TippingPoint Zero Day Initiative
 

Published Advisories

The following is a list of all publicly disclosed vulnerabilities discovered by TippingPoint Zero Day Initiative researchers. While the affected vendor is working on a patch for these vulnerabilities, TippingPoint customers are protected from exploitation by security filters delivered ahead of public disclosure. TippingPoint customers are additionally protected against 0day vulnerabilities discovered by our own DVLabs researchers. A list of published advisories discovered by TippingPoint's DVLabs research group is available from:

ZDI Advisories: 2017   |   2016   |   2015   |   2014   |   2013   |   2012   |   2011   |   2010   |   2009   |   2008   |   2007   |   2006   |   2005

ZDI-17-451 CVE: CVE-2017-8553 Published: 2017-06-27
(Pwn2Own) Microsoft Windows XPS Document Writer Uninitialized Memory Information Disclosure Vulnerability
ZDI-17-450 CVE: CVE-2017-8576 Published: 2017-06-27
(Pwn2Own) Microsoft Windows WarpKMSubmitCommandVirtual Uninitialized Memory Privilege Escalation Vulnerability
ZDI-17-449 CVE: CVE-2017-6636 Published: 2017-06-26
Cisco Prime Collaboration Provisioning Logs Directory Improper Access Control Information Disclosure Vulnerability
ZDI-17-448 CVE: CVE-2017-6637 Published: 2017-06-26
Cisco Prime Collaboration Provisioning logconfigtracer Directory Traversal Arbitrary File Deletion Vulnerability
ZDI-17-447 CVE: CVE-2017-6621 Published: 2017-06-26
Cisco Prime Collaboration Provisioning logconfigtracer Directory Traversal Information Disclosure Vulnerability
ZDI-17-446 CVE: CVE-2017-6635 Published: 2017-06-26
Cisco Prime Collaboration Provisioning licensestatus Directory Traversal Arbitrary File Deletion Vulnerability
ZDI-17-445 CVE: CVE-2017-6622 Published: 2017-06-26
Cisco Prime Collaboration Provisioning ScriptMgr Servlet Authentication Bypass Remote Code Execution Vulnerability
ZDI-17-444 CVE: CVE-2017-6669 Published: 2017-06-23
Cisco WebEx Network Recording Player ARF File Memory Corruption Remote Code Execution Vulnerability
ZDI-17-443 CVE: CVE-2017-6669 Published: 2017-06-23
Cisco WebEx Network Recording Player ARF File Memory Corruption Remote Code Execution Vulnerability
ZDI-17-442 CVE: CVE-2017-6669 Published: 2017-06-23
Cisco WebEx Network Recording Player ARF File CImageList Use-After-Free Remote Code Execution Vulnerability
ZDI-17-441 CVE: CVE-2017-2454 Published: 2017-06-22
Apple Safari Node Use-After-Free Remote Code Execution Vulnerability
ZDI-17-440 CVE: Published: 2017-06-21
(0Day) Lepide LepideAuditor Suite Malicious Server Command Injection Remote Code Execution Vulnerability
ZDI-17-439 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddTabShapeEmptyPage Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-438 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddStringUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-437 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddIntUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-436 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddFloatUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-435 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite TKGIS RemoveShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-434 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite TKGIS FindPortFromIndex Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-433 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddDoubleUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-432 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddDateUserProperty AddDefaultPort Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-431 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddColorUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-430 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddBoolUserProperty Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-429 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW AddShapePoint Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-428 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite TKGIS CloneShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-427 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCSIMPLE PositionShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-426 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCHMI UpdateShapeGeo Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-425 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCUML SetShapeWithLabelShow Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-424 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDIAGRAM InsertShapePoint Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-423 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCPRINT FlashShape Untrusted Pointer Dreference Remote Code Execution Vulnerability
ZDI-17-422 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite TKDRAWCAD RotateShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-421 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCDRAW MoveShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-420 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER RotateFromCenter Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-419 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER MoveCenterTo Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-418 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER ScaleFromCenter Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-417 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER SelectShape Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-416 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER AddShapeWithoutUndo Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-415 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER UpdateControl Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-414 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER StartRichTextEdit Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-413 CVE: Published: 2017-06-21
(0Day) UCanCode E-XD++ Visualization Enterprise Suite UCCVIEWER Multiple Methods Untrusted Pointer Dereference Remote Code Execution Vulnerability
ZDI-17-412 CVE: CVE-2017-2530 Published: 2017-06-21
Apple Safari Element Use-After-Free Remote Code Execution Vulnerability
ZDI-17-411 CVE: Published: 2017-06-15
Foxit Reader JPXDecode stream Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-410 CVE: Published: 2017-06-14
Novell ZENworks Reporting Appliance Directory Traversal Arbitrary File Creation Vulnerability
ZDI-17-409 CVE: CVE-2017-0285 Published: 2017-06-13
Microsoft Windows OTL Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-408 CVE: CVE-2017-3082 Published: 2017-06-13
Adobe Flash LocaleID determinePreferredLocales Uninitialized Memory Remote Code Execution Vulnerability
ZDI-17-407 CVE: CVE-2017-3084 Published: 2017-06-13
Adobe Flash AuditudeSettings clone Use-After-Free Remote Code Execution Vulnerability
ZDI-17-406 CVE: CVE-2017-3083 Published: 2017-06-13
Adobe Flash Profile Use-After-Free Remote Code Execution Vulnerability
ZDI-17-405 CVE: CVE-2017-8532 Published: 2017-06-13
Microsoft Windows OTL Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-404 CVE: CVE-2017-8466 Published: 2017-06-13
(Pwn2Own) Microsoft Windows NtUserLinkDpiCursor Use-After-Free Privilege Escalation Vulnerability
ZDI-17-403 CVE: CVE-2017-8468 Published: 2017-06-13
(Pwn2Own) Microsoft Windows NtUserLinkDpiCursor Use-After-Free Privilege Escalation Vulnerability
ZDI-17-402 CVE: CVE-2017-8465 Published: 2017-06-13
