/15 12:0 a.m.55 views

KLA10722 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Integer overflow at WebCursor can be exploited remotely via a specially designe...

10CVSS10AI score0.05497EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2015/12/12 12:0 a.m.43 views

KLA10721 Multiple vulnerabilities in Apple iTunes

Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Multiple memory corruption issues could be exploit...

6.8CVSS9.7AI score0.02795EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.86 views

KLA10718 Code execution vulnerabilities in Microsoft Graphics Component

Improper fonts handling was found in Microsoft Graphics Component used in Multiple Microsoft products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Original advisories CVE-2015-6108...

9.3CVSS7.3AI score0.25998EPSS
Exploits0References38
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.47 views

KLA10711 Multiple vulnerabilities in Adobe Flash Player

Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities 1. An unknown vulnerability can be exploited remote...

10CVSS10AI score0.43408EPSS
Exploits18References6
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.119 views

KLA10720 Multiple vulnerabilities in Microsoft Internet Explorer & Edge

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer & Edge. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions, inject or execute arbitrary code, gain privileges or obtain sensitive information. Below is a complete...

9.3CVSS8.3AI score0.34987EPSS
Exploits14References44
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.43 views

KLA10717 Multiple vulnerabilities in Microsoft Silverlight

Multiple serious vulnerabilities have been found in Microsoft Silverlight. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security restrictions. Below is a complete list of vulnerabilities 1. Improper requests handling can be exploited remotely via a special...

9.3CVSS7.8AI score0.19485EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.58 views

KLA10716 Code execution vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. Improper memory handling can be exploited remotely via a specially designed content to execute arbitra...

9.3CVSS7.5AI score0.53941EPSS
Exploits0References25
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.27 views

KLA10713 Obsolete Adobe Flash Player for Windows

Obsolete version of Adobe Flash Player can be exploited via multiple vectors Technical details To read further details about this vulnerability you can look at KLA10711 Original advisories Microsoft Advisory Related products Microsoft-Windows CVE list KB list 3119147 Solution Install necessary...

7.1AI score
Exploits0References4
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.49 views

KLA10712 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, inject arbitrary code or execute arbitrary code. Below is a complete list of vulnerabilities 1. Improper objects handling ...

10CVSS10AI score0.03199EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.293 views

KLA10714 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service or gain privileges. Below is a complete list of vulnerabilities 1. Improper requests parsing at Windows Domain Name System DNS can be exploited...

9.3CVSS9.4AI score0.84701EPSS
Exploits22References35
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.57 views

KLA10719 Multiple vulnerabilities in Microsoft VBScript

Memory handling vulnerabilities were found in Microsoft VBScript. By exploiting these vulnerabilities malicious users can execute arbitrary code or obtain sensitive information. These vulnerabilities can be exploited remotely via a specially designed web site. Original advisories CVE-2015-6135...

9.3CVSS8AI score0.25169EPSS
Exploits2References10
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.47 views

KLA10715Multiple vulnerabilities in Microsoft Windows Media Center

CVSS: 9.3 Detect date: 12/08/2015 Severity: Critical Description: An unknown vulnerabilities in Microsoft Windows Media Center can be exploited remotely via a specially designed .mcl files. Malicious attacker can execute arbitrary code or obtain sensitive information. Affected products: Microsoft...

9.3CVSS7.8AI score0.46006EPSS
Exploits11
Kaspersky
Kaspersky
added 2015/12/07 12:0 a.m.37 views

KLA11445 ACE vulnerability in PuTTY

Integer overflow vulnerability was found in PuTTY. Malicious users can exploit this vulnerability remotely to execute arbitrary code and cause denial of service. Original advisories PuTTY vulnerability vuln-ech-overflow Related products PuTTY CVE list CVE-2015-5309 warning Solution Update to the...

4.3CVSS10AI score0.03467EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/12/03 12:0 a.m.57 views

KLA10704 Multiple vulnerabilities in ARRIS cable modems.

Multiple serious vulnerabilities have been found in ARRIS cable modems. Malicious users can exploit these vulnerabilities to gain privileges or inject arbitrary code. Below is a complete list of vulnerabilities: 1. Predictable technician password can be exploited remotely to gain technician...

