3965 matches found
KLA10467 Denial of service in Microsoft products
An unspecified vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users cause denial of service. This vulnerability can be exploited remotely via a specially desinged RDP requests. Original advisories Microsoft bulletin CVE-2015-0079 Related products...
KLA10469 Multiple vulnerabilities in Microsoft products
Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or conduct code injection. Below is a complete list of vulnerabilities 1. An XSS vulnerabilities can be exploited remotely v...
KLA10591 Code injection in Microsoft Exchange Server
Multiple XSS vulnerabilities were found in Microsoft Exchange Server. By exploiting these vulnerabilities malicious users can inject arbitrary web script or spoof user interface. These vulnerabilities can be exploited remotely via a specially designed URL, msgParam or other unknown vectors...
KLA10590 Multiple vulnerabilities in Microsoft Office
An unspecified vulnerabilities were found in Microsoft Office. By exploiting these vulnerabilities malicious users can cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed Office document. Original advisories CVE-2015-0064...
KLA10470 Multiple vulnerabilities in Microsoft products
Multiple critical vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to execute arbitrary code or gain privilleges. Below is a complete list of vulnerabilities 1. Unknown vulnerability can be exploited remotely via specially designed web site ...
KLA10459 Security bypass vulnerability in Microsoft Windows
Improper TLS restriction was found in Microsoft products. By exploiting this vulnerability malicious users bypass security. This vulnerability can be exploited remotely via a specially designed TLS traffic. Original advisories MS bulletin CVE-2015-1637 Related products Microsoft-Windows-Vista...
KLA10542 Multiple vulnerabilities in Microsoft Kernel-Mode Driver
Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, cause denial of service and obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper address...
KLA10518 Denial of service vulnerabilities in Wireshark
Integer overflows and other unspecified vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet. Original advisories Wireshark advisories Related...
KLA10589 Multiple vulnerabilities in Microsoft products
Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, cause denial of service or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper memory...
KLA10463 Multiple vulnerabilities in Google Chrome
Multiple critical vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or inject arbitrary code. Below is a complete list of vulnerabilities 1. Name conflict can be exploited remotely via a...
KLA10464 Multiple vulnerabilities in Mozilla products
Multiple serious vulnerabilities have been found in Mozilla products. Malicious users can exploit these vulnerabilities to cause denial of service, gain privilleges, obtain sensitiv information, execute arbitrary code, spoof user interface or read local files. Below is a complete list of...
KLA10461 Security bypass vulnerability in multiple products
Using of the same certificate was found in multiple products. By exploiting this vulnerability malicious users bypass security restrictions. This vulnerability can be exploited remotely via a man-in-the-middle attack. Original advisories - Related products VisualDiscovery CVE list CVE-2015-2077...
KLA10484 Interface spoofing vulnerability in McAfee Agent
An unspecified vulnerability was found in McAfee Agent. By exploiting this vulnerability malicious users conduct clicjacking attack. This vulnerability can be exploited remotely via a specially designed web page. Original advisories McAfee bulletin Related products McAfee-Agent CVE list...
KLA10485 Multiple vulnerabilities in McAfee Data Loss Prevention Endpoint
Multiple serious vulnerabilities have been found in McAfee DLPE. Malicious users can exploit these vulnerabilities to obtain sensitive information, inject or execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed URL and other unspecified vectors related ...
KLA10486 Denial of service vulnerability in OpenLDAP
Double free and other unknown vulnerability was found in OpenLDAP. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a speciallyu designed search request. Original advisories - Related products OpenLDAP CVE list...
KLA10501 Code execution Redaxscript vulnerability
SQL injection vulnerability was found in Redaxscript. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a searchterms parameters. Original advisories - Exploitation Public exploits exist for this vulnerability. Related...
KLA10500 Multiple vulnerabilities in u5CMS
Multiple serious vulnerabilities have been found in u5CMS. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute or inject arbitrary code and write local files. Below is a complete list of vulnerabilities 1. Open redirect vulnerabilities can be exploited...
KLA10474 Multiple vulnerabilities in Microsoft products
Multiple critical vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to fain privileges, bypass security restrictions or cause denial of service. Below is a complete list of vulnerabilities 1. A double-free and other unknown vulnerability can ...