(Pwn2Own) Microsoft Windows NtUserLinkDpiCursor Use-After-Free Privilege Escalation Vulnerability
ZDI-17-401 CVE: CVE-2017-8547 Published: 2017-06-13
Microsoft Internet Explorer InsertRow Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-400 CVE: CVE-2017-0296 Published: 2017-06-13
(Pwn2Own) Microsoft Windows TdxCreateTransportAddress Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-399 CVE: CVE-2017-3075 Published: 2017-06-13
Adobe Flash XML load Use-After-Free Remote Code Execution Vulnerability
ZDI-17-398 CVE: CVE-2017-8460 Published: 2017-06-13
Microsoft Windows PDF Library JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-397 CVE: CVE-2017-0292 Published: 2017-06-13
Microsoft Windows PDF Library JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-396 CVE: Published: 2017-06-13
Trend Micro Maximum Security tmusa Time-Of-Check/Time-Of-Use Privilege Escalation Vulnerability
ZDI-17-395 CVE: Published: 2017-06-13
Trend Micro Maximum Security tmusa Kernel Driver Untrusted Pointer Dereference Denial of Service Vulnerability
ZDI-17-394 CVE: CVE-2016-8211 Published: 2017-06-12
EMC Data Protection Advisor ImageServlet Directory Traversal Information Disclosure Vulnerability
ZDI-17-393 CVE: CVE-2017-8947 Published: 2017-06-12
Hewlett Packard Enterprise Universal CMDB UploadFileOnUIServerServlet Directory Traversal Remote Code Execution Vulnerability
ZDI-17-392 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder Local Privilege Escalation Vulnerability
ZDI-17-391 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder Embedded Session ID Authentication Bypass Vulnerability
ZDI-17-390 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder css.inc Directory Traversal Information Disclosure Vulnerability
ZDI-17-389 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder runscript Directory Traversal Information Disclosure Vulnerability
ZDI-17-388 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder file_picker Directory Traversal Arbitrary File Upload Remote Code Execution Vulnerability
ZDI-17-387 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder SOAP Request Remote SQL Command Execution Vulnerability
ZDI-17-386 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder Error Message Path Information Disclosure Vulnerability
ZDI-17-385 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder error Information Disclosure Vulnerability
ZDI-17-384 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder editobject SQL Injection Remote Code Execution Vulnerability
ZDI-17-383 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder xmlserver SQL Injection Remote Code Execution Vulnerability
ZDI-17-382 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder track_getdata SQL Injection Remote Code Execution Vulnerability
ZDI-17-381 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder nfcserver SQL Injection Remote Code Execution Vulnerability
ZDI-17-380 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder localize SQL Injection Remote Code Execution Vulnerability
ZDI-17-379 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder syslog_getdata SQL Injection Remote Code Execution Vulnerability
ZDI-17-378 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder track_import_export SQL Injection Remote Code Execution Vulnerability
ZDI-17-377 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder HTTP Cookie SQL Injection Remote Code Execution Vulnerability
ZDI-17-376 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder editscript Directory Traversal Remote Code Execution Vulnerability
ZDI-17-375 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder message_simple_html reboot Parameter Denial of Service Vulnerability
ZDI-17-374 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder loadtemplate SQL Injection Remote Code Execution Vulnerability
ZDI-17-373 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder sendmail email_attachment Parameter Absolute Path Traversal Information Disclosure Vulnerability
ZDI-17-372 CVE: Published: 2017-06-12
(0Day) Schneider Electric U.motion Builder Hard-Coded Password Remote Code Execution Vulnerability
ZDI-17-371 CVE: CVE-2017-0266 Published: 2017-05-30
Microsoft Windows JavaScript Array Type Confusion Remote Code Execution Vulnerability
ZDI-17-370 CVE: Published: 2017-05-30
(Pwn2Own) Apple macOS nsurlstoraged Null Pointer Dereference Denial of Service Vulnerability
ZDI-17-369 CVE: CVE-2017-7002 Published: 2017-05-30
(Pwn2Own) Apple Safari WebSQL matchinfo Type Confusion Remote Code Execution Vulnerability
ZDI-17-368 CVE: CVE-2017-7001 Published: 2017-05-30
(Pwn2Own) Apple Safari WebSQL offsets Type Confusion Remote Code Execution Vulnerability
ZDI-17-367 CVE: CVE-2017-7000 Published: 2017-05-30
(Pwn2Own) Apple Safari WebSQL snippet Type Confusion Remote Code Execution Vulnerability
ZDI-17-366 CVE: CVE-2017-6983 Published: 2017-05-30
(Pwn2Own) Apple Safari WebSQL optimize Type Confusion Remote Code Execution Vulnerability
ZDI-17-365 CVE: CVE-2017-8944 Published: 2017-05-18
Hewlett Packard Enterprise Cloud Optimizer DownloadServlet Information Disclosure Vulnerability
ZDI-17-364 CVE: CVE-2017-2543 Published: 2017-05-18
(Pwn2Own) Apple macOS AppleMultitouchDevice Use-After-Free Privilege Escalation Vulnerability
ZDI-17-363 CVE: CVE-2017-2542 Published: 2017-05-18
(Pwn2Own) Apple macOS AppleMultitouchDevice Uninitialized Memory Information Disclosure Vulnerability
ZDI-17-362 CVE: CVE-2017-2538 Published: 2017-05-18
(Pwn2Own) Apple Safari ProcessingInstruction Use-After-Free Remote Code Execution Vulnerability
ZDI-17-361 CVE: CVE-2017-2539 Published: 2017-05-18
(Pwn2Own) Apple Safari WebGLRenderingContextBase drawElements Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-360 CVE: CVE-2017-6991 Published: 2017-05-18
(Pwn2Own) Apple Safari WebSQL Type Confusion Information Disclosure Vulnerability
ZDI-17-359 CVE: CVE-2017-2546 Published: 2017-05-18
(Pwn2Own) Apple macOS smbfs Out-Of-Bounds Access Privilege Escalation Vulnerability
ZDI-17-358 CVE: CVE-2017-2536 Published: 2017-05-18
(Pwn2Own) Apple Safari Spread Operator Integer Overflow Remote Code Execution Vulnerability
ZDI-17-357 CVE: CVE-2017-2533 Published: 2017-05-18
(Pwn2Own) Apple macOS diskarbitrationd Time-Of-Check/Time-Of-Use Privilege Escalation Vulnerability
ZDI-17-356 CVE: CVE-2017-2535 Published: 2017-05-18
(Pwn2Own) Apple macOS authd Privilege Escalation Vulnerability
ZDI-17-355 CVE: CVE-2017-2548 Published: 2017-05-18
(Pwn2Own) Apple macOS WindowServer XSetWindowListBrightness Out-Of-Bounds Access Privilege Escalation Vulnerability
ZDI-17-354 CVE: CVE-2017-2547 Published: 2017-05-18
(Pwn2Own) Apple Safari B3 Optimization Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-353 CVE: CVE-2017-2537 Published: 2017-05-18
(Pwn2Own) Apple macOS WindowServer Dragging Space Use-After-Free Privilege Escalation Vulnerability
ZDI-17-352 CVE: CVE-2017-6990 Published: 2017-05-18
(Pwn2Own) Apple macOS HFS Uninitialized Memory Information Disclosure Privilege Escalation Vulnerability
ZDI-17-351 CVE: CVE-2017-2545 Published: 2017-05-15
(Pwn2Own) Apple macOS IOGraphic Use-After-Free Privilege Escalation Vulnerability
ZDI-17-350 CVE: CVE-2017-2544 Published: 2017-05-15
(Pwn2Own) Apple Safari Array concat Integer Overflow Remote Code Execution Vulnerability
ZDI-17-349 CVE: CVE-2017-2541 Published: 2017-05-15
(Pwn2Own) Apple macOS WindowServer _XGetWindowMovementGroup Stack-based Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-348 CVE: CVE-2017-2540 Published: 2017-05-15
