Lucene search
K
SymantecMost viewed

6867 matches found

Symantec
Symantec
•added 2013/09/10 12:0 a.m.•28 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2013-3864 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of the affected...

7.2CVSS0.6AI score0.01654EPSS
Exploits0Affected Software12
Symantec
Symantec
•added 2013/09/10 12:0 a.m.•28 views

Microsoft Internet Explorer CVE-2013-3203 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 9 and 10 are...

9.3CVSS0.1AI score0.23912EPSS
Exploits0References1Affected Software10
Symantec
Symantec
•added 2013/09/10 12:0 a.m.•28 views

Microsoft Word CVE-2013-3853 Remote Memory Corruption Vulnerability

Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...

9.3CVSS0.4AI score0.20145EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2013/08/13 12:0 a.m.•28 views

Microsoft Internet Explorer CVE-2013-3194 Use After Free Memory Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a use-after-free memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 9 is...

9.3CVSS0.1AI score0.19338EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2013/08/13 12:0 a.m.•28 views

Microsoft Windows Kernel CVE-2013-3196 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Failed exploit attempts may cause...

7.2CVSS1.8AI score0.02079EPSS
Exploits1References1Affected Software5
Symantec
Symantec
•added 2013/07/09 12:0 a.m.•28 views

Microsoft Internet Explorer CVE-2013-3147 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 6, 7, 8 and 9 are...

9.3CVSS8.8AI score0.25039EPSS
Exploits1Affected Software10
Symantec
Symantec
•added 2013/07/09 12:0 a.m.•28 views

Microsoft Internet Explorer CVE-2013-3143 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 9 and 10 are...

9.3CVSS0.1AI score0.32748EPSS
Exploits3Affected Software10
Symantec
Symantec
•added 2013/06/11 12:0 a.m.•28 views

Microsoft Windows TCP/IP Driver CVE-2013-3138 Remote Denial of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the affected system to stop responding, resulting in a denial-of-service condition. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7...

7.1CVSS1AI score0.63518EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2013/06/11 12:0 a.m.•28 views

Microsoft Internet Explorer CVE-2013-3111 Use After Free Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Internet Explorer 8,9 and 10 are...

9.3CVSS0.2AI score0.33537EPSS
Exploits2Affected Software1
Symantec
Symantec
•added 2013/05/14 12:0 a.m.•28 views

Microsoft Lync CVE-2013-1302 Remote Code Execution Vulnerability

Description Microsoft Lync is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Lync 2010 32-bit Microso...

9.3CVSS0.1AI score0.2191EPSS
Exploits1Affected Software3
Symantec
Symantec
•added 2013/05/14 12:0 a.m.•28 views

Microsoft Publisher CVE-2013-1317 Remote Integer Overflow Vulnerability

Description Microsoft Publisher is prone to a remote integer-overflow vulnerability. An attacker can exploit this issue by enticing an unsuspecting user into opening a specially crafted Publisher file. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of...

9.3CVSS0.4AI score0.20872EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2013/05/14 12:0 a.m.•28 views

Microsoft Word CVE-2013-1335 Remote Code Execution Vulnerability

Description Microsoft Word is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user, which can lead to a complete compromise of the affected computer. Technologies Affected Microsoft Office 2003...

9.3CVSS0.1AI score0.20933EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2013/04/09 12:0 a.m.•28 views

Microsoft Internet Explorer CVE-2013-1304 Use-After-Free Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.1AI score0.19964EPSS
Exploits1Affected Software10
Symantec
Symantec
•added 2013/04/09 12:0 a.m.•28 views

Microsoft Windows Kernel CVE-2013-1294 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges and read arbitrary amounts of kernel memory. Technologies Affected Avaya CallPilot Avaya Communication Server 1000 Telephony Manager Avaya...

4.9CVSS0.6AI score0.01064EPSS
Exploits1Affected Software6
Symantec
Symantec
•added 2013/03/12 12:0 a.m.•28 views

Microsoft Internet Explorer CVE-2013-0087 Use-After-Free Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.7AI score0.18477EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2013/03/12 12:0 a.m.•28 views

Microsoft Internet Explorer CVE-2013-0094 Use-After-Free Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.7AI score0.18477EPSS
Exploits1Affected Software1
Symantec
Symantec
•added 2013/02/12 12:0 a.m.•28 views

Microsoft Windows 'Win32k.sys' CVE-2013-1250 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to gain elevated privileges and to read arbitrary amounts of kernel memory. Technologies Affected Avaya CallPilot 4.0 Avaya CallPilot 4.0.1 Avaya CallPilot 5.0 Avaya...

