Lucene search
K
ZdiMost viewed

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2017/12/13 12:0 a.m.•43 views

NetGain Systems Enterprise Manager designer.script_005fsamples_jsp type Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of NetGain Systems Enterprise Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within...

7.8CVSS1.5AI score0.03391EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2017/11/14 12:0 a.m.•43 views

Foxit Reader XFA Layout w Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the w method of XFA...

6.8CVSS8.7AI score0.0259EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/09/26 12:0 a.m.•43 views

Dell EMC VNX Monitoring and Reporting RMI Registry Deserialization of Untrusted Data Denial of Service Vulnerability

This vulnerability allows remote attackers to create a denial of service on vulnerable installations of Dell EMC VNX Monitoring and Reporting. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within ...

6.8CVSS7.1AI score0.01922EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/08/10 12:0 a.m.•43 views

Fuji Electric Monitouch V-SFT Insecure Configuration Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate their privileges on vulnerable installations of Fuji Electric Monitouch V-SFT. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists withi...

4.4CVSS6.3AI score0.00447EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/08/08 12:0 a.m.•43 views

Adobe Acrobat Pro DC ImageConversion JPEG Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS5.8AI score0.27071EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/06/13 12:0 a.m.•43 views

Microsoft Windows OTL Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

2.6CVSS3.6AI score0.02973EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2017/05/15 12:0 a.m.•43 views

Apple Safari RenderLayer Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS1.9AI score0.0157EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/04/19 12:0 a.m.•43 views

Oracle Fusion Middleware MapViewer FileUploaderServlet fileName Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Fusion Middleware MapViewer. Authentication is not required to exploit this vulnerability. The specific flaw exists within the FileUploaderServlet servlet. When parsing the fileName paramete...

7.5CVSS4.9AI score0.02005EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/04/19 12:0 a.m.•43 views

ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ThinPrint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JPEG2000 parsing. The...

6.2CVSS2.3AI score0.00369EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/28 12:0 a.m.•43 views

Apple macOS ImageIO JPEG Parsing Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of JPEG...

6.8CVSS5.4AI score0.02159EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/12 12:0 a.m.•43 views

Advantech WebAccess updateTemplate SQL Injection Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Advantech WebAccess. Authentication is required to exploit this vulnerability, but can be easily bypassed. The specific flaw exists within updateTemplate.aspx. The vulnerability is caused b...

6.5CVSS1.5AI score0.04398EPSS
Exploits3References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•43 views

Adobe Reader DC XFA Layout Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the XFA subform...

6.8CVSS2.8AI score0.04217EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/11/04 12:0 a.m.•43 views

Adobe Reader DC XObject stream Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing o...

6.8CVSS2.9AI score0.08706EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/08/09 12:0 a.m.•43 views

Microsoft Windows xxxInsertMenuItem Out-Of-Bounds Access Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.9CVSS3.2AI score0.06418EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/06/03 12:0 a.m.•43 views

Hewlett Packard Enterprise LoadRunner Virtual Table Server import_csv Denial of Service Vulnerability

This vulnerability allows remote attackers to delete arbitrary files on vulnerable installations of Hewlett Packard Enterprise LoadRunner. Authentication is not required to exploit this vulnerability. The specific flaw exists within the importcsv functionality. The issue lies in the failure to...

8.5CVSS2.7AI score0.08566EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/05/27 12:0 a.m.•43 views

(Pwn2Own) Apple OS X libATSServer Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple OS X. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS3.6AI score0.00964EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/05/10 12:0 a.m.•43 views

Adobe Acrobat Pro DC app.removeToolButton Information Disclosure Vulnerability

This vulnerability allows an attacker to leak sensitive information on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.3CVSS0.5AI score0.10026EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/04/08 12:0 a.m.•43 views

(Pwn2Own) Adobe Flash JPEG-XR Parsing Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS5.3AI score0.08292EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/02/05 12:0 a.m.•43 views

Advantech WebAccess datacore Service datacore.exe Path strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable instances of Advantech WebAccess. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x791E IOCTL in the Kernel subsystem. A stack-based buffer...

9.3CVSS4.2AI score0.16655EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2015/12/08 12:0 a.m.•43 views

Microsoft Windows VBScript InStr/InStrRev Functions Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose the contents of memory on applications using the VBScript scripting language on vulnerable installations of Microsoft Windows. Microsoft Internet Explorer is an affected application. User interaction is required to exploit this vulnerability ...

4.3CVSS5.6AI score0.25169EPSS
Exploits1References2
Zero Day Initiative
Zero Day Initiative
•added 2015/11/20 12:0 a.m.•43 views

Tibbo AggreGate SCADA/HMI Server Service uploadDirectory Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Tibbo AggreGate SCADA/HMI. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Windows service "AggreGate Server Service" agserverservice.exe. Through...

9.3CVSS7.3AI score0.03203EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/11/10 12:0 a.m.•43 views

SolarWinds DameWare Mini Remote Control URI Handler Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SolarWinds DameWare Mini Remote Control. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.5CVSS7AI score0.04846EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/11/10 12:0 a.m.•43 views

Adobe Flash AS2 actionExtends Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the actionExtends...

6.8CVSS6.4AI score0.06171EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/10/13 12:0 a.m.•43 views

Adobe Reader Arbitrary File Deletion Sandbox Escape Vulnerability

This vulnerability allows local attackers to delete arbitrary files on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

1.9CVSS5.6AI score0.01124EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/09/16 12:0 a.m.•43 views

GE MDS PulseNET Hidden Support Account Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of GE MDS PulseNET. Authentication is required to exploit this vulnerability but it can bypassed using static credentials. The specific flaw exists within the PulseNET web service. It contains a hidde...

