The host is missing a critical security update according to Microsoft security bulletin, MS16-107. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to handle objects in memory. Successful exploitation could allow attackers to run arbitrary code in the context of the current user.
The host is installed with Office 2016 for Mac and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted office file. Successful exploitation could allow attackers to execute arbitrary code.
The host is installed with Office 2016 for Mac and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.
The host is installed with Microsoft Office 2016 for Mac and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.
The host is installed with Word for Mac 2011 or Office 2016 for Mac and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fail to handle a crafted office file. Successful exploitation could allow attackers to execute arbitrary code.
It was discovered that ruby-image-processing, a ruby package that provides higher-level image processing helpers, is prone to a remote shell execution vulnerability when using the #apply method to apply a series of operations coming from unsanitized user input.
The host is missing a critical security update according to Adobe security bulletin, APSB19-10. The update is required to fix multiple vulnerabilities.. A flaw is present in the application, which fails to handle the unspecified vectors. Successful exploitation could allow attackers to cause arbitrary code execution or information disclosure
The host is installed with Adobe ColdFusion 11 before Update 16, 2016 before update 8 or 2018 before Update 2 and is prone to a cross site scripting vulnerability. A flaw is present in the application, which fails to handle the unspecified vectors. Successful exploitation could leads to information disclosure.