4.9CVSS0.7AI score0.01466EPSS
Exploits0Affected Software13
Symantec
Symantec
•added 2013/02/12 12:0 a.m.•28 views

Microsoft Windows 'Win32k.sys' CVE-2013-1262 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to gain elevated privileges and to read arbitrary amounts of kernel memory. Technologies Affected Avaya CallPilot 4.0 Avaya CallPilot 4.0.1 Avaya CallPilot 5.0 Avaya...

4.9CVSS0.8AI score0.01466EPSS
Exploits0Affected Software13
Symantec
Symantec
•added 2013/02/12 12:0 a.m.•28 views

Microsoft Windows 'Win32k.sys' CVE-2013-1271 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Local attackers can exploit this issue to gain elevated privileges and to read arbitrary amounts of kernel memory. Technologies Affected Avaya CallPilot 4.0 Avaya CallPilot 4.0.1 Avaya CallPilot 5.0 Avaya...

4.9CVSS0.8AI score0.01525EPSS
Exploits0Affected Software13
Symantec
Symantec
•added 2012/12/11 12:0 a.m.•28 views

Microsoft Windows TrueType Font CVE-2012-4786 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits will result in the execution of arbitrary code in kernel-mode. Failed attempts will cause a denial-of-service condition. Technologies Affected Microsoft Windows 7 for 32-bit Systems Microsoft...

10CVSS0.1AI score0.24213EPSS
Exploits1Affected Software5
Symantec
Symantec
•added 2012/06/12 12:0 a.m.•28 views

Intel CPU Hardware Local Privilege Escalation Vulnerability

Description 64-bit operating systems and virtualization software running on Intel CPU hardware are prone to a local privilege-escalation vulnerability. Attackers can exploit this issue to escalate privileges and execute arbitrary code with kernel-level privileges or to do a guest-to-host virtual...

1.4AI score
Exploits0References3Affected Software18
Symantec
Symantec
•added 2012/06/12 12:0 a.m.•28 views

Microsoft Internet Explorer CVE-2012-1873 Null Byte Handling Information Disclosure Vulnerability

Description Microsoft Internet Explorer is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Internet Explorer 7.0 Microsoft Internet Explorer 8 Microsoft Internet...

4.3CVSS5.7AI score0.18259EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2012/02/14 12:0 a.m.•28 views

Microsoft Internet Explorer CVE-2012-0155 VML Handling Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Successful exploits will compromise the application and possibly the underlying computer. Faile...

9.3CVSS0.1AI score0.65501EPSS
Exploits1References1Affected Software6
Symantec
Symantec
•added 2012/01/10 12:0 a.m.•28 views

Microsoft DirectX DirectShow Filters Remote Code Execution Vulnerability

Description Microsoft DirectX is prone to a remote code-execution vulnerability. Successful exploits allow remote attackers to execute arbitrary code in the context of the user running an application that uses DirectX. Failed exploit attempts will result in a denial-of-service condition...

7.9AI score
Exploits0References1Affected Software16
Symantec
Symantec
•added 2011/10/11 12:0 a.m.•28 views

Microsoft Internet Explorer Option Element CVE-2011-1996 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks may cause denial-of-service conditions. Technologies Affected Avaya Aur...

9.3CVSS6.9AI score0.60456EPSS
Exploits5References1Affected Software6
Symantec
Symantec
•added 2011/10/11 12:0 a.m.•28 views

Microsoft Internet Explorer 'OLEAuto32.dll' CVE-2011-1995 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successful exploits will allow an attacker to run arbitrary code in the context of the user running the application. Failed attacks may cause denial-of-service conditions. Technologies Affected Avaya Aur...

9.3CVSS7AI score0.28901EPSS
Exploits1Affected Software6
Symantec
Symantec
•added 2011/04/12 12:0 a.m.•28 views

Microsoft Windows Kernel 'Win32k.sys' (CVE-2011-1235) Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel due to a use-after-free condition. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete...

7.2CVSS0.01434EPSS
Exploits0Affected Software15
Symantec
Symantec
•added 2011/04/12 12:0 a.m.•28 views

Microsoft Windows Messenger ActiveX Control Remote Code Execution Vulnerability

Description Microsoft Windows Messenger ActiveX control 'msgsc.dll' is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Successful exploits will allow the attacker to execute arbitrary code...

8AI score
Exploits0References2Affected Software7
Symantec
Symantec
•added 2011/01/26 8:0 a.m.•28 views

Multiple Symantec Intel Alert Management System Arbitrary Message Creation or Denial of Service

SUMMARY Symantec was notified of a improper message handling procedures in the Intel Alert Management System AMS2 that can be used to send arbitrary messages or kill the Intel Alert Handler service. AFFECTED PRODUCTS Product | Version | Solution ---|---|--- Symantec AntiVirus Corporate Edition...

