6867 matches found
Microsoft Windows DNSAPI CVE-2018-8304 Remote Denial of Service Vulnerability
Description Microsoft Windows is prone to a remote denial of service vulnerability. Attackers can exploit this issue to cause denial-of-service condition, denying service to legitimate users. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...
Microsoft Edge Scripting Engine CVE-2017-11889 Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...
SA156: Apache Tomcat Vulnerabilities Apr-Oct 2017
SUMMARY Symantec Network Protection products using affected versions of Apache Tomcat are susceptible to multiple security vulnerabilities. A remote attacker, with access to the management interface, can obtain sensitive information from the server, modify information associated with a different...
Microsoft Internet Explorer and Microsoft Edge CVE-2017-8522 Remote Memory Corruption Vulnerability
Description Microsoft Internet Explorer and Microsoft Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affecte...
Microsoft Office CVE-2016-7275 DLL Loading Remote Code Execution Vulnerability
Description Microsoft Office is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...
Microsoft Windows Kernel 'Win32k.sys' CVE-2016-7260 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit...
Microsoft Windows CVE-2016-7223 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to run processes with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Syste...
Microsoft Windows CVE-2015-6128 DLL Loading Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will result in a denial-of-service condition. Note: This issue was previously titl...
Microsoft Windows URI Handler Command Execution Vulnerability
Description Microsoft Windows XP and Server 2003 with Internet Explorer 7 is prone to a command-execution vulnerability because it fails to properly sanitize input. Successfully exploiting this issue allows remote attackers to execute arbitrary commands in the context of users that follow malicio...
Linux Kernel CVE-2019-19965 Null Pointer Dereference Denial of Service Vulnerability
Description Linux Kernel is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. Linux Kernel versions through 5.4.6 are vulnerable. Technologies Affected Linux kernel 3.0 Linux kernel 3.0-rc1 Linux kernel 3.0.1 Linux kernel 3.0.18...
Linux kernel CVE-2019-19377 Use After Free Denial of Service Vulnerability
Description Linux kernel is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. Linux kernel version 5.0.21 is vulnerable. Technologies Affected Linux kernel 5.0.21 Recommendations Permit local access for trusted individuals only...
F5 BIG-IP Traffic Management Microkernel CVE-2019-6669 Denial of Service Vulnerability
Description F5 BIG-IP is prone to a remote denial-of-service vulnerability. A successful exploit may allow an attacker to cause the Traffic Management Microkernel TMM to reload, denying service to legitimate users. Technologies Affected F5 BIG-IP AAM 11.6.1 F5 BIG-IP AAM 12.1.1 F5 BIG-IP AFM 11.6...
Multiple F5 BIG-IP Products CVE-2019-6666 Denial of Service Vulnerability
Description Multiple F5 BIG-IP Products are prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause a denial of service condition. Technologies Affected F5 BIG-IP AAM 13.0.0 F5 BIG-IP AAM 13.1.1 F5 BIG-IP AAM 14.0.0 F5 BIG-IP AAM 14.1.0 F5 BIG-IP AAM 15.0.0 F5 BIG-IP...
Google Chrome Prior to 78 Multiple Security Vulnerabilities
Description Google Chrome is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code in the context of the browser, obtain sensitive information, conduct spoofing attacks, bypass certain security restrictions and perform unauthorized actions or cau...
Golang Go CVE-2019-16276 HTTP Request Smuggling Vulnerability
Description Golang Go is prone to an HTTP-request-smuggling vulnerability. A remote attacker may leverage this issue to poison web caches,bypass security defenses, launch cross-site scripting and HTML-injection attacks, and execute session-hijacking attacks. Other attacks are also possible...
OpenSSL CVE-2019-1563 Information Disclosure Vulnerability
Description OpenSSL is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information that may aid in further attacks. OpenSSL 1.1.1 through 1.1.1c, 1.1.0 through 1.1.0k, 1.0.2 through 1.0.2s are vulnerable. Technologies Affected IBM...
OpenSSL CVE-2019-1547 Information Disclosure Vulnerability
Description OpenSSL is prone to a information-disclosure vulnerability. Successfully exploiting this issue allows local attackers to recover the key during an ECDSA signature operation. Information harvested may aid in further attacks. Technologies Affected OpenSSL Project OpenSSL 1.0.2 OpenSSL...
Microsoft Windows GDI Component CVE-2019-1050 Information Disclosure Vulnerability
Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...
Microsoft Edge Chakra Scripting Engine CVE-2019-1024 Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...
Microsoft Windows JET Database Engine CVE-2019-0902 Remote Code Execution Vulnerability
Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...
Microsoft Internet Explorer CVE-2019-0995 Security Bypass Vulnerability
Description Microsoft Internet Explorer is prone to a security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. This may lead to other attacks. Internet Explorer 11 is vulnerable. Technologies...
Microsoft Windows Diagnostics Hub CVE-2019-0727 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to elevate the privileges and take control of an affected system. Technologies Affected Microsoft Visual Studio 2015 Update 3 Microsoft Visual Studio 2017 15.0 Microsoft...
Microsoft Windows DHCP Client CVE-2019-0698 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. Successfully exploiting this issue may result in the execution of arbitrary code in the context of the affected system. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affecte...
