[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250770

 
 

909

 
 

196157

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26316 Download | Alert*

The host is installed with Apache Derby before 10.12.1.1 and is prone to an XML external entity (XXE) vulnerability. A flaw is present in the application, which fails to properly handle issue in the SqlXmlUtil code when a Java Security Manager is not in place. Successful exploitation could allow attackers to read arbitrary files or cause a denial of service (resource consumption) via vectors invol ...

The host is installed with oracle fusion middleware mapViewer 12.2.1.3 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to handle the issue in apache commons fileupload component. Successful exploitation allows an attacker to execute arbitrary code in the context of the affected application.

The host is installed with 7 zip before 16.00 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted HFS+ image. Successful exploitation could allow attackers to execute arbitrary code.

The host is installed with Ghostscript before 9.21 and is prone to multiple use after free vulnerabilities. The flaws are present in the application, which fails to handle a crafted PostScript document. Successful exploitation could allow attackers to crash the service.

The host is installed with cygwin before 2.5.0 and is prone to a privileges escalation vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation could allow attackers to gain privileges.

In PHP before 5.6.28 and 7.x before 7.0.13, incorrect handling of various URI components in the URL parser could be used by attackers to bypass hostname-specific URL checks, as demonstrated by evil.example.com:80#@good.example.com/ and evil.example.com:80?@good.example.com/ inputs to the parse_url function (implemented in the php_url_parse_ex function in ext/standard/url.c).

In PHP before 5.6.30 and 7.x before 7.0.15, the PHAR archive handler could be used by attackers supplying malicious archive files to crash the PHP interpreter or potentially disclose information due to a buffer over-read in the phar_parse_pharfile function in ext/phar/phar.c.

The host is installed with Ghostscript 9.21 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted document . Successful exploitation could allow attackers to crash the service.

The host is installed with Ghostscript 9.21 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted document. Successful exploitation could allow attackers to crash the service.

The host is installed with Ghostscript 9.21 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted file. Successful exploitation could allow attackers to crash the service.


Pages:      Start    1546    1547    1548    1549    1550    1551    1552    1553    1554    1555    1556    1557    1558    1559    ..   2631

© SecPod Technologies