9.3CVSS0.5AI score0.34516EPSS
Exploits1Affected Software1
Symantec
Symantec
•added 2010/12/14 12:0 a.m.•28 views

Microsoft Office FlashPix Image Converter (CVE-2010-3952) Multiple Buffer Overflow Vulnerabilities

Description Microsoft Office is prone to multiple remote buffer-overflow vulnerabilities because the software fails to perform adequate boundary-checks on user-supplied data. An attacker can exploit these issues by enticing an unsuspecting user into opening an Office document containing a special...

9.3CVSS1AI score0.20833EPSS
Exploits0References1
Symantec
Symantec
•added 2010/10/12 12:0 a.m.•28 views

Microsoft Excel Record Format Parsing (CVE-2010-3232) Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel file. Successful exploits can allow attackers to execute arbitrary code with the privileges of the user running the...

9.3CVSS0.5AI score0.21413EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2010/10/12 12:0 a.m.•28 views

Microsoft Windows Failover Clustering File Permissions Security Bypass Vulnerability

Description Microsoft Windows Failover Clustering is prone to a security-bypass vulnerability. Local attackers can exploit this issue to perform unauthorized actions against the administrative shares on the failover cluster disk. Technologies Affected Microsoft Windows Server 2008 R2 Itanium...

0.6AI score
Exploits0References2Affected Software1
Symantec
Symantec
•added 2010/09/14 12:0 a.m.•28 views

Microsoft Outlook 'Online Mode' Remote Heap Buffer Overflow Vulnerability

Description Microsoft Outlook is prone to a remote heap-based buffer-overflow vulnerability because it fails to properly validate user-supplied data. Attackers can exploit this issue by enticing an unsuspecting user to preview or view a crafted email message. Successfully exploiting this issue wi...

0.6AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2009/10/13 12:0 a.m.•28 views

Microsoft .NET Framework Pointer Verification Remote Code Execution Vulnerability

Description The .NET Framework is prone to a remote code-execution vulnerability because it fails to properly verify .NET applications before running them. Successful exploits may allow an attacker to execute arbitrary code with the privileges of the currently logged-in user. Failed attacks will...

8.2AI score
Exploits0References2Affected Software8
Symantec
Symantec
•added 2009/10/13 12:0 a.m.•28 views

Microsoft GDI+ WMF File Processing Remote Code Execution Vulnerability

Description Microsoft GDI+ is prone to a remote code-execution vulnerability because the vector graphics link library improperly processes WMF image files. An attacker could exploit this issue to execute arbitrary code with the privileges of the currently logged-in user. Failed exploit attempts m...

8.4AI score
Exploits0Affected Software20
Symantec
Symantec
•added 2009/10/13 12:0 a.m.•28 views

Microsoft Windows Kernel Exception Handler Local Denial Of Service Vulnerability

Description Microsoft Windows is prone to a local denial-of-service vulnerability that affects the Windows kernel. The issue stems from an error in the kernel's exception handler. Attackers may exploit this issue to restart the system, causing a denial-of-service condition. Technologies Affected...

0.6AI score
Exploits0Affected Software3
Symantec
Symantec
•added 2009/08/11 12:0 a.m.•28 views

Microsoft Windows Malformed AVI File Parsing Remote Integer Overflow Vulnerability

Description Microsoft Windows is prone to a remote integer-overflow vulnerability that arises when an affected Windows component handles a malicious Audio Video Interleave AVI file. An attacker can exploit this issue to execute arbitrary code with the privileges of the affected user. Failed explo...

8.2AI score
Exploits0References1Affected Software5
Symantec
Symantec
•added 2009/07/13 12:0 a.m.•28 views

Microsoft Office Web Components ActiveX Control 'msDataSourceObject()' Code Execution Vulnerability

Description Microsoft Office Web Components is prone to a remote code-execution vulnerability that affects the OWC10.Spreadsheet ActiveX control. The control is identified by the following CLSIDs: 0002E541-0000-0000-C000-000000000046 0002E559-0000-0000-C000-000000000046 An attacker could exploit...

Exploits0References4Affected Software3
Symantec
Symantec
•added 2009/05/12 12:0 a.m.•28 views

Microsoft PowerPoint Sound Data (CVE-2009-1128) Multiple Remote Code Execution Vulnerabilities

Description Microsoft PowerPoint is prone to multiple remote code-execution vulnerabilities An attacker could exploit these issues by enticing a victim to open a malicious PowerPoint file. Successfully exploiting these issues would allow the attacker to execute arbitrary code in the context of th...