(Pwn2Own) Apple macOS WindowServer _XGetConnectionPSN Information Disclosure Vulnerability
ZDI-17-347 CVE: CVE-2017-2534, CVE-2017-6977 Published: 2017-05-15
(Pwn2Own) Apple macOS speechsynthesisd Unsigned Dylib Loading Privilege Escalation Vulnerability
ZDI-17-346 CVE: CVE-2017-2506 Published: 2017-05-15
Apple Safari RenderElement Use-After-Free Remote Code Execution Vulnerability
ZDI-17-345 CVE: CVE-2017-2526 Published: 2017-05-15
Apple Safari RenderInline Use-After-Free Remote Code Execution Vulnerability
ZDI-17-344 CVE: CVE-2017-2525 Published: 2017-05-15
Apple Safari RenderLayer Use-After-Free Remote Code Execution Vulnerability
ZDI-17-343 CVE: CVE-2017-5819 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10007 Command Injection Remote Code Execution Vulnerability
ZDI-17-342 CVE: CVE-2017-5818 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10007 Arbitrary File Deletion Denial of Service Vulnerability
ZDI-17-341 CVE: CVE-2017-5817 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10007 Command Injection Remote Code Execution Vulnerability
ZDI-17-340 CVE: CVE-2017-5816 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10008 Command Injection Remote Code Execution Vulnerability
ZDI-17-339 CVE: CVE-2017-5821 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10006 Command Injection Remote Code Execution Vulnerability
ZDI-17-338 CVE: CVE-2017-5823 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10013 Command Injection Remote Code Execution Vulnerability
ZDI-17-337 CVE: CVE-2017-5822 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10010 Arbitrary File Write Remote Code Execution Vulnerability
ZDI-17-336 CVE: CVE-2017-5820 Published: 2017-05-15
Hewlett Packard Enterprise Intelligent Management Center dbman Opcode 10004 Command Injection Remote Code Execution Vulnerability
ZDI-17-335 CVE: CVE-2017-3040 Published: 2017-05-12
Adobe Reader DC PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-334 CVE: Published: 2017-05-11
Bitdefender Internet Security Dalvik Integer Overflow Remote Code Execution Vulnerability
ZDI-17-333 CVE: Published: 2017-05-11
Bitdefender Internet Security cevakrnl Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-332 CVE: CVE-2017-5812 Published: 2017-05-11
Hewlett Packard Enterprise Network Automation PermissionFilter Authentication Bypass Vulnerability
ZDI-17-331 CVE: CVE-2017-5810 Published: 2017-05-11
Hewlett Packard Enterprise Network Automation RedirectServlet SQL Injection Remote Code Execution Vulnerability
ZDI-17-330 CVE: CVE-2017-5811 Published: 2017-05-11
Hewlett Packard Enterprise Network Automation TrueControl Management Engine Service FileServlet Directory Traversal Information Disclosure Vulnerability
ZDI-17-329 CVE: CVE-2017-0240 Published: 2017-05-10
(Pwn2Own) Microsoft Edge AudioBuffer Use-After-Free Remote Code Execution Vulnerability
ZDI-17-328 CVE: CVE-2017-0240 Published: 2017-05-10
(Pwn2Own) Microsoft Edge AudioBuffer Use-After-Free Information Disclosure Vulnerability
ZDI-17-327 CVE: CVE-2017-0238 Published: 2017-05-10
(Pwn2Own) Microsoft Chakra Array unshift Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-326 CVE: CVE-2017-0228 Published: 2017-05-10
(Pwn2Own) Microsoft Chakra Array Use-After-Free Remote Code Execution Vulnerability
ZDI-17-324 CVE: CVE-2017-0234 Published: 2017-05-10
(Pwn2Own) Microsoft Edge ArrayBuffer Use-After-Free Remote Code Execution Vulnerability
ZDI-17-323 CVE: CVE-2017-0226 Published: 2017-05-10
Microsoft Internet Explorer Enhanced Protected Mode Sandbox Escape Vulnerability
ZDI-17-322 CVE: CVE-2017-7929 Published: 2017-05-04
Advantech WebAccess odbcPg4 Absolute Path Traversal File Denial of Service Vulnerability
ZDI-17-321 CVE: CVE-2017-2491 Published: 2017-05-04
(Pwn2Own) Apple Safari String replace Use-After-Free Remote Code Execution Vulnerability
ZDI-17-320 CVE: CVE-2017-5448 Published: 2017-05-03
Mozilla Firefox ClearKeyDecryptor Integer Overflow Remote Code Execution Vulnerability
ZDI-17-319 CVE: Published: 2017-05-03
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-318 CVE: Published: 2017-05-03
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-317 CVE: CVE-2017-5806 Published: 2017-05-03
Hewlett Packard Enterprise Intelligent Management Center imcwlandm SSID Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-316 CVE: CVE-2017-5805 Published: 2017-05-03
Hewlett Packard Enterprise Intelligent Management Center imcwlandm UserName Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-315 CVE: CVE-2017-5804 Published: 2017-05-03
Hewlett Packard Enterprise Intelligent Management Center imcwlandm Integer Overflow Remote Code Execution Vulnerability
ZDI-17-314 CVE: CVE-2017-5059 Published: 2017-05-02
Google Chrome List Item Marker Type Confusion Remote Code Execution Vulnerability
ZDI-17-313 CVE: Published: 2017-04-21
Foxit Reader getAnnot Use-After-Free Remote Code Execution Vulnerability
ZDI-17-312 CVE: Published: 2017-04-21
Foxit Reader Annotations lock Use-After-Free Remote Code Execution Vulnerability
ZDI-17-311 CVE: Published: 2017-04-21
Foxit Reader Annotations style Use-After-Free Remote Code Execution Vulnerability
ZDI-17-310 CVE: Published: 2017-04-21
Foxit Reader Annotations opacity Use-After-Free Remote Code Execution Vulnerability
ZDI-17-309 CVE: Published: 2017-04-21
Foxit Reader Annotations arrowEnd Use-After-Free Remote Code Execution Vulnerability
ZDI-17-308 CVE: Published: 2017-04-21
Foxit Reader importAnXFDF Use-After-Free Remote Code Execution Vulnerability
ZDI-17-307 CVE: Published: 2017-04-21
Foxit Reader Field setAction Use-After-Free Remote Code Execution Vulnerability
ZDI-17-306 CVE: Published: 2017-04-21
Foxit Reader Link setAction Use-After-Free Remote Code Execution Vulnerability
ZDI-17-305 CVE: Published: 2017-04-21
Foxit Reader getURL Use-After-Free Remote Code Execution Vulnerability
ZDI-17-304 CVE: Published: 2017-04-21
Foxit Reader spawnPageFromTemplate Use-After-Free Remote Code Execution Vulnerability
ZDI-17-303 CVE: Published: 2017-04-21
Foxit Reader Field insertItemAt Use-After-Free Remote Code Execution Vulnerability
ZDI-17-302 CVE: Published: 2017-04-21
Foxit Reader scroll Use-After-Free Remote Code Execution Vulnerability
ZDI-17-301 CVE: Published: 2017-04-21
Foxit Reader exportAsFDF Use-After-Free Remote Code Execution Vulnerability
ZDI-17-300 CVE: Published: 2017-04-21
Foxit Reader resetForm Use-After-Free Information Disclosure Vulnerability
ZDI-17-299 CVE: Published: 2017-04-21
Foxit Reader Field buttonSetCaption Use-After-Free Remote Code Execution Vulnerability
ZDI-17-298 CVE: Published: 2017-04-21
Foxit Reader response Use-After-Free Remote Code Execution Vulnerability
ZDI-17-297 CVE: Published: 2017-04-21
Foxit Reader Field getItemAt Use-After-Free Remote Code Execution Vulnerability
ZDI-17-296 CVE: Published: 2017-04-21
Foxit Reader addAnnot Use-After-Free Remote Code Execution Vulnerability
ZDI-17-295 CVE: CVE-2017-4911 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability
ZDI-17-294 CVE: CVE-2017-4911 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability
ZDI-17-293 CVE: CVE-2017-4911 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability
ZDI-17-292 CVE: CVE-2017-4911 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Heap-based Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-291 CVE: CVE-2017-4911 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Write Privilege Escalation Vulnerability
ZDI-17-290 CVE: CVE-2017-4910 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Out-Of-Bounds Read Privilege Escalation Vulnerability
ZDI-17-289 CVE: CVE-2017-4908 Published: 2017-04-19