Python CVE-2019-9636 Information Disclosure Vulnerability
Description Python Requests is prone to an information disclosure vulnerability. An attacker may leverage this issue to gain access to potentially sensitive information. This may aid in further attacks. Python versions 2.7 through 2.7.16 and 3.0 through 3.7.2 are vulnerable. Technologies Affected...
Microsoft Office Access Connectivity Engine CVE-2019-0675 Remote Code Execution Vulnerability
Description Microsoft Office Access Connectivity Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Office 2010 Service Pack 2 32-bit editions Microsoft Office...
Microsoft SharePoint Server CVE-2019-0562 Remote Privilege Escalation Vulnerability
Description Microsoft SharePoint Server is prone to a remote privilege-escalation vulnerability because it fails to properly sanitize user-supplied input. An attacker may exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Technologies Affected Microsof...
Microsoft Internet Explorer CVE-2017-11822 Remote Memory Corruption Vulnerability
Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Internet Explorer 9 and 11 are vulnerabl...
Microsoft Windows SMB Server CVE-2017-0280 Remote Denial of Service Vulnerability
Description Microsoft Windows is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microso...
Microsoft Office CVE-2016-7264 Information Disclosure Vulnerability
Description Microsoft Office is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Excel 2007 SP3 Microsoft Excel 2016 for Mac Microsoft Excel Viewer Microsoft Excel fo...
Microsoft Windows Kernel 'Bowser.sys' CVE-2016-7218 Information Disclosure Vulnerability
Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information, bypass certain security restrictions and perform unauthorized actions. Successful exploits may lead to other attacks. Technologies Affect...
Microsoft Windows Graphics Component CVE-2016-3270 Local Privilege Escalation Vulnerability
Description Microsoft Graphics Component is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges within the context of the affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft...
Microsoft Internet Explorer CVE-2016-3298 Multiple Information Disclosure Vulnerabilities
Description Microsoft Internet Explorer is prone to multiple information-disclosure vulnerabilities. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Internet explorer 9, 10, and 11 are vulnerable. Technologies Affected Microsoft Internet...
Microsoft Windows Kernel 'Win32k.sys' CVE-2016-0165 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsof...
Microsoft Windows Remote Desktop Protocol CVE-2016-0036 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Failed exploit attempts will result in a denial of service condition. Technologies Affected Microsoft Windows 10 for...
Microsoft .NET Framework CVE-2015-6096 XML Handling Information Disclosure Vulnerability
Description The Microsoft .NET Framework is prone to a remote information-disclosure vulnerability. Attackers can exploit this issue to gain access to sensitive information that may aid in further attacks. Technologies Affected Microsoft .NET Framework 2.0 SP2 Microsoft .NET Framework 3.5 Microso...
SA98 : OpenSSL Security Advisory 11-June-2015
SUMMARY Blue Coat products using affected versions of OpenSSL 1.0.2, 1.0.1, 1.0.0, and 0.9.8 are vulnerable to multiple vulnerabilities. A remote attacker may exploit these vulnerabilities to cause a denial of service, memory corruption, application crash, or downgrade in the Diffie-Hellman...
Microsoft Windows Common Controls CVE-2015-1756 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits will allow the attacker to execute arbitrary code within the context of the application typically Internet Explorer that uses the ActiveX control. Technologies Affected Avaya Meeting Exchange -...
Microsoft Windows USB Descriptor CVE-2013-3200 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability that is related to the DirectX Graphics Kernel Subsystem. An attacker with physical access can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the...
Oracle Java SE CVE-2013-1488 Remote Code Execution Vulnerability
Description Oracle Java SE is prone to a remote code execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current process. Technologies Affected Avaya Aura Communication Manager Utility Services 6.0 Avaya Aura Communication Manager Utility...
Microsoft XML Core Services CVE-2013-0007 Remote Code Execution Vulnerability
Description Microsoft XML Core Services is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Expression...
Microsoft Excel Name Record Array Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers may exploit this issue by enticing victims into opening a maliciously crafted Excel file. Successful exploits may allow attackers to execute arbitrary code with the privileges of the user running the...
PHP CVE-2019-11046 Buffer Underflow Vulnerability
Description PHP is prone to a buffer-underflow vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed. PHP 7.2.x versions prior to 7.2.26, 7.3.x versions pri...
Intel Software Guard Extensions CVE-2019-0117 Local Information Disclosure Vulnerability
Description Intel Software Guard Extensions SGX is prone to a local information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. The following Intel products are affected: 6th Generation Intel Core processors 7th Generatio...
Oracle Java SE/Java SE Embedded CVE-2019-2933 Remote Security Vulnerability
Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'Libraries' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13;...
Exim CVE-2019-16928 Heap Buffer Overflow Vulnerability
Description Exim is prone to a heap-based buffer-overflow vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions. Exim versions 4.92 through 4.92.2 are...
Microsoft SharePoint CVE-2019-1296 Remote Code Execution Vulnerability
Description Microsoft SharePoint is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft SharePoint Enterprise Server 2016 Microsof...
Microsoft Windows GDI+ Component CVE-2019-1102 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected applications. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected...
Microsoft Windows Audio Service CVE-2019-1007 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based System...
Microsoft NuGet Package Manager CVE-2019-0976 Tampering Security Bypass Vulnerability
Description Microsoft NuGet is prone to a security bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Technologies Affected Microsoft NuGet 5.0.2 Recommendations Permit local access for trusted individuals only. Where...
Microsoft Windows NDIS CVE-2019-0707 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windo...