Lucene search
K
SymantecRecent

6867 matches found

Symantec
Symantec
•added 2016/03/15 8:0 a.m.•65 views

SA118 : February 2016 Apache Tomcat Vulnerabilities

SUMMARY Blue Coat products that include affected versions of Apache Tomcat are susceptible to multiple vulnerabilities. A remote attacker, with access to the management interface, can exploit these vulnerabilities to determine the existence of a directory that they are not authorized to view, and...

6.8CVSS0.6AI score0.1838EPSS
Exploits0Affected Software8
Symantec
Symantec
•added 2016/03/11 8:0 a.m.•54 views

SA115 : Multiple nginx DNS resolver vulnerabilities

SUMMARY Blue Coat products that include affected versions of nginx and enable the nginx DNS resolver are susceptible to multiple vulnerabilities. A remote attacker, with access to the management interface, can exploit these vulnerabilities to cause denial of service. In some cases, the attacker m...

7.5CVSS2.2AI score0.81958EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•91 views

Microsoft Windows CVE-2016-0101 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits allow attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial of service condition. Technologies Affected Microsoft Window...

9.3CVSS0.2AI score0.20145EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•26 views

Microsoft Edge CVE-2016-0123 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Faile...

7.6CVSS1.9AI score0.16644EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•28 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2016-0095 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsof...

7.2CVSS3.7AI score0.04404EPSS
Exploits0Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•24 views

Microsoft Edge CVE-2016-0116 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Faile...

7.6CVSS1.9AI score0.10238EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•32 views

Microsoft Internet Explorer and Edge CVE-2016-0102 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currentl...

7.6CVSS1.6AI score0.16771EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•31 views

Microsoft Office CVE-2016-0057 Security Bypass Vulnerability

Description Microsoft Office is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. Technologies Affected Microsoft Office 2007 SP3 Microsoft Office 2010...

7.2CVSS1.2AI score0.01494EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•35 views

Microsoft Edge CVE-2016-0125 Information Disclosure Vulnerability

Description Microsoft Edge is prone to an information disclosure vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks...

2.6CVSS0.12181EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•29 views

Microsoft Internet Explorer CVE-2016-0114 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

7.6CVSS0.9AI score0.16644EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•22 views

Microsoft Edge CVE-2016-0124 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Faile...

7.6CVSS1.9AI score0.13354EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•31 views

Microsoft Internet Explorer CVE-2016-0106 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

7.6CVSS0.9AI score0.16644EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•25 views

Microsoft Office CVE-2016-0134 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability because it fails to properly handle objects in memory. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in deni...

9.3CVSS0.6AI score0.22285EPSS
Exploits0Affected Software7
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•44 views

Microsoft Windows USB Mass Storage CVE-2016-0133 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers. Technologies Affected Microsoft...

7.2CVSS3.3AI score0.01502EPSS
Exploits0Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•26 views

Microsoft Internet Explorer CVE-2016-0107 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

7.6CVSS0.8AI score0.16644EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•29 views

Microsoft Internet Explorer CVE-2016-0113 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

7.6CVSS0.8AI score0.16644EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•23 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2016-0096 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsof...

7.2CVSS3.7AI score0.02093EPSS
Exploits0Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•29 views

Microsoft Edge CVE-2016-0129 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Faile...

7.6CVSS1.9AI score0.13354EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•27 views

Microsoft Internet Explorer CVE-2016-0103 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

7.6CVSS0.9AI score0.13465EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•34 views

Microsoft Internet Explorer and Edge CVE-2016-0110 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currentl...

7.6CVSS1.4AI score0.14108EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•41 views

Microsoft Windows CVE-2016-0087 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with SYSTEM privileges. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Systems SP1 Microsoft...

7.2CVSS2.2AI score0.0155EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•56 views

Microsoft Office CVE-2016-0021 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability because it fails to properly handle objects in memory. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in deni...

9.3CVSS0.8AI score0.23429EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•27 views

Microsoft Windows OpenType Fonts CVE-2016-0120 Remote Denial of Service Vulnerability

Description Microsoft Windows is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsoft Windows 10 for x64-based Systems Microsoft Windows 10 version 1511...

7.1CVSS7.2AI score0.39052EPSS
Exploits1Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•30 views

Microsoft Internet Explorer CVE-2016-0104 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

7.6CVSS0.9AI score0.13354EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•35 views

Microsoft Windows Library Loading CVE-2016-0100 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will result in a denial of service condition. Technologies Affected Microsoft...

7.2CVSS0.5AI score0.58009EPSS
Exploits3Affected Software2
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•35 views

Microsoft Internet Explorer and Edge CVE-2016-0111 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currentl...

7.6CVSS1.2AI score0.43643EPSS
Exploits1Affected Software2
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•35 views

Microsoft Windows PDF Library CVE-2016-0117 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsof...

9.3CVSS1.1AI score0.72934EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•23 views

Microsoft Internet Explorer and Edge CVE-2016-0105 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currentl...

7.6CVSS1.2AI score0.14108EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•29 views

Microsoft Windows PDF Library CVE-2016-0118 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsof...