ThinPrint TPView JPEG2000 Parsing Heap-based Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-288 CVE: CVE-2017-3230 Published: 2017-04-19
Oracle Fusion Middleware MapViewer FileUploaderServlet fileName Remote Code Execution Vulnerability
ZDI-17-287 CVE: CVE-2017-2994 Published: 2017-04-19
Adobe Flash PSDKEvent Use-After-Free Remote Code Execution Vulnerability
ZDI-17-286 CVE: CVE-2017-6020 Published: 2017-04-12
LAquis SCADA Software Web Server Directory Traversal Information Disclosure Vulnerability
ZDI-17-285 CVE: CVE-2017-0155 Published: 2017-04-11
Microsoft Windows Font Object Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-284 CVE: CVE-2017-0158 Published: 2017-04-11
Microsoft Windows ADO Array-Type Parameter Use-After-Free Information Disclosure Vulnerability
ZDI-17-283 CVE: Published: 2017-04-11
Trend Micro Deep Discovery Email Inspector policy_setting Arbitrary File Upload Remote Code Execution Vulnerability
ZDI-17-282 CVE: CVE-2017-3057 Published: 2017-04-11
(Pwn2Own) Adobe Reader DC Collab documentToStream Use-After-Free Remote Code Execution Vulnerability
ZDI-17-281 CVE: CVE-2017-3056 Published: 2017-04-11
(Pwn2Own) Adobe Reader DC util streamFromString Uninitialized Memory Information Disclosure Vulnerability
ZDI-17-280 CVE: CVE-2017-3055 Published: 2017-04-11
(Pwn2Own) Adobe Reader DC JPEG2000 Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-279 CVE: CVE-2017-3063 Published: 2017-04-11
(Pwn2Own) Adobe Flash NetStream Use-After-Free Remote Code Execution Vulnerability
ZDI-17-278 CVE: CVE-2017-3062 Published: 2017-04-11
(Pwn2Own) Adobe Flash TextField Attribute Array Use-After-Free Remote Code Execution Vulnerability
ZDI-17-277 CVE: CVE-2017-3053 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-276 CVE: CVE-2017-3052 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion EMF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-275 CVE: CVE-2017-3051 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-274 CVE: CVE-2017-3050 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion GIF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-273 CVE: CVE-2017-3049 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-272 CVE: CVE-2017-3048 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-271 CVE: CVE-2017-3047 Published: 2017-04-11
Adobe Reader DC Annotations Object Use-After-Free Remote Code Execution Vulnerability
ZDI-17-270 CVE: CVE-2017-3046 Published: 2017-04-11
Adobe Acrobat Pro DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-269 CVE: CVE-2017-3042 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-268 CVE: CVE-2017-3045 Published: 2017-04-11
Adobe Acrobat Pro DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-267 CVE: CVE-2017-3044 Published: 2017-04-11
Adobe Acrobat Pro DC JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-266 CVE: CVE-2017-3042 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-265 CVE: CVE-2017-3042 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-264 CVE: CVE-2017-3042 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-263 CVE: CVE-2017-3043 Published: 2017-04-11
Adobe Reader DC Collab shareFile Information Disclosure Vulnerability
ZDI-17-262 CVE: CVE-2017-3036 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion PCX Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-261 CVE: CVE-2017-3035 Published: 2017-04-11
Adobe Reader DC XFA dashDotDot Use-After-Free Remote Code Execution Vulnerability
ZDI-17-260 CVE: CVE-2017-3034 Published: 2017-04-11
Adobe Reader DC XFA Array Index Integer Underflow Remote Code Execution Vulnerability
ZDI-17-259 CVE: CVE-2017-3031 Published: 2017-04-11
Adobe Reader DC Nested Variables Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-258 CVE: CVE-2017-3033 Published: 2017-04-11
Adobe Reader DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-257 CVE: CVE-2017-3032 Published: 2017-04-11
Adobe Reader DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-256 CVE: CVE-2017-3031 Published: 2017-04-11
Adobe Reader DC XSLT Namespace Node Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-255 CVE: CVE-2017-3029 Published: 2017-04-11
Adobe Reader DC JPEG2000 Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-254 CVE: CVE-2017-3028 Published: 2017-04-11
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-253 CVE: CVE-2017-3023 Published: 2017-04-11
Adobe Reader DC JPEG2000 Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-252 CVE: CVE-2017-3022 Published: 2017-04-11
Adobe Reader DC JPEG2000 Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-251 CVE: CVE-2017-3021 Published: 2017-04-11
Adobe Reader DC JPEG2000 Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-250 CVE: CVE-2017-3020 Published: 2017-04-11
Adobe Reader DC Weblink Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-249 CVE: CVE-2017-3019 Published: 2017-04-11
Adobe Reader DC PRC Parsing Out-Of-Bound Read Remote Code Execution Vulnerability
ZDI-17-248 CVE: CVE-2017-3060 Published: 2017-04-11
Adobe Flash SWF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-247 CVE: CVE-2017-3060 Published: 2017-04-11
Adobe Flash SWF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-246 CVE: CVE-2017-3059 Published: 2017-04-11
Adobe Flash AS2 New Opcode Use-After-Free Remote Code Execution Vulnerability
ZDI-17-245 CVE: CVE-2017-3058 Published: 2017-04-11
Adobe Flash ByteArray Use-After-Free Remote Code Execution Vulnerability
ZDI-17-244 CVE: Published: 2017-04-05
Trend Micro Control Manager cgiShowClientAdm Missing Authentication for Critical Function Vulnerability
ZDI-17-243 CVE: Published: 2017-04-05
Trend Micro Smart Protection Server wcs_bwlists_handler Command Injection Remote Code Execution Vulnerability
ZDI-17-242 CVE: CVE-2017-3009 Published: 2017-04-05
Adobe Reader DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-241 CVE: CVE-2017-2463 Published: 2017-03-30
Apple Safari RenderBox Use-After-Free Remote Code Execution Vulnerability
ZDI-17-240 CVE: CVE-2017-7184 Published: 2017-03-30
(Pwn2Own) Linux Kernel XFRM Out-Of-Bounds Access Privilege Escalation Vulnerability
ZDI-17-239 CVE: CVE-2017-4904 Published: 2017-03-30
(Pwn2Own) VMware Workstation Uninitialized Memory Privilege Escalation Vulnerability
ZDI-17-238 CVE: CVE-2017-4905 Published: 2017-03-30
(Pwn2Own) VMware Workstation Uninitialized Memory Information Disclosure Vulnerability
ZDI-17-237 CVE: CVE-2017-4903 Published: 2017-03-30
(Pwn2Own) VMware Workstation SVGA Uninitialized Memory Privilege Escalation Vulnerability
ZDI-17-236 CVE: CVE-2017-4902 Published: 2017-03-30
VMware Workstation SVGA Heap-based Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-235 CVE: CVE-2017-4902 Published: 2017-03-30
VMware Workstation SVGA Heap-based Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-234 CVE: CVE-2017-5428 Published: 2017-03-30
(Pwn2Own) Mozilla Firefox createImageBitmap Integer Overflow Remote Code Execution Vulnerability
ZDI-17-233 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance transparent_setting CRLF Injection Authentication Bypass Vulnerability
ZDI-17-232 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance TestConfigure Command Injection Remote Code Execution Vulnerability
ZDI-17-231 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration datagateIPv6Changed Command Injection Remote Code Execution Vulnerability
ZDI-17-230 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration isMgntDHCPIPv6Changed Command Injection Remote Code Execution Vulnerability
