6867 matches found
Microsoft Windows ATMFD CVE-2016-3220 Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsoft Windows 10 for x64-based Systems Microsoft Windows 10...
SA124 : NSS Vulnerabilities March 2016
SUMMARY Blue Coat products that include affected versions of NSS are susceptible to multiple vulnerabilities. A remote attacker can exploit these vulnerabilities to cause denial of service through application crashes, or to possibly execute arbitrary code. AFFECTED PRODUCTS The following products...
Microsoft .NET Framework CVE-2016-0047 Information Disclosure Vulnerability
Description The Microsoft .NET Framework is prone to an information-disclosure vulnerability. Attackers can exploit this issue to gain access to sensitive information that may aid in further attacks. Technologies Affected Microsoft .NET Framework 2.0 SP2 Microsoft .NET Framework 3.5 Microsoft .NE...
Microsoft Silverlight CVE-2016-0034 Remote Code Execution Vulnerability
Description Microsoft Silverlight is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts will likely result in a denial-of-service condition. Technologies Affected...
Microsoft Exchange Server CVE-2016-0032 Spoofing Vulnerability
Description Microsoft Exchange Server is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. The following versions are affected:...
Microsoft Windows Graphics Component CVE-2015-6108 Memory Corruption Vulnerability
Description Microsoft Windows is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft .NET Framework 3.0 SP2...
Microsoft Windows Adobe Font Driver CVE-2015-2507 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Avaya Meeting Exchange - Client Registration Server 6.0 Avaya Meeting Exchange - Client...
Microsoft Windows Server Message Block CVE-2015-2474 Memory Corruption Vulnerability
Description Microsoft Windows is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the application. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Windows Server 2008 for 32-bit Systems...
Microsoft Office CVE-2015-2477 Memory Corruption Vulnerability
Description Microsoft Office is prone to a remote memory-corruption vulnerability because it fails to properly handle objects in memory. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in...
SA95 : VENOM Vulnerability in Virtualization Platforms
SUMMARY The VENOM vulnerability allows a local guest user in affected virtualized platforms to escape from the virtual environment and execute code on the host. An attacker can use this vulnerability to gain complete access to the host and to the host's local network and adjacent systems. AFFECTE...
Microsoft Office CVE-2015-1650 Use After Free Remote Code Execution Vulnerability
Description Microsoft Office is prone to a remote code-execution vulnerability because it fails to properly handle objects in memory. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in...
Microsoft Remote Desktop Protocol CVE-2015-0079 Denial of Service Vulnerability
Description Microsoft Remote Desktop Protocol is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the target service to stop responding, denying service to legitimate users. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft...
Symantec Data Center Security: Server Advanced, Multiple Security Issues on Management Server and Pr
SUMMARY The management server for Symantec Critical System Protection SCSP 5.2.9 and Data Center Security: Server Advanced SDCS:SA 6.0.x is susceptible to security issues which could enable privileged access to the management server. Rules in the prevention policies could be bypassed if deployed ...
Microsoft Secure Channel CVE-2014-6321 Remote Code Execution Vulnerability
Description Microsoft Secure Channel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the target server. Failed exploit attempts will result in denial-of-service conditions. Technologies Affected Avaya Aura...
Microsoft Internet Explorer CVE-2013-1347 Use-After-Free Remote Code Execution Vulnerability
Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...
Microsoft DirectX DirectPlay CVE-2012-1537 Heap Overflow Remote Code Execution Vulnerability
Description Microsoft DirectX is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted office documents. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user runnin...
Microsoft Data Access Components CVE-2012-1891 Buffer Overflow Vulnerability
Description Microsoft Data Access Components MDAC are prone to a heap-based buffer-overflow vulnerability because they fail to properly bounds-check user-supplied data. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed...
Oracle Java SE CVE-2012-1723 Remote Code Execution Vulnerability
Description Oracle Java SE is prone to a remote code execution vulnerability in Java Runtime Environment. The vulnerability can be exploited over multiple protocols. This issue affects the 'Hotspot' sub-component. This vulnerability affects the following supported versions: 7 Update 4, 6 Update 3...
Microsoft Excel Malformed Object CVE-2011-1986 Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers could exploit this issue by enticing victims to open a maliciously crafted Excel file. Successful exploits will allow attackers to execute arbitrary code with the privileges of the user running the applicatio...
Adobe Acrobat and Reader CVE-2010-0188 Remote Code Execution Vulnerability
Description Adobe Acrobat and Reader are prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. The following products are...
Broadcom CA Client Automation CVE-2019-19231 Local Privilege Escalation Vulnerability
Description Broadcom CA Client Automation is prone to a local privilege-escalation vulnerability. Local attackers may exploit this issue to execute arbitrary command with elevated privileges on the affected system. Broadcom CA Client Automation versions 14.0, 14.1, 14.2, 14.3 are vulnerable...
Linux Kernel CVE-2019-19769 Local Denial of Service Vulnerability
Description Linux Kernel is prone to a local denial-of-service vulnerability. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. Linux Kernel versions 5.3.10 is vulnerable; other versions may also be affected. Technologies Affected Linux kerne...
Linux Kernel CVE-2019-19947 Memory Leak Denial of Service Vulnerability
Description Linux Kernel is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. Linux kernel versions through 5.4.6 are vulnerable. Technologies Affected Linux kernel 2.6.0 Linux kernel 2.6.1 Linux kernel 2.6.11 .11 Linux kernel...