9CVSS7AI score0.03784EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/09/08 12:0 a.m.•43 views

Microsoft Internet Explorer mergeAttributes Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS6.5AI score0.20243EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/07/20 12:0 a.m.•43 views

(0Day) Hewlett-Packard Client Automation Agent Stack Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Client Automation. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Hewlett-Packard Client Automation agent. An attacker can send a...

10CVSS7.2AI score0.06081EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
•added 2015/07/01 12:0 a.m.•43 views

SQLite Default Value Authorization Bypass Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SQLite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of DEFAULT...

7.5CVSS8.8AI score0.02766EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/05/26 12:0 a.m.•43 views

Dell NetVault Backup Heap Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Dell NetVault Backup. Authentication is not required to exploit this vulnerability. The specific flaw exists within the libnv6 module. By manipulating a serialized object's template string...

9.3CVSS7.3AI score0.05962EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/05/12 12:0 a.m.•43 views

(Pwn2Own) Adobe Flash Player BrokerCreateFile Broker Method Path Traversal Sandbox Escape Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

4.4CVSS6.5AI score0.04736EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/03/10 12:0 a.m.•43 views

Microsoft Windows Text Services Out-Of-Bounds Memory Access Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how Windows Text...

6.8CVSS6.5AI score0.23755EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/12/11 12:0 a.m.•43 views

ManageEngine Desktop Central MSP NativeAppServlet UDID JSON Object Code Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ManageEngine Desktop Central MSP. Authentication is not required to exploit this vulnerability. The specific flaw exists within the NativeAppServlet servlet. The issue lies in the failure to saniti...

10CVSS7.1AI score0.19086EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2014/12/11 12:0 a.m.•43 views

ManageEngine NetFlow Analyzer CollectorConfInfoServlet COLLECTOR_ID Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ManageEngine NetFlow Analyzer. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CollectorConfInfoServlet servlet. The issue lies in the failure to...

10CVSS7.1AI score0.06257EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/10/14 12:0 a.m.•43 views

Panasonic Network Camera View GetImageDataPrint Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Panasonic Network Camera View. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

7.5CVSS6.6AI score0.02612EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/10/01 12:0 a.m.•43 views

Sophos Cyberoam webclient_portal_settings Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sophos Cyberoam. Authentication is required to exploit this vulnerability. The specific flaw exists within the webclientportalsettings opcode. The issue lies in the failure to properly sanitize...

9CVSS7AI score0.02318EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/08/12 12:0 a.m.•43 views

Microsoft Internet Explorer CSegment Object Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS7.6AI score0.2347EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/06/11 12:0 a.m.•43 views

Microsoft Internet Explorer CWindow Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS6.3AI score0.21735EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/06/11 12:0 a.m.•43 views

Microsoft Internet Explorer CElement Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.20687EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/06/11 12:0 a.m.•43 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.30292EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2014/05/30 12:0 a.m.•43 views

(0Day) VMware vCenter Server Appliance Ruby vSphere Console Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of VMware vCenter Appliance. Authentication is required to exploit this vulnerability. The specific flaw exists within the usage of the Ruby vSphere Console RVC provided by the vCenter Server Applianc...

6CVSS7.4AI score0.02351EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2014/04/21 12:0 a.m.•43 views

Oracle Java permuteArguments Sandbox Bypass Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage of...

10CVSS4.1AI score0.04392EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/04/03 12:0 a.m.•43 views

Apple Mobile Safari isindex Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS5.2AI score0.02133EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/12/15 12:0 a.m.•43 views

Adobe Flash Player Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within processing of certai...

7.5CVSS4.3AI score0.1129EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2013/05/10 12:0 a.m.•43 views

(Pwn2Own) Oracle Java DriverManager Privilege Block Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage of...

9.3CVSS4.1AI score0.87227EPSS
Exploits10References1
Zero Day Initiative
Zero Day Initiative
•added 2013/05/10 12:0 a.m.•43 views

Oracle Java JavaFX WebPage Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the JavaFX WebPage...

10CVSS3.4AI score0.04712EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/08/29 12:0 a.m.•43 views

(0Day) HP SiteScope SOAP Call update Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP SiteScope. Authentication is not required to exploit this vulnerability. The specific flaw exists because HP SiteScope allows unauthenticated SOAP calls to be made to the SiteScope service. One ...

10CVSS8.4AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/08/29 12:0 a.m.•43 views

EMC AppXtender WxSuperCtrl650.ocx ActiveX Control Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC ApplicationXtender. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS4.5AI score0.05424EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2012/08/29 12:0 a.m.•43 views

InduSoft Thin Client ISSymbol InternationalSeparator Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Indusoft Thin Client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within ISSymbol.oc...

7.5CVSS2.6AI score0.32349EPSS
Exploits12References1
Zero Day Initiative
Zero Day Initiative
•added 2012/06/28 12:0 a.m.•43 views

Apple Quicktime TeXML Karaoke Element Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of X...

7.5CVSS4.9AI score0.28623EPSS
Exploits9
Zero Day Initiative
Zero Day Initiative
•added 2012/06/06 12:0 a.m.•43 views

Adobe Flash Player MP4 Stream Decoding Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

7.5CVSS5AI score0.9203EPSS
Exploits11References1
Total number of security vulnerabilities5000