Published Advisories
The following is a list of all publicly disclosed vulnerabilities discovered by TrendAI™ Zero Day Initiative™ (ZDI) researchers. While the affected vendor is working on a patch for these vulnerabilities, TrendAI™ customers are protected from exploitation by security filters delivered ahead of public disclosure.
All security vulnerabilities that are acquired by TrendAI™ ZDI are handled according to TrendAI™ ZDI's disclosure policy. Once the affected vendor patches the vulnerability, we publish an accompanying security advisory that describes the issue, including links to the vendor's fixes.
Published
Upcoming
| ZDI ID | ZDI CAN | Vendor/Product | CVE | CVSS | Published | Updated | ||
|---|---|---|---|---|---|---|---|---|
ZDI-CAN-3655 |
Google |
CVE-2016-10403 |
4.3 |
2017-08-23 |
Google Chrome PDFium JPEG Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-4177 |
Bitdefender |
6.8 |
2017-08-11 |
Bitdefender Internet Security Lyme SFX Integer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-4175 |
Bitdefender |
6.8 |
2017-08-11 |
Bitdefender Internet Security AutoIt v2 Integer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-4176 |
Bitdefender |
6.8 |
2017-08-01 |
Bitdefender Internet Security AutoIt v3 Integer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3873 |
ARRIS |
10.0 |
2017-06-26 |
ARRIS VAP2500 list_mac_address Authentication Bypass Remote Code Execution Vulnerability |
||||
ZDI-CAN-3872 |
ARRIS |
10.0 |
2017-06-26 |
ARRIS VAP2500 Default Credentials Remote Code Execution Vulnerability |
||||
ZDI-CAN-3871 |
ARRIS |
10.0 |
2017-06-26 |
ARRIS VAP2500 list_mac_address cmb_macaddrfilter Command Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3870 |
ARRIS |
10.0 |
2017-06-26 |
ARRIS VAP2500 list_mac_address macaddr Command Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3869 |
ARRIS |
9.0 |
2017-06-26 |
ARRIS VAP2500 tools_command Command Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3868 |
ARRIS |
9.0 |
2017-06-26 |
ARRIS VAP2500 config_wds Command Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3867 |
ARRIS |
9.0 |
2017-06-26 |
ARRIS VAP2500 assoc_table Command Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-4319 |
Microsoft |
CVE-2016-7202 |
6.8 |
2017-06-21 |
Microsoft Internet Explorer Array.splice Memory Corruption Remote Code Execution Vulnerability |
|||
ZDI-CAN-3877 |
Apple |
CVE-2016-7603 |
6.9 |
2017-06-21 |
Apple OS X CoreStorage Privilege Escalation Vulnerability |
|||
ZDI-CAN-3856 |
Apple |
CVE-2016-7714, CVE-2016-7625 |
4.9 |
2017-06-21 |
Apple OS X IOReportUserClient Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3855 |
Apple |
CVE-2016-7620 |
4.9 |
2017-06-21 |
Apple OS X IOSurface Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3854 |
Apple |
CVE-2016-7624 |
4.9 |
2017-06-21 |
Apple OS X IOCommandQueue Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3664 |
Adobe |
CVE-2016-4263 |
6.8 |
2017-06-13 |
Adobe Digital Editions PDF FlateDecode Parsing Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3760 |
Check Point |
6.9 |
2017-06-02 |
Check Point ZoneAlarm Extreme Security vsdatant Kernel Driver Untrusted Pointer Dereference Privilege Escalation Vulnerability |
||||
ZDI-CAN-3783 |
ThinPrint |
CVE-2016-7081 |
6.2 |
2017-06-02 |
ThinPrint TPClnt/TPView Heap-based Buffer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3712 |
Avast |
7.2 |
2017-05-11 |
Avast Free Antivirus aswSnx Kernel Driver Untrusted Pointer Dereference Privilege Escalation Vulnerability |
||||
ZDI-CAN-3577 |
Microsoft |
7.5 |
2017-04-06 |
Microsoft Skype DLL Planting Remote Code Execution Vulnerability |
||||
ZDI-CAN-3954 |
Apple |
CVE-2016-7630 |
4.4 |
2017-03-31 |
Apple iOS legacy-diagnostics Privilege Escalation Vulnerability |
|||
ZDI-CAN-4332 |
Adobe |
CVE-2016-7878 |
6.8 |
2017-02-13 |
Adobe Flash Player PSDKEventDispatcher Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4331 |
Microsoft |
CVE-2016-7297 |
5.0 |
2017-01-20 |
Microsoft Windows JavaScript Array.concat Type Confusion Information Disclosure Vulnerability |
|||
ZDI-CAN-4009 |
Microsoft |
CVE-2016-3375 |
4.3 |
2017-01-10 |
Microsoft Windows ADO Recordset Update Use-After-Free Information Disclosure Vulnerability |
|||
ZDI-CAN-3956 |
Microsoft |
CVE-2016-3375 |
2.6 |
2017-01-10 |
Microsoft Windows ADO Recordset GetRows Use-After-Free Information Disclosure Vulnerability |
|||
ZDI-CAN-4050 |
BitTorrent |
7.5 |
2016-12-26 |
BitTorrent API Cross-Site Scripting Remote Code Execution Vulnerability |
||||
ZDI-CAN-3766 |
Mozilla |
CVE-2016-2837 |
6.8 |
2016-12-19 |
Mozilla Firefox ClearKeyDecryptor Heap Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3705 |
Fatek Automation |
CVE-2016-8377 |
6.5 |
2016-12-15 |
