All Vulnerabilities

  • Adobe Flash Player Buffer Overflow Vulnerability (CVE-2016-7867)
     Severity:    
     Publish Date:  21 December 2016
    < div id="listDescVul"class="pane showpane noborder" >
    Adobe Flash Player is prone to a buffer overflow vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial of service states.
  • Microsoft Edge Memory Corruption Vulnerability (CVE-2016-7286)
     Severity:    
     Publish Date:  21 December 2016
    < div id="listDescVul"class="pane showpane noborder" >
    Microsoft Edge is prone to a memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application.
  • PHP cURL Lib NULL Byte Injection Vulnerability
     Severity:    
     Publish Date:  21 December 2016
    < div id="listDescVul"class="pane showpane noborder" >
    The php_handler function in sapi/apache2handler/sapi_apache2.c in PHP when the Apache HTTP Server 2.4.x is used, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via pipelined HTTP requests that result in a "deconfigured interpreter."
  • Internet Explorer CCaret Use After Free Vulnerability (CVE-2013-0090)
     Severity:    
     Publish Date:  21 December 2016
    < div id="listDescVul"class="pane showpane noborder" >
    Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer CCaret Use After Free Vulnerability."
  • OpenSSL OCSP Status Request Denial Of Service Vulnerability (CVE-2016-6304)
     Severity:    
     Publish Date:  21 December 2016
    < div id="listDescVul"class="pane showpane noborder" >
    A memory leak flaw was found in the way OpenSSL handled TLS status request extension data during session renegotiation. A remote attacker could cause a TLS server using OpenSSL to consume an excessive amount of memory and, possibly, exit unexpectedly after exhausting all available memory, if it enabled OCSP stapling support.
  • < div id="listDescVul"class="pane showpane noborder" >
    A remote code vulnerability exists when Windows fails to validate the authenticity of a module before loading it in run-time. An attacker who successfully exploited the vulnerability could execute arbitrary code in the context of the user running the affected application.
  • < div id="listDescVul"class="pane showpane noborder" >
    A remote code vulnerability exists when Windows fails to validate the authenticity of a module before loading it in run-time. An attacker who successfully exploited the vulnerability could execute arbitrary code in the context of the user running the affected application.
  • Ознакомиться со статьей   
  • < div id="listDescVul"class="pane showpane noborder" >
    A remote code vulnerability exists when Windows fails to validate the authenticity of a module before loading it in run-time. An attacker who successfully exploited the vulnerability could execute arbitrary code in the context of the user running the affected application.
  • Tomcat JSP Source Code Exposure Vulnerability (CVE-2002-1148)
     Severity:    
     Publish Date:  21 December 2016
    < div id="listDescVul"class="pane showpane noborder" >
    The default servlet (org.apache.catalina.servlets.DefaultServlet) in Tomcat 4.0.4 and 4.1.10 and earlier allows remote attackers to read source code for server files via a direct request to the servlet.
  • Microsoft Office OLE DLL Side Loading Vulnerability (CVE-2016-7275)
     Severity:    
     Publish Date:  21 December 2016
    < div id="listDescVul"class="pane showpane noborder" >
    A remote code execution vulnerability exists when Microsoft Office fails to validate the authenticity of a module before loading it at run-time. An attacker who successfully exploited the vulnerability could execute arbitrary code in the context of the user running the affected application.