KLA10475 Code execution vulnerability in Internet Explorer
Multiple critical vulnerabilities have been found in Internet Explorer. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. An unknwon...
KLA10454 PE vulnerabilities in MSCVMM
Improper user roles validating was found in MSCVMM. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited remotely via a specially designed credentials. Original advisories MS bulletin CVE-2015-0012 Related products...
KLA10456 SB vulnerability in MS Office
An use-after-free vulnerability was found in Microsoft Office. By exploiting this vulnerability malicious users can bypass ASLR protection. This vulnerability can be exploited remotely via a specially designed document. Original advisories MS bulletin CVE-2014-6362 Related products Microsoft-Offi...
KLA10443 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. By exploiting these vulnerabilities malicious users can gain privilleges, bypass security and cause denial of service. Below is a complete list of vulnerabilities 1. Improper URI restrictions can be exploited via a URI filesystem;...
KLA10494 Multiple vulnerabilities in Fortinet FortiAuthenticator
Multiple serious vulnerabilities have been found in Fortinet FortiAuthenticator. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, inject code and read arbitrary files. Below is a complete list of vulnerabilities 1. XSS vulnerability can be...
KLA10452 Multiple vulnerabilities in VMware products
Multiple serious vulnerabilities have been found in VMware products. Malicious users can exploit these vulnerabilities to gain privileges or cause denial of service. Below is a complete list of vulnerabilities 1. Vectors related to file write can be exploited locally; 2. Improper input validation...
KLA10451 Multiple vulnerabilities in VLC
Multiple serious vulnerabilities have been found in VLC. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed FLV or M2V files. Original advisories - Related products...
KLA10476 Code execution vulnerability in Microsoft products
Buffer overflow was found in Microsoft products. By exploiting this vulnerability malicious users execute arbitrary code. This vulnerability can be exploited remotely via a specially designed packets related to Telnet service. Original advisories MS advisory CVE-2015-0014 Related products...
KLA10445 ACE vulnerability in Mozilla
Improper DOM objects interaction was found in Mozilla products. By exploiting this vulnerability malicious users can execute arbitrary code. This culnerability can be exploited remotely via unspecified vectors. Original advisories MFSA Related products Mozilla-Firefox Mozilla-SeaMonkey CVE list...
KLA10439 Multiple vulnerabilities in Adobe products
Multiple critical vulnerabilities have been found in Adobe Products. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service and other unknown impact. Below is a complete list of vulnerabilities 1. A use-after-free...
KLA10447 Multiple vulnerabilities in Java SE
Multiple serious vulnerabilities have been found in Oracle products. Malicious users can exploit these vulnerabilities to cause loss of integrity, denial of service and obtain sensitive information. Below is a complete list of vulnerabilities 1. Vectors relsted to Swing, Hotspot, JAX-WS,...
KLA10446 CI vulnerability in Mozilla products
Improper interpretation of HTTP headers was found in Mozilla products. By exploiting this vulnerability malicious users can inject cookie. This vulnerability can be exploited via specially designed HTTP headers. Original advisories MFSA Related products Mozilla-Firefox Mozilla-Thunderbird...
KLA10460 Multiple vulnerabilities in OpenSSL
Multiple serious vulnerabilities have been found in OpenSSL. Malicious users can exploit these vulnerabilities to cause denial of service or bypass security restrictions. Below is a complete list of vulnerabilities pppeep 1. An unknown vulnerability can be exploited remotely via specially designe...
KLA10453 Multiple vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. These vulnerabilities can be exploited via a specially designed packet. Original advisories - Related products Wireshark CVE list CVE-2015-0564 warning...
KLA10611 Multiple vulnerabilities in Microsoft Exchange Server
Multiple serious vulnerabilities have been found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to gain privileges or spoof user interface. Below is a complete list of vulnerabilities 1. An improper tokens validation can be exploited remotely via an unspecified...
KLA10605 Code execution vulnerability in Microsoft VBScript
An unspecified vulnerabilities were found in Microsoft VBScript engine. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed web site. Original advisories CVE-2014-6363 CVE-2014-0271 Exploitation...