9.3CVSS7.7AI score0.02479EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2015/12/01 12:0 a.m.45 views

KLA10703 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities 1. Improper array elements...

10CVSS8.8AI score0.08115EPSS
Exploits6References3
Kaspersky
Kaspersky
added 2015/11/19 12:0 a.m.34 views

KLA10705 Code execution vulnerabilities in Tibbo AggreGate.

Successful exploitation of the identified vulnerabilities may allow an attacker to execute arbitrary code and commands. 1. Unknown vulnerability at Ice Faces servlet allows remote attackers to upload and execute arbitrary Java code via a specially designed XML document; 2. Unknown vulnerability...

10CVSS7.8AI score0.03203EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2015/11/17 12:0 a.m.96 views

KLA10702 Code execution vulnerability in Google Picasa

Integer overflow was found in Google Picasa. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed CAMF section in FOVb image. Original advisories - CVE list CVE-2015-8221 critical Solution Update to the...

10CVSS7.8AI score0.03992EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2015/11/15 12:0 a.m.142 views

KLA11273 Adobe Acrobat X and Adobe Reader X end of life

Adobe announced the end of support of Adobe Acrobat X and Adobe Reader X. Users should immediately make transition to Adobe Acrobat DC and Adobe Acrobat Reader DC. Original advisories Adobe Acrobat X and Adobe Reader X End of Support Related products Adobe-Reader-X Adobe-Acrobat-X CVE list Soluti...

7.1AI score
Exploits0References4
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.49 views

KLA10693 Information disclosure vulnerability in Microsoft Lync & Skype for Business

An improper information sanitization was found in Microsoft Lync and Skype for Business. By exploiting this vulnerability malicious users can execute arbitrary code or obtain sensitive information. This vulnerability can be exploited remotely via a specially designed message. Technical details Th...

4.3CVSS7.3AI score0.12811EPSS
Exploits0References10
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.43 views

KLA10690 Multiple vulnerabilities in Adobe products

Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities 1. Type confusion vulnerability can be exploited to execute arbitrary code; ...

10CVSS8.1AI score0.40682EPSS
Exploits4References7
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.39 views

KLA10699 Multiple vulnerabilities in LibreOffice

Multiple serious vulnerabilities have been found in LibreOffice. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Lack of configuration restrictions at LinkUpdateMod...

6.8CVSS8.7AI score0.13826EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.226 views

KLA10696 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, gain privileges or execute arbitrary code. Below is a complete list of vulnerabilities 1. Improper memory objects handling can be exploited remotely via...

9.3CVSS7.9AI score0.35638EPSS
Exploits0References68
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.43 views

KLA10700 Code execution vulnerability in LibreOffice

Lack of bookmarks restrictions was found in LibreOffice & OpenOffice. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DOC file. Technical details To exploit this...

6.8CVSS8AI score0.09554EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.66 views

KLA10695 Multiple vulnerabilities in Microsoft .NET Framework

Multiple serious vulnerabilities have been found in Microsoft .NET Framework. Malicious users can exploit these vulnerabilities to bypass security restrictions,. Below is a complete list of vulnerabilities 1. Erroneous XML parsing at Document Type Definition can be exploited remotely via a...

4.3CVSS5.6AI score0.61024EPSS
Exploits1References14
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.111 views

KLA10694 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, gain privileges, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete lis...

9.3CVSS9.3AI score0.35288EPSS
Exploits4References40
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.41 views

KLA10691 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An unknown vulnerability at PDF viewer can b...

10CVSS10AI score0.40682EPSS
Exploits4References4
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.74 views

KLA10697 Multiple vulnerabilities in Microsoft Internet Explorer

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper memory objects access...

9.3CVSS8.3AI score0.31029EPSS
Exploits7References31
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.44 views

KLA11372 Multiple vulnerabilities in OpenOffice

Multiple serious vulnerabilities have been found in OpenOffice. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities: Below is a complete list of vulnerabilities: 1. Lack o...

