[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

253164

 
 

909

 
 

197077

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26369 Download | Alert*

The host is installed with Wireshark 2.0.x before 2.0.6 and is prone to a denial of service vulnerability. A flaw is present in the Catapult DCT2000 dissector, which fails to handle a malformed packet. Successful exploitation allows remote attackers to cause a denial of service (application crash).

The host is installed with Wireshark 2.0.x before 2.0.6 and is prone to a denial of service vulnerability. A flaw is present in the IPMI trace dissector, which does not properly consider whether a string is constant. Successful exploitation allows remote attackers to cause a denial of service (use-after-free and application crash).

The host is installed with Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2016, Office Compatibility Pack SP3 or Excel Viewer and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

The host is installed with Apache Derby before 10.12.1.1 and is prone to an XML external entity (XXE) vulnerability. A flaw is present in the application, which fails to properly handle issue in the SqlXmlUtil code when a Java Security Manager is not in place. Successful exploitation could allow attackers to read arbitrary files or cause a denial of service (resource consumption) via vectors invol ...

The host is installed with oracle fusion middleware mapViewer 12.2.1.3 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle the issue in apache commons fileupload component. Successful exploitation allows an attacker to execute arbitrary code in the context of the affected application.

The host is installed with 7 zip before 16.00 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted HFS+ image. Successful exploitation could allow attackers to execute arbitrary code.

The host is installed with Ghostscript before 9.21 and is prone to multiple use after free vulnerabilities. The flaws are present in the application, which fails to handle a crafted PostScript document. Successful exploitation could allow attackers to crash the service.

The host is installed with cygwin before 2.5.0 and is prone to a privileges escalation vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation could allow attackers to gain privileges.

In PHP before 5.6.28 and 7.x before 7.0.13, incorrect handling of various URI components in the URL parser could be used by attackers to bypass hostname-specific URL checks, as demonstrated by evil.example.com:80#@good.example.com/ and evil.example.com:80?@good.example.com/ inputs to the parse_url function (implemented in the php_url_parse_ex function in ext/standard/url.c).

In PHP before 5.6.30 and 7.x before 7.0.15, the PHAR archive handler could be used by attackers supplying malicious archive files to crash the PHP interpreter or potentially disclose information due to a buffer over-read in the phar_parse_pharfile function in ext/phar/phar.c.


Pages:      Start    1591    1592    1593    1594    1595    1596    1597    1598    1599    1600    1601    1602    1603    1604    ..   2636

© SecPod Technologies