3965 matches found
KLA10606 Denial of service vulnerability in Microsoft Dynamics AX
An unspecified vulnerability was found in Dynamics AX. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed data. Original advisories CVE-2014-0261 Related products Microsoft-Dynamics-AX CVE list...
KLA10211 SB vulnerability in IBM Tivoli Storage Manager
An improper permissions vulnerability was found in IBM Tivoli Storage Manager. By exploiting this vulnerability malicious users can bypass access restrictions. This vulnerability can be exploited locally via standard file operations. Original advisories - Related products Tivoli-Storage-Manager C...
KLA10458 Multiple vulnerabilities in HP SMH
Multiple vulnerabilities was found in HP SMH. By exploiting these vulnerabilities malicious users can conduct XSS, CSRF and clicjacking attacks via unspecified vectors. These vulnerabilities can be exploited remotely. Original advisories HP bulletin Related products HP-System-Management-Homepage...
KLA10180 Multiple vulnerabilities in Google Picasa
Multiple serious vulnerabilities have been found in Google Picasa. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. A buffer overflow can be exploited remotely via a specially designed RAW file; ...
KLA10307 LPE vulnerability in RealVNC
An unspecified vulnerability was found in RealVNC. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via a specially designed argument. Original advisories - Related products RealVNC-Viewer CVE list CVE-2013-6886 high Solution Update...
KLA10229 ACE vulnerabilities in IrfanView
A buffer overflow was found in IrfanView. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed GIF file or a specially designed thumbnail in the file. Original advisories IrfanView changelog Related...
KLA10217 ACE vulnerability in Ichitaro
An unspecified vulnerability was found in JustSystem Ichitaro. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed document. Original advisories JustSystems bulletin Related products Ichitaro-viewer...
KLA10035 Multiple ACE vulnerabilities in Adobe Shockwave Player
Multiple serious vulnerabilities have been found in Adobe Shockwave Player. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code via unspecified vectors. Original advisories Adobe bulletin Related products Adobe-Shockwave-Player CVE list...
KLA10279 DoS vulnerability in iPrint
An unspecified vulnerability was found in Novell iPrint. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products Novell-iPrint-Client CVE list CVE-2013-3708 warning...
KLA10281 OSI vulnerability in OpenVPN
An unspecified vulnerability was found in OpenVPN. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a timing attack. Original advisories - Related products OpenVPN CVE list CVE-2013-2061 warning Solution Update to...
KLA10204 DoS vulnerability in IBM Lotus Sametime
An unspecified vulnerability was found in the IBM Lotus Sametime. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially desgined AV session. Original advisories - Related products IBM-Lotus-Sametime CVE list...
KLA10145 CI vulnerability in Documentum eRoom
Multiple XSS were found in Documentum eRoom. By exploiting this vulnerability malicious users can inject web script. This vulnerability can be exploited remotely via a specially designed URL. Original advisories - Related products EMC-Documentum-eRoom CVE list CVE-2013-3286 warning Solution Updat...
KLA10275 DoS vulnerability in Node.js
An unspecified vulnerability was found in Node.js. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Related products Node.js CVE list Solution Update to latest version...
KLA10492 Multiple vulnerabilities in Oracle products
Multiple vulnerabilities were found in Oracle products. By exploiting these vulnerabilities malicious users can affect integrity, confidentiality and availability. These vulnerabilities can be exploited remotely via an unknwn vectors related to CORBA, JNDI, BEANS, AWT, JAX-WS, Security, JGSS,...
KLA10174 SB vulnerability in GnuPG
Improper permissions work was found in GnuPG. By exploiting this vulnerability malicious users can bypass cryptographic protection. This vulnerability can be exploited remotely via subkey. Original advisories - Related products GnuPG-gpg CVE list CVE-2013-4351 high Solution Update to latest versi...
KLA10259 DoS vulnerability in McAfee Agent
An unspecified vulnerability was found in McAfee Agent. By exploiting this vulnerability malicious users can cuase denial of service. This vulnerability can be exploited remotely via a specially designed HTTP request. Original advisories - Related products McAfee-Agent CVE list CVE-2013-3627...