9.3CVSS1.9AI score0.33713EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•30 views

Microsoft Internet Explorer CVE-2016-0108 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

7.6CVSS0.9AI score0.43397EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•62 views

Microsoft .NET Framework CVE-2016-0132 Security Bypass Vulnerability

Description Microsoft .NET Framework is prone to a security-bypass vulnerability because it fails to properly validate certain elements of a signed XML document. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further...

10CVSS9.4AI score0.21976EPSS
Exploits0Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•34 views

Microsoft Windows CVE-2016-0098 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits allow attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected Microsoft Window...

9.3CVSS8.4AI score0.20145EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•29 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2016-0093 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsof...

7.2CVSS3.7AI score0.03662EPSS
Exploits1Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•30 views

Microsoft Edge CVE-2016-0130 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Faile...

7.6CVSS1.9AI score0.13354EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•121 views

Microsoft Windows Secondary Logon CVE-2016-0099 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with administrative privileges and perform unauthorized actions. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsoft Windows ...

7.2CVSS1.6AI score0.37164EPSS
Exploits14Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•46 views

Microsoft Windows OpenType Fonts CVE-2016-0121 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits allow attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected Microsoft Window...

9.3CVSS8.4AI score0.4124EPSS
Exploits1Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•28 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2016-0094 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsof...

7.2CVSS3.7AI score0.03662EPSS
Exploits2Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•27 views

Microsoft Internet Explorer and Edge CVE-2016-0109 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currentl...

7.6CVSS1.6AI score0.16763EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•29 views

Microsoft Windows OLE CVE-2016-0092 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code and gain elevated privileges in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions...

9.3CVSS8AI score0.58181EPSS
Exploits0Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•43 views

Microsoft Windows OLE CVE-2016-0091 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsof...

6.8CVSS7.9AI score0.23645EPSS
Exploits0Affected Software5
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•34 views

Microsoft Internet Explorer CVE-2016-0112 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

7.6CVSS0.8AI score0.16644EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/03/07 8:0 a.m.•91 views

SA117 : OpenSSL Vulnerabilities 1-Mar-2016

SUMMARY Blue Coat products using affected versions of OpenSSL are susceptible to multiple vulnerabilities. A remote attacker can exploit these vulnerabilities to decrypt live and recorded SSL sessions, cause denial of service through application crashes, and possibly execute arbitrary code. A...

10CVSS3.3AI score0.82112EPSS
Exploits2Affected Software26
Symantec
Symantec
•added 2016/03/03 8:0 a.m.•50 views

SA113 : January 2016 NTP Security Vulnerabilities

SUMMARY Blue Coat products using affected versions of the NTP software distribution from ntp.org are susceptible to multiple vulnerabilities. A remote attacker may exploit these vulnerabilities to set the victim's system time to an arbitrary value or cause it to become out of sync. The attacker c...

5.8CVSS2.9AI score0.11887EPSS
Exploits5Affected Software10
Symantec
Symantec
•added 2016/02/25 8:0 a.m.•122 views

SA112 : Linux Kernel Keyring Privilege Escalation

SUMMARY Blue Coat products that include affected versions of the Linux kernel and provide means for executing arbitrary code are susceptible to a privilege escalation vulnerability. A malicious local unprivileged user can exploit this vulnerability to escalate their privileges on the system or...

7.2CVSS2AI score0.03646EPSS
Exploits14Affected Software4
Symantec
Symantec
•added 2016/02/25 12:0 a.m.•32 views

Apache Xerces-C CVE-2016-0729 Buffer Overflow Vulnerability

...

7.5CVSS3.8AI score0.09115EPSS
Exploits0Affected Software44
Symantec
Symantec
•added 2016/02/19 8:0 a.m.•57 views

SA114 : GNU C Library (glibc) Remote Code Execution February 2016

SUMMARY Blue Coat products using an affected version of the GNU C Library glibc are susceptible to a remote execution attack. A remote attacker can send a crafted DNS response to the glibc DNS resolver and cause the resolver to crash or execute arbitrary code. AFFECTED PRODUCTS The following...

6.8CVSS2.2AI score0.89557EPSS
Exploits17Affected Software13
Symantec
Symantec
•added 2016/02/18 8:0 a.m.•36 views

Symantec Encryption Management Server Multiple Security Issues

SUMMARY The management console for Symantec Encryption Management Server SEMS is susceptible to potential OS command execution, local access elevation of privilege, a heap-based memory corruption resulting in a service crash and potential information disclosure of management console logon/account...

6.3CVSS0.7AI score0.0193EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/02/18 8:0 a.m.•85 views

SA111 : OpenSSL Vulnerabilities 28-Jan-2016

SUMMARY Blue Coat products using affected versions of OpenSSL 1.0.2, 1.0.1, and 0.9.8 are susceptible to multiple vulnerabilities. A remote attacker can exploit these vulnerabilities to obtain ephemeral Diffie-Hellman DHE private key information and perform man-in-the-middle attacks on SSL/TLS...

4.3CVSS2.2AI score0.9986EPSS
Exploits3Affected Software26
Symantec
Symantec
•added 2016/02/09 12:0 a.m.•26 views

Microsoft Internet Explorer CVE-2016-0072 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.8AI score0.20706EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/02/09 12:0 a.m.•44 views

Microsoft Windows Reader CVE-2016-0046 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsof...

9.3CVSS0.9AI score0.25942EPSS
Exploits0References1Affected Software2
Total number of security vulnerabilities6867