9.3CVSS7.1AI score0.27472EPSS
Exploits1References2Affected Software1
Symantec
Symantec
•added 2009/03/17 8:0 a.m.•28 views

Symantec pcAnywhere Format String Denial of Service

SUMMARY Symantec pcAnywhere is susceptible to a format string vulnerability. An authorized local user may potentially leverage this to crash the pcAnywhere application, leading to a denial of service. AFFECTED PRODUCTS Product | Version | Build | Solution ---|---|---|--- Symantec pcAnywhere | 12....

4.6CVSS0.00383EPSS
Exploits1Affected Software1
Symantec
Symantec
•added 2009/01/13 12:0 a.m.•28 views

Microsoft Windows SMB NT Trans2 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability that occurs in the SMB Server Message Block protocol implementation. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful exploits will facilitate in the complete...

0.2AI score
Exploits0References2Affected Software14
Symantec
Symantec
•added 2008/12/09 12:0 a.m.•28 views

Microsoft Word RTF '\do' Drawing Object Remote Heap Memory Corruption Vulnerability

Description Microsoft Word is prone to a remote heap memory-corruption vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious RTF file. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently...

8AI score
Exploits0References1Affected Software6
Symantec
Symantec
•added 2008/06/10 12:0 a.m.•28 views

Microsoft Windows PGM Invalid Fragment Remote Denial Of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability because it fails to adequately handle specially crafted PGM Pragmatic General Multicast network traffic. Attackers can exploit this issue to cause affected computers to stop responding until all the malformed packe...

7.3AI score
Exploits0References1Affected Software6
Symantec
Symantec
•added 2008/06/10 12:0 a.m.•28 views

Microsoft Windows PGM Invalid Length Remote Denial Of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability because it fails to adequately handle specially crafted PGM Pragmatic General Multicast network traffic. Attackers can exploit this issue to cause an affected computer to stop responding until it is manually...

7.3AI score
Exploits0References1Affected Software6
Symantec
Symantec
•added 2007/09/20 12:0 a.m.•28 views

Adobe Acrobat Mailto PDF File Command Execution Vulnerability

Description Adobe Acrobat is prone to a command-execution vulnerability when handling malicious PDF files. Remote attackers can exploit this issue to compromise affected computers.. The vendor reports that this issue can be exploited only through Internet Explorer 7 installed on Microsoft Windows...

7.7AI score
Exploits0References3Affected Software4
Symantec
Symantec
•added 2007/07/27 8:0 a.m.•28 views

Symantec Discovery Insecure File Permissions

SUMMARY Insecure default directory and file permissions may allow local users to gain escalated privileges. Severity Low Remote Access | Local network access required ---|--- Local Access | Yes Authentication Required | Yes Exploit publicly available | No AFFECTED PRODUCTS Affected Products Produ...

7.2CVSS6.8AI score0.00388EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2007/07/11 12:0 a.m.•28 views

Symantec AntiVirus Malformed CAB and RAR Compression Remote Vulnerabilities

Description Symantec AntiVirus products that include the Symantec Decomposer are prone to multiple remote vulnerabilities related to the handling of CAB and RAR archives. These issues include a denial-of-service vulnerability and a buffer-overflow vulnerability. Successfully exploiting these issu...

0.7AI score
Exploits0Affected Software26
Symantec
Symantec
•added 2007/06/06 12:0 a.m.•28 views

Yahoo! Messenger Webcam Viewer ActiveX Control Buffer Overflow Vulnerability

Description Yahoo! Messenger Webcam Viewer ActiveX control is prone to a buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of applications th...

7.9AI score
Exploits0References4
Symantec
Symantec
•added 2007/05/08 12:0 a.m.•28 views

Microsoft Outlook Web Access Remote Script Injection Vulnerability

Description Microsoft Outlook Web Access is prone to a script-injection vulnerability because the application fails to properly handle specially crafted email attachments. To exploit this issue, attackers must send specially crafted files through email messages to users of the affected applicatio...

Exploits0Affected Software4
Symantec
Symantec
•added 2007/02/23 12:0 a.m.•28 views

Microsoft Office Publisher Invalid Memory Reference Remote Code Execution Vulnerability

Description Microsoft Office Publisher is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting victim to open a maliciously crafted Publisher file. Successful exploits may allow attackers to execute arbitrary code with privileges of the us...

2.1AI score
Exploits0Affected Software2
Total number of security vulnerabilities5000