KLA10238 ACE vulnerability in Kingsoft Writer
A buffer overflow was found in Kingsoft Writer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed WPS file. Original advisories - Related products Kingsoft-Writer CVE list CVE-2013-3934 critical...
KLA10218 DoS vulnerability in ImageMagick
An unspecified vulnerability was found in ImageMagick. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed GIF image. Original advisories - Related products ImageMagick CVE list CVE-2013-4298 warning...
KLA10025 DoS vulnerability in GOM Media Player
An unspecified vulnerability was found in the GOM Media Player. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to an unknown application via a specially designed .WAV file. Original advisories N...
KLA10208 OSI vulnerability in IBM Security AppScan
Weak encryption algorithms were found in IBM Security AppScan. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely at a point related to SSL. Original advisories - Related products...
KLA10296 ACE vulnerability in Polaris
An unspecified vulnerability was found in Polaris. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DOCX file. Original advisories ZDI Related products Polaris-Office-for-Android CVE list Solution...
KLA10357 DoS vulnerability in TOP Server
An unspecified vulnerability was found in the TOP Server. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited locally via a specially designed input. Original advisories - Related products TOP-Server CVE list CVE-2013-2804 high Solutio...
KLA11441 OSI vulnerability in PuTTy
A buffer overflow vulnerability was found in PuTTY. Malicious users can exploit this vulnerability locally to obtain sensitive information. Original advisories PuTTY vulnerability password-not-wiped Related products PuTTY CVE list CVE-2011-4607 warning Solution Update to the latest version Downlo...
KLA10235 DoS vulnerability in Kepware KEPServerEX
An unspecified vulnerability was found in KEPServerEX. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed DNP3 packet. Original advisories - Related products Kepware-EX CVE list CVE-2013-2789 high...
KLA11443 DoS vulnerability in PuTTY
Integer overflow vulnerability was found in PuTTY. Malicious users can exploit this vulnerability remotely to cause denial of service and possibly execute arbitrary code. Original advisories PuTTY vulnerability vuln-signature-stringlen Related products PuTTY CVE list CVE-2013-4852 high Solution...
KLA10434 Multiple vulnerabilities in PuTTY
Multiple serious vulnerabilities have been found in PuTTY. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information or possibly execute arbitrary code. Below is a complete list of vulnerabilities 1. An integer overflow can be exploited remotely vi...
KLA11448 DoS vulnerability in WinSCP
Integer overflow vulnerability was found in WinSCP. Malicious users can exploit this vulnerability remotely to cause denial of service and possibly execute arbitrary code. Original advisories http://winscp.net/tracker/showbug.cgi?id=1017 Related products WinSCP CVE list CVE-2013-4852 high Solutio...
KLA10403 ACE vulnerability in XnView
A buffer overflow was found in XnView. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed PCT file. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10078 DoS vulnerability in B-e-soft Artweaver
A buffer overflow vulnerability was found in Artweaver. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited from the network at a point related to unknown applications via a specially designed AWD...
KLA10457 Adobe Acrobat & Reader multiple vulnerabilities
Multiple serious vulnerabilities have been found in Adobe Acrobat & Reader. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security, obtain sensitive information or arbitrary code execution. Below is a complete list of vulnerabilities 1. An unspecified...
KLA10273 ACE vulnerabilities in NetworkMiner
An unspecified vulnerability was found in NetworkMiner. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed file. Original advisories Netresec bulletin Related products NetworkMiner CVE list Solution...
KLA10351 Multiple vulnerabilities in Symantec Backup Exec
Multiple serious vulnerabilities have been found in Symantec Backup Exec. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, read-write backup files, inject scripts and execute arbitrary code Below is a complete list of vulnerabilities 1...
KLA10243 DoS vulnerability in LibreOffice
An unspecified vulnerability was found in LibreOffice. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed XML document. Original advisories LibreOffice advisory Related products LibreOffice CVE list...
KLA10146 OSI vulnerability in EMC NetWorker
An unspecified vulnerability was found in EMC NetWorker. By exploiting this vulnerability malicious users can obtain configuration information. This vulnerability can be exploited locally. Original advisories - Related products EMC-NetWorker CVE list CVE-2013-0943 warning Solution Update to lates...