Fatek Automation PLC WinProladder Stack-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3745 |
Sophos |
6.5 |
2016-12-15 |
Sophos XG Firewall Controller filter SQL Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3809 |
Avira |
6.9 |
2016-12-15 |
Avira Free Antivirus ssmdrv Kernel Driver Memory Corruption Privilege Escalation Vulnerability |
||||
ZDI-CAN-3595 |
Autodesk |
6.8 |
2016-12-15 |
Autodesk Design Review JFIF Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3593 |
Autodesk |
6.8 |
2016-12-15 |
Autodesk Design Review PNG Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3573 |
Autodesk |
6.8 |
2016-12-15 |
Autodesk Design Review BMP Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3526 |
Autodesk |
6.8 |
2016-12-15 |
Autodesk Design Review FLI Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3525 |
Autodesk |
6.8 |
2016-12-15 |
Autodesk Design Review GIF LZW Out-Of-Bounds Indexing Remote Code Execution Vulnerability |
||||
ZDI-CAN-3527 |
Autodesk |
5.1 |
2016-12-15 |
Autodesk Design Review JPEG DHT Out-Of-Bounds Indexing Remote Code Execution Vulnerability |
||||
ZDI-CAN-3935 |
Delta Industrial Automation |
CVE-2016-5802 |
7.5 |
2016-12-15 |
Delta Industrial Automation PMSoft File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-4016 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation ISPSoft dvl File Parsing Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3915 |
Delta Industrial Automation |
CVE-2016-5805 |
7.5 |
2016-12-15 |
Delta Industrial Automation WPLSoft File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3914 |
Delta Industrial Automation |
CVE-2016-5802 |
7.5 |
2016-12-15 |
Delta Industrial Automation WPLSoft File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3916 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation ISPSoft dvp File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3913 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation WPLSoft dvp File Parsing Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3912 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation WPLSoft dvp File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3911 |
Delta Industrial Automation |
CVE-2016-5805 |
5.1 |
2016-12-15 |
Delta Industrial Automation WPLSoft dvp File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3910 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation ISPSoft dvp File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3931 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation WPLSoft LAD File Reading Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3930 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation WPLSoft LAD File Parsing Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3861 |
Delta Industrial Automation |
CVE-2016-5802 |
6.8 |
2016-12-15 |
Delta Industrial Automation WPLSoft SFC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3909 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation ISPSoft dvp File Heap-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3860 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation WPLSoft Bit Data File Parsing Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3859 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation WPLSoft Register Data File Parsing Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3865 |
Delta Industrial Automation |
CVE-2016-5805 |
6.8 |
2016-12-15 |
Delta Industrial Automation WPLSoft DVP File Parsing Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3858 |
Delta Industrial Automation |
CVE-2016-5802 |
6.8 |
2016-12-15 |
Delta Industrial Automation WPLSoft DVP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3587 |
Delta Industrial Automation |
CVE-2016-5802 |
6.8 |
2016-12-15 |
Delta Industrial Automation WPLSoft Heap Memory Corruption Remote Code Execution Vulnerability |
|||
ZDI-CAN-4051 |
Microsoft |
CVE-2016-7272 |
6.8 |
2016-12-15 |
Microsoft Windows Icon File Integer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-4019 |
Apple |
CVE-2016-7617 |
6.9 |
2016-12-15 |
Apple OS X AppleBroadcomBluetoothHostController Type Confusion Privilege Escalation Vulnerability |
|||
ZDI-CAN-3985 |
Apple |
CVE-2016-7602 |
6.9 |
2016-12-15 |
Apple OS X AppleIntelFramebufferAzul Privilege Escalation Vulnerability |
|||
ZDI-CAN-3864 |
Apple |
CVE-2016-7609 |
6.9 |
2016-12-15 |
Apple OS X AppleGraphicsPowerManagement Null Pointer Dereference Privilege Escalation Vulnerability |
|||
ZDI-CAN-3823 |
Apple |
CVE-2016-7582 |
6.9 |
2016-12-15 |
Apple OS X IntelHD5000 IGAccelResource Use-After-Free Privilege Escalation Vulnerability |
|||
ZDI-CAN-3775 |
Apple |
CVE-2016-4638 |
4.4 |
2016-12-15 |
Apple OS X WindowServer _XSetApplicationBindingsForWorkspaces Type Confusion Privilege Escalation Vulnerability |
|||
ZDI-CAN-3773 |