6.8CVSS8.7AI score0.13826EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.29 views

KLA11373 Code execution vulnerability in OpenOffice

Lack of bookmarks restrictions was found in OpenOffice. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DOC file. Technical details To exploit this vulnerability attacker...

6.8CVSS8AI score0.09554EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.13 views

KLA10692 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10690. Original advisories Microsoft Advisory Related products Microsoft-Windows CVE list KB list 3103688 Solution Install necessary updates from the KB section, that are listed in...

7.3AI score
Exploits0References4
Kaspersky
Kaspersky
added 2015/11/09 12:0 a.m.17 views

KLA10835 Vulnerable end-of-life version of Google Chrome

Google decided to stop support of Chrome browser for old operations systems listed above. More detailed information about vulnerabilities in last supported version you can find at KLA10783 and later advisories corresponding to Google Chrome browser. Original advisories Chrome blog entry Related...

6.8AI score
Exploits0References3
Kaspersky
Kaspersky
added 2015/11/09 12:0 a.m.29 views

KLA10698 Code execution vulnerability in Google Picasa

Buffer overflow was found in Google Picasa. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely. Technical details This vulnerability caused by heap based buffer overflow and triggered via vectors related to phase one 0x412 tag...

10CVSS8AI score0.04017EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2015/11/03 12:0 a.m.84 views

KLA10689 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilitie...

9.8CVSS10AI score0.10238EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2015/10/28 12:0 a.m.50 views

KLA10725 Code execution vulnerabilities in Aurodesk Design Review

Multiple serious vulnerabilities have been found in Autodesk Design Review. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities 1. Integer overflow can be exploited remotely via a specially designed BMP file; 2. Buffer overflows...

6.8CVSS7.9AI score0.03751EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/10/27 12:0 a.m.30 views

KLA10687 Code execution vulnerability in Adobe Shockwave Player

An unspecified vulnerability was found in Adobe Shockwave Player. By exploiting this vulnerability malicious users can execute arbitrary code. Original advisories Adobe bulletin Related products Adobe-Shockwave-Player CVE list CVE-2015-7649 critical Solution Update to the latest version Get...

10CVSS7.6AI score0.03753EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/10/22 12:0 a.m.77 views

KLA10684 Flash Player update for Google Chrome

Google Chrome was updated to address vulnerabilities in Flash Player. For details look at KLA10680. Original advisories Google release blog entry Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is classified as Exploit. More...

10CVSS8.3AI score0.68396EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2015/10/21 12:0 a.m.63 views

KLA10685 Multiple vulnerabilities at Apple iTunes

Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code or cause denial of service. Below is a complete list of vulnerabilities 1. Multiple memory corruptions at WebKit can be exploited via iTunes Store...

7.5CVSS9.3AI score0.03699EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/10/20 12:0 a.m.108 views

KLA10683 Multiple vulnerabilities in Oracle Java SE

An unspecified vulnerabilities were found in Oracle Java SE. By exploiting these vulnerabilities malicious users can cause denial of service or obtain sensitive information. These vulnerabilities can be exploited remotely via an unknown vectors. Technical details Vulnerabilities related to CORBA,...

10CVSS6.4AI score0.13354EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2015/10/16 12:0 a.m.61 views

KLA10688 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10680. Original advisories Microsoft Advisory Related products Adobe-Flash-Player-ActiveX CVE list KB list 3065820 2929825 3074683 2770041 2805940 3033408 2785605 3001237 3087040...

7.3AI score
Exploits0References52
Kaspersky
Kaspersky
added 2015/10/15 12:0 a.m.61 views

KLA10681 Information disclosure vulnerability in Mozilla Firefox

Improper CORS implementation was found in Mozilla Firefox at fetch API. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed web page. Original advisories Mozilla advisory Related products...

6.8CVSS9.2AI score0.01662EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/10/14 12:0 a.m.41 views

KLA10701 Denial of service vulnerability in Wireshark

Redundant indirection was found in Wireshark. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed packet. Technical details This vulnerability caused by pcapngreadifdescrblock function in...

4.3CVSS5.7AI score0.03037EPSS
Exploits0References3
Total number of security vulnerabilities3996