KLA10318 Vulnerability in Sawmill
An unspecified vulnerability was found in Sawmill. By exploiting this vulnerability malicious users can cause unknown impact. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products Sawmill CVE list CVE-2013-4947 high Solution Update to latest...
KLA10068 Multiple vulnerabilities in Apache httpd
Multiple serious vulnerabilities have been found in Apache httpd. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary commands Below is a complete list of vulnerabilities 1. An improper DAV restriction vulnerability can be exploited remotely via a...
KLA10065 Multiple vulnerabilities in Apache httpd
Multiple serious vulnerabilities have been found in Apache httpd. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, execute arbitrary code, obtain sensitive information or bypass security restrictions. Below is a complete list of vulnerabilities 1. An...
KLA10081 ACE vulnerability in Autodesk
An unspecified vulnerability was found in Autodesk products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DWG file. Original advisories Autodesk bulletin Related products AutoCAD...
KLA10278 CI vulnerability in Novell GroupWise
XSS vulnerability was found in Novell GroupWise. By exploiting this vulnerability malicious users can inject arbitrary web script. This vulnerability can be exploited remotely via a specially designed e-mail message. Original advisories - Related products Novell-Groupwise CVE list CVE-2013-1087...
KLA10069 DoS vulnerability in Apache Subversion
An assertion failure vulnerability was found in Apache Subversion. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to moddavsvn via a specially designed URL. Original advisories Apache bulletin...
KLA11038 Adobe Reader and Adobe Acrobat 9.x end of life
Adobe announced the end of support of Adobe Acrobat and Adobe Reader 9.x. Users should immediately update to the latest versions of Adobe Acrobat and Adobe Reader. Original advisories Download Adobe Acrobat DC and Adobe Acrobat Reader DC Related products Adobe-Reader Adobe-Acrobat CVE list KB lis...
KLA10000 Unspecified vulnerability in Oracle Java Runtime Environment
An unspecified vulnerability was found in the JRE component of Oracle Java SE in versions up to 7.21. By exploiting this vulnerability malicious users can affect integrity. This vulnerability can be exploited remotely at a point related to Deployment. Original advisories confirmation mitre Relate...
KLA10188 Multiple vulnerabilities in HP Insight Diagnostics
Multiple critical vulnerabilities have been found in HP Insight Diagnostics. Malicious users can exploit these vulnerabilities to inject code or write local files. Below is a complete list of vulnerabilities 1. Improper PHP include restrictions can be exploited via a path parameter; 2. A path...
KLA10255 Multiple ACE vulnerabilities in Adobe Shockwave Player
Multiple unspecified vulnerabilities were found in Shockwave player. By exploiting these vulnerabilities malicious users can cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely at unspecified vectors. Original advisories - Related products...
KLA11268 Out-of-bounds write vulnerability in Google Chrome
An out-of-bounds vulnerability was found in Google Chrome. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed website. Original advisories Stable Channel Update for Desktop Related products Google-Chro...
KLA10156 Multiple vulnerabilities in FileMaker
Multiple serious vulnerabilities have been found in FileMaker. Malicious users can exploit these vulnerabilities to obtain sensitive information or inject scripts. Below is a complete list of vulnerabilities 1. Lack of X.509 certificate verification can be exploited remotely via a specially...
KLA10587 Denial of service vulnerability in Wireshark
Lack of length validation was found in Wireshark. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed packet. Original advisories WNPA security advisory Related products Wireshark CVE list CVE-2013-408...
KLA10102 OSI vulnerability in Cerberus FTP Server
An unspecified vulnerability was found in the Cerberus FTP Server. By exploiting this vulnerability malicious users can obtain information about user accounts. This vulnerability can be exploited from the network at a point related to SSH auth via login result analysis. Original advisories Cerber...
KLA10076 Multiple vulnerabilities in Apple iTunes
Multiple critical vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or spoof HTTPS servers. Below is a complete list of vulnerabilities 1. Vectors related to browsing the iTunes Store can be...
KLA10017 Multiple vulnerabilities in Apple QuickTime
Multiple serious vulnerabilities have been found in Apple QuickTime. Malicious users can exploit these vulnerabilities to execute arbitrary code or cause denial of service. Vectors related to unknown applications can be exploited to execute arbitrary code or cause denial of service via specially...