KLA10616 Multiple vulnerabilities in Microsoft Office
Multiple serious vulnerabilities have been found in Microsoft Office products. Malicious users can exploit these vulnerabilities to run arbitrary code, cause denial of service, loss of integrity, security bypass, privilege escalation and obtain sensitive information. Below is a complete list of...
KLA10444 DoS vulnerability in LibreOffice
Unspecified vulnerability was found in LibreOffice. By exploiting this vulnerabilities malicious users can cause denial of server, and possibly execute arbitrary code. This vulnerability can be exploited remotely via specially designed RTF file. Original advisories - Related products LibreOffice...
KLA10612 Information disclosure vulnerability in Microsoft AD Federation Services
An unspecified vulnerability was found in Microsoft AD Federation Services. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via unattended workstation manipulations. Original advisories CVE-2014-6331 Related products...
KLA10603 Multiple vulnerabilities in Microsoft .NET Framework
Multiple serious vulnerabilities have been found in Microsoft .NET Framework. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions fain privileges, execute arbitrary code or obtain sensitive information. Below is a complete list of...
KLA10610 Security bypass vulnerability in Microsoft IIS
Improper wildcard processing was found in Microsoft IIS. By exploiting this vulnerability malicious users can bypass intended rules. This vulnerability can be exploited remotely via a specially designed HTTP request. Original advisories CVE-2014-4078 Related products...
KLA10601 Multiple vulnerabilities in Microsoft products
Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service gain privileges, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1...
KLA10604 Multiple vulnerabilities in Microsoft SharePoint
Multiple serious vulnerabilities have been found in Microsoft SharePoint. Malicious users can exploit these vulnerabilities to gain privileges or execute arbitrary code. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via a specially designed requests; 2...
KLA10448 Multiple Pidgin vulnerabilities
Multiple serious vulnerabilities have been found in Pidgin. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information and write local files. Below is a complete list of vulnerabilities 1. Vectors related to Jabber protocol can be exploited remotely...
KLA10505 Multiple vulnerabilities in Oracle products
An unspecified vulnerabilities were found in Oracle products. By exploiting these vulnerabilities malicious users can affect integrity, confidentiality and vulnerability. These vulnerabilities can be exploited remotely via an unknown vectors related to JSSE, JAXP, AWT, 2D, Deployment, Libraries,...
KLA10614 Code injection vulnerability in Microsoft ASP.NET MVC
XSS vulnerability was found in ASP.NET MVC. By exploiting this vulnerability malicious users can inject arbitrary script. This vulnerability can be exploited remotely via a specially designed web page. Original advisories CVE-2014-4075 Related products Microsoft-ASP.NET-MVC CVE list CVE-2014-4075...
KLA10440 Multiple vulnerabilities in Adobe Acrobat & Reader
Multiple critical vulnerabilities have been found in Adobe Acrobat and Reader. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, execute arbitrary code and read arbitrary files. Below is a complete list of...
KLA10609 Multiple vulnerabilities in Microsoft Lync Server
Multiple serious vulnerabilities have been found in Microsoft Lync Server. Malicious users can exploit these vulnerabilities to inject arbitrary code or cause denial of service. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via a specially designed URL...
KLA10602 Multiple vulnerabilities in Microsoft Internet Explorer
Multiple overflows and other unknown vulnerabilities were found in Microsoft Internet Explorer. By exploiting these vulnerabilities malicious users can gain privileges, execute arbitrary code or obtain sensitive information. These vulnerabilities can be exploited remotely via a specially designed...
KLA10429 DoS vulnerability in FileZilla
An unspecified vulnerability was found in FileZilla. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited locally via folder name manipulations. Original advisories FileZilla changelog Related products FileZilla CVE list Solution Update...
KLA10269 OSI vulnerability in Nessus
An unspecified vulnerability was found in Nessus. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely at a point related to Web UI. Original advisories - Related products Nessus CVE list CVE-2014-4980 warning Solution...
KLA10353 DoS vulnerability in Symantec
An unspecified vulnerability was found in Symantec products. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed e-mail message. Original advisories Symantec advisory Related products...