ZDI-17-229 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance PacFileManagement delete_pac_files Command Injection Remote Code Execution Vulnerability
ZDI-17-228 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration hostname Command Injection Remote Code Execution Vulnerability
ZDI-17-227 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigBackup Information Disclosure Vulnerability
ZDI-17-226 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setHostname Command Injection Remote Code Execution Vulnerability
ZDI-17-225 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance uihelper Privilege Escalation Vulnerability
ZDI-17-224 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration Command Injection Remote Code Execution Vulnerability
ZDI-17-223 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration manageIP6 Command Injection Remote Code Execution Vulnerability
ZDI-17-222 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration gateChanged Command Injection Remote Code Execution Vulnerability
ZDI-17-221 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration dataIP6Changed Command Injection Remote Code Execution Vulnerability
ZDI-17-220 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ContentCacheSSAction Command Injection Remote Code Execution Vulnerability
ZDI-17-219 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance PacFileManagement Unrestricted File Upload Remote Code Execution Vulnerability
ZDI-17-218 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setMgmtIPConfig Command Injection Remote Code Execution Vulnerability
ZDI-17-217 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance DomainList TestingADKerberos Command Injection Remote Code Execution Vulnerability
ZDI-17-216 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ManagePatches untarPatchFile Command Injection Remote Code Execution Vulnerability
ZDI-17-215 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration mgmtPingChanged Command Injection Remote Code Execution Vulnerability
ZDI-17-214 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance DeploymentWizardAction GetClusterInfo Command Injection Remote Code Execution Vulnerability
ZDI-17-213 CVE: Published: 2017-03-30
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration dataPingChanged Command Injection Remote Code Execution Vulnerability
ZDI-17-212 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration primaryDNS6 Command Injection Remote Code Execution Vulnerability
ZDI-17-211 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance VerboseLog Directory Traversal Information Disclosure Vulnerability
ZDI-17-210 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setMgmtIPConfig Command Injection Remote Code Execution Vulnerability
ZDI-17-209 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance LogSettingHandler doPostMountDevice Command Injection Remote Code Execution Vulnerability
ZDI-17-208 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ManagePatches rollbackPatch Command Injection Remote Code Execution Vulnerability
ZDI-17-207 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration mgmtIPv6Changed Command Injection Remote Code Execution Vulnerability
ZDI-17-206 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ReportHandler DoCmd Command Injection Remote Code Execution Vulnerability
ZDI-17-205 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration manageEth Command Injection Remote Code Execution Vulnerability
ZDI-17-204 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration isDHCP Command Injection Remote Code Execution Vulnerability
ZDI-17-203 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setDataIPConfig static IP Information Command Injection Remote Code Execution Vulnerability
ZDI-17-202 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ClusterManagement ChangeNodeSetting Command Injection Remote Code Execution Vulnerability
ZDI-17-201 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance config_date_time Command Injection Remote Code Execution Vulnerability
ZDI-17-200 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance WmiDCDetector getAdHost Command Injection Remote Code Execution Vulnerability
ZDI-17-199 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance LogDelete processRequest method Directory Traversal Denial of Service Vulnerability
ZDI-17-198 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration mgnt_gateway6 Command Injection Remote Code Execution Vulnerability
ZDI-17-197 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration isDHCP6_data Command Injection Remote Code Execution Vulnerability
ZDI-17-196 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration proxyEthChanged Command Injection Remote Code Execution Vulnerability
ZDI-17-195 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ConfigIPNetwork saveNetworkConfiguration dataIPChanged Command Injection Remote Code Execution Vulnerability
ZDI-17-194 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setDataIPConfig DNS Information Command Injection Remote Code Execution Vulnerability
ZDI-17-193 CVE: Published: 2017-03-29
Trend Micro InterScan Web Security Virtual Appliance ManageIPConfig setDataIPConfig DHCP Information Command Injection Remote Code Execution Vulnerability
ZDI-17-192 CVE: CVE-2017-5797 Published: 2017-03-29
Hewlett Packard Enterprise Intelligent Management Center Service Operation Manager Module FileDownloadServlet filePath Information Disclosure Vulnerability
ZDI-17-191 CVE: CVE-2017-2481 Published: 2017-03-28
Apple Safari ElementData Use-After-Free Remote Code Execution Vulnerability
ZDI-17-190 CVE: CVE-2017-2430 Published: 2017-03-28
Apple macOS M4A Parsing Type Confusion Remote Code Execution Vulnerability
ZDI-17-189 CVE: CVE-2017-2462 Published: 2017-03-28
Apple macOS M4A Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-188 CVE: CVE-2017-2432 Published: 2017-03-28
Apple macOS ImageIO JPEG Parsing Integer Overflow Remote Code Execution Vulnerability
ZDI-17-187 CVE: Published: 2017-03-22
Trend Micro InterScan Messaging Security Suite DetailReportAction Directory Traversal Information Disclosure Vulnerability
ZDI-17-186 CVE: Published: 2017-03-22
Trend Micro Control Manager CCGIServlet SpecialSpywarePolicyResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-185 CVE: Published: 2017-03-22
Trend Micro Control Manager AdHocQueryExportProcessing SQL Injection Remote Code Execution Vulnerability
ZDI-17-184 CVE: Published: 2017-03-22
Trend Micro Control Manager CCGIServlet IDTB_SV parameters SQL Injection Remote Code Execution Vulnerability
ZDI-17-183 CVE: Published: 2017-03-22
Trend Micro Control Manager CCGIServlet ID_HIDDEN_UG_STR SQL Injection Remote Code Execution Vulnerability
ZDI-17-182 CVE: Published: 2017-03-22
Trend Micro Control Manager cgiCMUIDispatcher ScheduleDownloadSavedEnableList SQL Injection Remote Code Execution Vulnerability
ZDI-17-181 CVE: Published: 2017-03-22
Trend Micro Control Manager CCGIServlet ID_QUERY_COMMAND_TRACKING_ID SQL Injection Remote Code Execution Vulnerability
ZDI-17-180 CVE: Published: 2017-03-22
Trend Micro Control Manager cgiCMUIDispatcher ManualDownloadResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-179 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash MovieClip transform Use-After-Free Remote Code Execution Vulnerability
ZDI-17-178 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash Transform matrix Use-After-Free Remote Code Execution Vulnerability
ZDI-17-177 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash BitmapData Use-After-Free Remote Code Execution Vulnerability
