All Vulnerabilities

A type confusion vulnerability was discovered in Microsoft Internet Explorer and Microsoft Edge. A successful exploitation of this issue could allow an attacker to execute arbitrary code on the remote system.
Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2016-0063)
 Severity:    
 Date Published:  16 Dec 2016
Microsoft Internet Explorer is prone to a memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application.
The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote attackers to send requests to this application's GET handler by using a different method.
Joomla Core Security Bypass Vulnerability (CVE-2016-8870)
 Severity:    
 Date Published:  16 Dec 2016
Joomla Core is prone to multiple security-bypass vulnerabilities. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions, this may aid in launching further attacks.
Internet Explorer Memory Corruption Vulnerability (CVE-2013-3120)
 Severity:    
 Date Published:  16 Dec 2016
Microsoft Internet Explorer is prone to a memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application.
Microsoft Edge Memory Corruption Vulnerability (CVE-2015-6168)
 Severity:    
 Date Published:  16 Dec 2016
Microsoft Edge is prone to an unspecified memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application.
Microsoft Internet Explorer and Edge are prone to a memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application.
Microsoft Edge Scripting Engine is prone to a memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application.
A remote code execution vulnerability exits in Apache Struts such that upon successful exploitation a malicious expression can be used to execute arbitrary code on server side when Dynamic Method Invocation is enabled.
glibc getaddrinfo Stack Based Buffer Overflow Vulnerability (CVE-2015-7547)
 Severity:    
 Date Published:  16 Dec 2016
Stack Based Buffer Overflow in glibc getaddrinfo allows attackers to execute arbitrary code via unspecified vectors.