Linux kernel CVE-2019-19448 Use After Free Denial of Service Vulnerability
Description Linux kernel is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. Linux kernel versions 5.0.21 and 5.3.11 are vulnerable. Technologies Affected Linux kernel 5.0.21 Linux kernel 5.3.11 Recommendations Permit local acce...
Pivotal RabbitMQ CVE-2019-11287 Remote Denial of Service Vulnerability
Description Pivotal RabbitMQ is prone to a remote denial-of-service vulnerability because it fails to sufficiently bounds check user supplied data. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. Technologies Affected Pivotal RabbitMQ for P...
Cisco IOS XR Software CVE-2019-15998 Security Bypass Vulnerability
Description Cisco IOS XR Software is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass the access control list and perform unauthorized actions. This issue is being tracked by Cisco Bug ID CSCvp91299. Technologies Affected Cisco IOS XR Software 6.5.1 Cisco IOS...
Symantec Norton App Lock CVE-2019-18373 Local Security Bypass Vulnerability
Description Symantec Norton App Lock for Android is prone to a local security-bypass vulnerability. Local attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks. Norton App Lock versions prior to 1.4.0.503 are...
Intel WIFI Drivers and PROSet/Wireless WiFi Software Multiple Memory Corruption Vulnerabilities
Description Intel WIFI Drivers and PROSet/Wireless WiFi Software are prone to multiple memory-corruption vulnerabilities. A local attacker can leverage these issues to gain elevated privileges, gain sensitive information and cause denial-of-service conditions. Intel WIFI Drivers and PROSet/Wirele...
Juniper Junos CVE-2019-0058 Local Privilege Escalation Vulnerability
Description Juniper Junos is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. Juniper Junos 12.3X48 versions prior to 12.3X48-D80 are vulnerable Technologies Affected Juniper Junos 12.3X48 Juniper Junos 12.3X48-D10 Juniper...
Google Chrome OS CVE-2019-16508 Integer Overflow Vulnerability
Description Google Chrome OS is prone to a remote integer-overflow vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. Due to the nature of this issue, arbitrary code execution may be possible but this has not been confirmed. Google Chrome OS versions prior to...
Microsoft Windows Network Connectivity Assistant CVE-2019-1287 Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based System...
Microsoft Windows Kernel CVE-2019-1067 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based...
Microsoft Edge Chakra Scripting Engine CVE-2019-0922 Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...
Microsoft Internet Explorer CVE-2019-0929 Remote Memory Corruption Vulnerability
Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Internet...
Microsoft Windows Admin Center CVE-2019-0813 Privilege Escalation Vulnerability
Description Microsoft Windows Admin Center is prone to a privilege-escalation vulnerability. Attackers can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows Admin Center Recommendations Block external access at the network boundary, unless external parties...
Microsoft Excel CVE-2019-0828 Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...
Microsoft Windows Hyper-V CVE-2019-0701 Remote Denial of Service Vulnerability
Description Microsoft Windows is prone to a remote denial of service vulnerability. An attacker can exploit this issue to crash the host machine, resulting in a denial of service condition. Technologies Affected Microsoft Hyper-V Microsoft Windows 10 Version 1803 for x64-based Systems Microsoft...
Microsoft Internet Explorer CVE-2019-0761 Security Bypass Vulnerability
Description Microsoft Windows is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. Technologies Affected Microsoft Internet Explorer 10 Microsoft Interne...
Microsoft .NET Framework CVE-2018-8517 Remote Denial of Service Vulnerability
Description Microsoft .NET Framework is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause a denial of service condition. Technologies Affected Microsoft .NET Framework 3.5 Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.5.2 Microsoft .NET...
Microsoft Windows SMB Server CVE-2018-8335 Denial of Service Vulnerability
Description Microsoft Windows is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microso...
Microsoft Windows ADFS CVE-2018-8340 Security Bypass Vulnerability
Description Microsoft Windows is prone to a security-bypass vulnerability An attacker can leverage this issue to bypass certain security restrictions and perform unauthorized actions. Technologies Affected Microsoft Windows Server 1709 Microsoft Windows Server 1803 Microsoft Windows Server 2012 R...
Microsoft Edge Chakra Scripting Engine CVE-2018-8381 Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...
Microsoft ChakraCore Scripting Engine CVE-2018-8298 Remote Memory Corruption Vulnerability
Description Microsoft ChakraCore is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore...
Microsoft Excel CVE-2018-8248 Remote Code Execution Vulnerability
Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...
Microsoft Office CVE-2018-8245 Privilege Escalation Vulnerability
Description Microsoft Office is prone to a privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Publisher 2010 Service Pack 2 32-bit editions Microsoft Publisher 2010 Service Pack 2 64-bit editions Recommendations Run...
Microsoft Windows CVE-2018-0824 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. Successfully exploiting this issue may result in the execution of arbitrary code in the context of the affected system. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affecte...
Microsoft Outlook CVE-2018-0791 Remote Code Execution Vulnerability
Description Microsoft Outlook is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Failed exploit attempts may result in a denial of service condition; this can result in the attacker gaining complete...
Microsoft Word CVE-2018-0792 Remote Code Execution Vulnerability
Description Microsoft Word is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...
Microsoft Internet Explorer CVE-2017-11890 Remote Memory Corruption Vulnerability
Description Microsoft Internet Explorer are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-...
Microsoft Windows Device Guard CVE-2017-11899 Remote Security Bypass Vulnerability
Description Microsoft Windows is prone to a remote security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit System...