ZDI-17-176 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash Sound loadSound Use-After-Free Remote Code Execution Vulnerability
ZDI-17-175 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash TextFormat getTextExtent Use-After-Free Remote Code Execution Vulnerability
ZDI-17-174 CVE: CVE-2017-3001 Published: 2017-03-21
Adobe Flash AS2 RemoveClip Opcode Use-After-Free Remote Code Execution Vulnerability
ZDI-17-173 CVE: CVE-2017-0067 Published: 2017-03-21
Microsoft Edge JavaScript Parsing Uninitialized Pointer Remote Code Execution Vulnerability
ZDI-17-172 CVE: CVE-2017-0015 Published: 2017-03-21
Microsoft Windows JavaScript Spread Operator Uninitialized Memory Information Disclosure Vulnerability
ZDI-17-171 CVE: CVE-2017-0032 Published: 2017-03-21
Microsoft Windows JavaScript Spread Operator Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-170 CVE: CVE-2017-0094 Published: 2017-03-21
Microsoft Windows JavaScript Proxy Setter Type Confusion Remote Code Execution Vulnerability
ZDI-17-169 CVE: CVE-2017-0018 Published: 2017-03-21
Microsoft Internet Explorer CHtmTag Use-After-Free Remote Code Execution Vulnerability
ZDI-17-168 CVE: CVE-2017-0047 Published: 2017-03-21
Microsoft Windows DrawIconEx Buffer Overflow Privilege Escalation Vulnerability
ZDI-17-167 CVE: CVE-2017-0011 Published: 2017-03-21
Microsoft Edge CTransitionValues Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-166 CVE: CVE-2017-5790 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center accessMgrServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-165 CVE: CVE-2017-5795 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center FileDownloadServlet fileName Directory Traversal Information Disclosure Vulnerability
ZDI-17-164 CVE: CVE-2017-5794 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center FileUploadServlet Directory Traversal Remote Code Execution Vulnerability
ZDI-17-163 CVE: CVE-2017-5793 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center CommonUtils Directory Traversal Remote Code Execution Vulnerability
ZDI-17-162 CVE: CVE-2017-5792 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center RMI Registry Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-161 CVE: CVE-2017-5791 Published: 2017-03-11
Hewlett Packard Enterprise Intelligent Management Center UrlAccessController Filter Authentication Bypass Vulnerability
ZDI-17-160 CVE: CVE-2017-5789 Published: 2017-03-09
Hewlett Packard Enterprise LoadRunner libxdrutil mxdr_string Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-159 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector download_pdf Command Injection Remote Code Execution Vulnerability
ZDI-17-158 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector write_new_html_with_svg Directory Traversal Remote Code Execution Vulnerability
ZDI-17-157 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector network_dump Command Injection Remote Code Execution Vulnerability
ZDI-17-156 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector get_filesize Command Injection Remote Code Execution Vulnerability
ZDI-17-155 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector firewall_setting Command Injection Remote Code Execution Vulnerability
ZDI-17-154 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector reboot_after_hotfix Denial of Service Vulnerability
ZDI-17-153 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector screenshot Command Injection Remote Code Execution Vulnerability
ZDI-17-152 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector ajax_checklicense_AC Command Injection Remote Code Execution Vulnerability
ZDI-17-151 CVE: Published: 2017-03-09
Trend Micro Deep Discovery Email Inspector db_export Command Injection Remote Code Execution Vulnerability
ZDI-17-150 CVE: Published: 2017-03-09
Foxit Reader Field buttonGetIcon Use-After-Free Remote Code Execution Vulnerability
ZDI-17-149 CVE: Published: 2017-03-09
Foxit Reader ePub Parsing Use-After-Free Remote Code Execution Vulnerability
ZDI-17-148 CVE: Published: 2017-03-09
Foxit Reader openDoc Use-After-Free Remote Code Execution Vulnerability
ZDI-17-147 CVE: Published: 2017-03-09
Foxit Reader Field deleteItemAt Use-After-Free Remote Code Execution Vulnerability
ZDI-17-146 CVE: Published: 2017-03-09
Foxit Reader PDB Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-17-145 CVE: Published: 2017-03-09
Foxit Reader PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-144 CVE: Published: 2017-03-09
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-143 CVE: Published: 2017-03-09
Foxit Reader execMenuItem Use-After-Free Remote Code Execution Vulnerability
ZDI-17-142 CVE: Published: 2017-03-09
Foxit Reader execMenuItem Use-After-Free Remote Code Execution Vulnerability
ZDI-17-141 CVE: Published: 2017-03-09
Foxit Reader execMenuItem Use-After-Free Remote Code Execution Vulnerability
ZDI-17-140 CVE: Published: 2017-03-09
Foxit Reader PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-139 CVE: Published: 2017-03-09
Foxit Reader ePub Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-138 CVE: Published: 2017-03-09
Foxit Reader XFA Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-137 CVE: Published: 2017-03-09
Foxit Reader Pattern Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-136 CVE: Published: 2017-03-09
Foxit Reader Xref Use-After-Free Remote Code Execution Vulnerability
ZDI-17-135 CVE: Published: 2017-03-09
Foxit Reader PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-134 CVE: Published: 2017-03-09
Foxit Reader Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-133 CVE: Published: 2017-03-09
Foxit Reader ConvertToPDF TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-132 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise displayName_get SQL Injection Information Disclosure Vulnerability
ZDI-17-131 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise count_ad_members SQL Injection Information Disclosure Vulnerability
ZDI-17-130 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise restartService Command Injection Remote Code Execution Vulnerability
ZDI-17-129 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise rollback Command Injection Remote Code Execution Vulnerability
ZDI-17-128 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise get_device_info SQL Injection Information Disclosure Vulnerability
ZDI-17-127 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise get_replacement Command Injection Remote Code Execution Vulnerability
ZDI-17-126 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise license Command Injection Remote Code Execution Vulnerability
ZDI-17-125 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise get_nic_device SQL Injection Information Disclosure Vulnerability
ZDI-17-124 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise reconnect_nfs_device Command Injection Remote Code Execution Vulnerability
ZDI-17-123 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise reconnect_iscsi_device Command Injection Remote Code Execution Vulnerability
ZDI-17-122 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise reconnect_local_device Command Injection Remote Code Execution Vulnerability
ZDI-17-121 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise mount_local_device Command Injection Remote Code Execution Vulnerability
ZDI-17-120 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise mount_iscsi_device Command Injection Remote Code Execution Vulnerability
ZDI-17-119 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise replace_local_disk Command Injection Remote Code Execution Vulnerability
ZDI-17-118 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise dead_local_device Command Injection Remote Code Execution Vulnerability
ZDI-17-117 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise dead_iscsi_device Command Injection Remote Code Execution Vulnerability
ZDI-17-116 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise discovery_iscsi_device Command Injection Remote Code Execution Vulnerability
ZDI-17-115 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise save_local_config Command Injection Remote Code Execution Vulnerability
ZDI-17-114 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise save_iscsi_config Command Injection Remote Code Execution Vulnerability
ZDI-17-113 CVE: Published: 2017-03-01
Trend Micro SafeSync for Enterprise check_nfs_server_status Command Injection Remote Code Execution Vulnerability
ZDI-17-112 CVE: CVE-2017-5177 Published: 2017-02-28
VIPA Automation WinPLC7 recv Stack-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-111 CVE: CVE-2017-2939 Published: 2017-02-16
Adobe Acrobat Reader DC Memory Corruption Remote Code Execution Vulnerability
ZDI-17-110 CVE: CVE-2017-2994 Published: 2017-02-14
Adobe Flash Player MediaPlayer Out-Of-Bounds Access Remote Code Execution Vulnerability
ZDI-17-109 CVE: CVE-2017-2995 Published: 2017-02-14
Adobe Flash Player MessageChannel Type Confusion Remote Code Execution Vulnerability
ZDI-17-108 CVE: CVE-2017-2976 Published: 2017-02-14
Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-107 CVE: CVE-2017-2975 Published: 2017-02-14
Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-106 CVE: CVE-2017-2974 Published: 2017-02-14
Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-105 CVE: CVE-2017-2981 Published: 2017-02-14
Adobe Digital Editions PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-104 CVE: CVE-2017-2978 Published: 2017-02-14
Adobe Digital Editions PDF Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-103 CVE: CVE-2017-2979 Published: 2017-02-14
Adobe Digital Editions FlateDecode Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-102 CVE: CVE-2017-2977 Published: 2017-02-14
Adobe Digital Editions FlateDecode Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-101 CVE: Published: 2017-02-07
Trend Micro Control Manager cgiRedAlertStatusTracking SQL Injection Remote Code Execution Vulnerability
ZDI-17-100 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet NotificationMethodResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-099 CVE: Published: 2017-02-07
Trend Micro Control Manager AdHocQuery_Result XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-098 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet CnCContactAlertResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-097 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet HighRiskDetectionResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-096 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet DLPIncidentStatusChangeResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-095 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet StealthProgramFoundResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-094 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet SHA1DenyDetectionResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-093 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet CorrelatedIncidentResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-092 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet DLPIncidentScheduleSummaryResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-091 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet VirtualAnalysisDetectionResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-090 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet KnownAttackDetectionResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-089 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet SuspiciousThreat parameters SQL Injection Remote Code Execution Vulnerability
ZDI-17-088 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet ID_HIDDEN_RED_ALERT_TASK_ID SQL Injection Remote Code Execution Vulnerability
ZDI-17-087 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet EmailMessageDetected parameters SQL Injection Remote Code Execution Vulnerability
ZDI-17-086 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet CnC parameters SQL Injection Remote Code Execution Vulnerability
ZDI-17-085 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet ThreatSentToWatchlistResult SQL Injection Remote Code Execution Vulnerability
ZDI-17-084 CVE: Published: 2017-02-07
Trend Micro Control Manager ProductTree_TreeManagement1 XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-083 CVE: Published: 2017-02-07
Trend Micro Control Manager ProductTree_Table XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-082 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet IDTB_ Parameters SQL Injection Remote Code Execution Vulnerability
ZDI-17-081 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet IDTB_GroupName SQL Injection Remote Code Execution Vulnerability
ZDI-17-080 CVE: Published: 2017-02-07
Trend Micro Control Manager TreeUserControl_process_tree_event XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-079 CVE: Published: 2017-02-07
Trend Micro Control Manager ProductTree XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-078 CVE: Published: 2017-02-07
Trend Micro Control Manager CCGIServlet IDCB_SuspiciousThreat SQL Injection Remote Code Execution Vulnerability
ZDI-17-077 CVE: Published: 2017-02-07
Trend Micro Control Manager ProductTree_RightWindow XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-076 CVE: Published: 2017-02-07
Trend Micro Control Manager ProductTree_LeftWindow XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-075 CVE: Published: 2017-02-07
Trend Micro Control Manager DeploymentPlan_Event_Handler XML External Entity Processing Information Disclosure Vulnerability
ZDI-17-074 CVE: Published: 2017-02-07
Trend Micro Control Manager ProgressReportCGI SQL Injection Authentication Bypass Vulnerability
ZDI-17-073 CVE: Published: 2017-02-07
Trend Micro Control Manager cgiCMUIDispatcher Login Token SQL Injection Remote Code Execution Vulnerability
ZDI-17-072 CVE: Published: 2017-02-07
Trend Micro Control Manager dlp_policy Directory Traversal Remote Code Execution Vulnerability
ZDI-17-071 CVE: Published: 2017-02-07
Trend Micro Control Manager dlp_policy Directory Traversal Remote Code Execution Vulnerability
ZDI-17-070 CVE: Published: 2017-02-07
Trend Micro Control Manager dlp_policy Directory Traversal Remote Code Execution Vulnerability
ZDI-17-069 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPViolationCnt_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-068 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPViolationCnt_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-067 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPViolationCnt_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-066 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPTemplateMatch_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-065 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPTemplateMatch_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-064 CVE: Published: 2017-02-07
Trend Micro Control Manager modDLPTemplateMatch_drildown Directory Traversal Remote Code Execution Vulnerability
ZDI-17-063 CVE: Published: 2017-02-07
Trend Micro Control Manager importFile Directory Traversal Remote Code Execution Vulnerability
ZDI-17-062 CVE: Published: 2017-02-07
Trend Micro Control Manager download Directory Traversal Information Disclosure Vulnerability
ZDI-17-061 CVE: Published: 2017-02-07
Trend Micro Control Manager download Directory Traversal Information Disclosure Vulnerability
ZDI-17-060 CVE: Published: 2017-02-07
Trend Micro Control Manager importFile Directory Traversal Remote Code Execution Vulnerability
ZDI-17-059 CVE: CVE-2016-8341 Published: 2017-02-07
Ecava IntegraXor getdata param SQL Injection Remote Code Execution Vulnerability
ZDI-17-058 CVE: CVE-2016-8341 Published: 2017-02-07
Ecava IntegraXor getdata name SQL Injection Remote Code Execution Vulnerability
ZDI-17-057 CVE: CVE-2017-3289 Published: 2017-01-24
Oracle Java Uninitialized Memory Remote Code Execution Vulnerability
ZDI-17-056 CVE: CVE-2017-3272 Published: 2017-01-24
Oracle Java AtomicReferenceFieldUpdater Type Confusion Remote Code Execution Vulnerability
ZDI-17-055 CVE: CVE-2017-3248 Published: 2017-01-24
Oracle WebLogic RMI Registry UnicastRef Object Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-054 CVE: CVE-2017-2354 Published: 2017-01-24
Apple Safari SearchInputType Type Confusion Remote Code Execution Vulnerability
ZDI-17-053 CVE: CVE-2016-2123 Published: 2017-01-20
Samba NDR Parsing ndr_pull_dnsp_name Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-052 CVE: CVE-2016-8207 Published: 2017-01-20
Brocade Network Advisor CliMonitorReportServlet Directory Traversal Information Disclosure Vulnerability
ZDI-17-051 CVE: CVE-2016-8206 Published: 2017-01-20
Brocade Network Advisor SoftwareImageUpload Directory Traversal Arbitrary File Deletion Vulnerability
ZDI-17-050 CVE: CVE-2016-8205 Published: 2017-01-20
Brocade Network Advisor DashboardFileReceiveServlet Directory Traversal Remote Code Execution Vulnerability
ZDI-17-049 CVE: CVE-2016-8204 Published: 2017-01-20
Brocade Network Advisor FileReceiveServlet Directory Traversal Remote Code Execution Vulnerability
ZDI-17-048 CVE: Published: 2017-01-20
Bitdefender Internet Security NSIS Entries Integer Overflow Remote Code Execution Vulnerability
ZDI-17-047 CVE: Published: 2017-01-20
Bitdefender Internet Security NSIS Pages Integer Overflow Remote Code Execution Vulnerability
ZDI-17-046 CVE: Published: 2017-01-20
Bitdefender Internet Security SIS Parsing Integer Overflow Remote Code Execution Vulnerability
ZDI-17-045 CVE: CVE-2017-2970 Published: 2017-01-20
Adobe Reader DC XSLT apply-templates Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-044 CVE: CVE-2016-6814 Published: 2017-01-20
Apache Groovy MethodClosure Deserialization of Untrusted Data Remote Code Execution Vulnerability
ZDI-17-043 CVE: CVE-2017-5154, CVE-2017-5152 Published: 2017-01-12
Advantech WebAccess updateTemplate SQL Injection Information Disclosure Vulnerability
ZDI-17-042 CVE: Published: 2017-01-11
Foxit PhantomPDF ConvertToPDF TIFF Parsing Memory Corruption Remote Code Execution Vulnerability
ZDI-17-041 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-040 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-039 CVE: Published: 2017-01-11
Foxit PhantomPDF ConvertToPDF JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-038 CVE: Published: 2017-01-11
Foxit Reader setInterval Use-After-Free Remote Code Execution Vulnerability
ZDI-17-037 CVE: Published: 2017-01-11
Foxit Reader Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-036 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-035 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-034 CVE: Published: 2017-01-11
Foxit Reader alert Use-After-Free Remote Code Execution Vulnerability
ZDI-17-033 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-032 CVE: Published: 2017-01-11
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-031 CVE: CVE-2017-2967 Published: 2017-01-10
Adobe Reader DC XFA template Out-Of-Bounds Read Remote Code Execution Vulnerability
ZDI-17-030 CVE: CVE-2017-2966 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-029 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT call-template Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-028 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT element Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-027 CVE: CVE-2017-2963 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-026 CVE: CVE-2017-2962 Published: 2017-01-10
Adobe Reader DC XSLT lang Type Confusion Remote Code Execution Vulnerability
ZDI-17-025 CVE: CVE-2017-2961 Published: 2017-01-10
Acrobat Reader DC XFA Field Font Size Use-After-Free Remote Code Execution Vulnerability
ZDI-17-024 CVE: CVE-2017-2960 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-023 CVE: CVE-2017-2959 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-022 CVE: CVE-2017-2951 Published: 2017-01-10
Adobe Reader DC XFA hyphenation Use-After-Free Remote Code Execution Vulnerability
ZDI-17-021 CVE: CVE-2017-2950 Published: 2017-01-10
Adobe Reader DC XFA Layout Use-After-Free Remote Code Execution Vulnerability
ZDI-17-020 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT decimal-format Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-019 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT namespace-alias Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-018 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT processing-instruction Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-017 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT function-available Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-016 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT sort Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-015 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT key Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-014 CVE: CVE-2017-2964 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-013 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT key Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-012 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT attribute Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-011 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT attribute-set Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-010 CVE: CVE-2017-2965 Published: 2017-01-10
Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
ZDI-17-009 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT format-number Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-008 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT output Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-007 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT variable Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-006 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT system-property Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-005 CVE: CVE-2017-2949 Published: 2017-01-10
Adobe Reader DC XSLT element-available Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-004 CVE: CVE-2017-2946 Published: 2017-01-10
Adobe Reader DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-003 CVE: CVE-2017-2946 Published: 2017-01-10
Adobe Reader DC JPEG2000 Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
ZDI-17-002 CVE: CVE-2017-2941 Published: 2017-01-10
Adobe Reader DC Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
ZDI-17-001 CVE: CVE-2016-8519 Published: 2017-01-10
Hewlett Packard Enterprise Operations Orchestration Backwards Compatibility Deserialization of Untrusted Data Remote Code Execution Vulnerability