Apple |
CVE-2016-4638 |
4.4 |
2016-12-15 |
Apple OS X WindowServer _XSetDictionaryForCurrentSession Type Confusion Privilege Escalation Vulnerability |
|||
ZDI-CAN-3770 |
Apple |
CVE-2016-4640 |
4.4 |
2016-12-15 |
Apple OS X WindowServer _XRegisterCursorWithData Memory Corruption Privilege Escalation Vulnerability |
|||
ZDI-CAN-3677 |
Apple |
CVE-2016-1818 |
7.2 |
2016-12-15 |
Apple OS X AppleIntelHD5000Graphics Null Pointer Dereference Privilege Escalation Vulnerability |
|||
ZDI-CAN-3923 |
Adobe |
CVE-2016-7888 |
4.3 |
2016-12-15 |
Adobe Digital Editions FlateDecode Out-of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3681 |
Fatek Automation |
CVE-2016-5796 |
7.5 |
2016-12-14 |
Fatek Automation Communication Server Stack Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3676 |
Fatek Automation |
CVE-2016-5798 |
7.5 |
2016-12-14 |
Fatek Automation FvDesigner Stack Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3992 |
Apple |
CVE-2016-7616 |
6.9 |
2016-12-13 |
Apple OS X IOKit Privilege Escalation Vulnerability |
|||
ZDI-CAN-3953 |
Apple |
CVE-2016-7611 |
6.8 |
2016-12-13 |
Apple Safari HTMLLabelElement Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4010 |
Apple |
CVE-2016-7610 |
6.8 |
2016-12-13 |
Apple Safari RenderObject Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3876 |
Advantech |
CVE-2016-9351 |
8.5 |
2016-12-13 |
Advantech SUSIAccess Server UpgradeMgmt upload Directory Traversal Remote Code Execution Vulnerability |
|||
ZDI-CAN-3987 |
Advantech |
CVE-2016-9353 |
7.2 |
2016-12-13 |
Advantech SUSIAccess Server Static Encryption Key Privilege Escalation Vulnerability |
|||
ZDI-CAN-3831 |
Advantech |
CVE-2016-9349 |
7.8 |
2016-12-13 |
Advantech SUSIAccess Server downloadCSV file Parameter Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-4046 |
Adobe |
CVE-2016-7871 |
6.8 |
2016-12-13 |
Adobe Flash Player Worker Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-4041 |
Adobe |
CVE-2016-7872 |
6.8 |
2016-12-13 |
Adobe Flash MovieClip swapDepth Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3991 |
Adobe |
CVE-2016-7868 |
6.8 |
2016-12-13 |
Adobe Flash Player RegExp THEN Stack-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3958 |
Adobe |
CVE-2016-7869 |
6.8 |
2016-12-13 |
Adobe Flash Player RegExp PRUNE Stack-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3959 |
Adobe |
CVE-2016-7870 |
6.8 |
2016-12-13 |
Adobe Flash Player RegExp SKIP Stack-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3990 |
Adobe |
CVE-2016-7867 |
6.8 |
2016-12-13 |
Adobe Flash Player RegExp MARK Stack-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-4124 |
Adobe |
CVE-2016-7875 |
6.8 |
2016-12-13 |
Adobe Flash Player BitmapData Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-4123 |
Adobe |
CVE-2016-7878 |
6.8 |
2016-12-13 |
Adobe Flash PSDK Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4129 |
Adobe |
CVE-2016-7879 |
6.8 |
2016-12-13 |
Adobe Flash NetConnection Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4022 |
Attachmate |
CVE-2016-5765 |
5.0 |
2016-12-13 |
Attachmate Host Access Management and Security Server PassThru Information Disclosure Vulnerability |
|||
ZDI-CAN-3748 |
Dell |
10.0 |
2016-12-02 |
Dell SonicWALL Universal Management Suite ImagePreviewServlet SQL Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3729 |
Hewlett Packard Enterprise |
CVE-2016-8511 |
7.5 |
2016-11-30 |
Hewlett Packard Enterprise Network Automation RPCServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability |
|||
ZDI-CAN-4032 |
Moxa |
CVE-2016-8360 |
7.6 |
2016-11-23 |
Moxa SoftCMS AspWebServer URL Processing Double Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4060 |
Foxit |
4.3 |
2016-11-22 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-4061 |
Foxit |
6.8 |
2016-11-22 |
Foxit Reader JPEG2000 Parsing Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-4062 |
Foxit |
4.3 |
2016-11-22 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-4063 |
Foxit |
4.3 |
2016-11-22 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-4064 |
Foxit |
6.8 |
2016-11-22 |
Foxit Reader JPEG2000 Parsing Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3772 |
Apple |
CVE-2016-4709 |
4.4 |
2016-11-15 |
Apple OS X WindowServer _XSetPerUserConfigurationData Type Confusion Privilege Escalation Vulnerability |
|||
ZDI-CAN-3774 |
Apple |
CVE-2016-4710 |
4.4 |
2016-11-15 |
Apple OS X WindowServer _XSetPreferencesForWorkspaces Type Confusion Privilege Escalation Vulnerability |
|||
ZDI-CAN-3710 |
CA |
CVE-2016-9164 |
5.0 |
2016-11-09 |
CA Unified Infrastructure Management diag Path Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3708 |
CA |
CVE-2016-9165 |
5.0 |
2016-11-09 |
CA Unified Infrastructure Management get_sessions Session Information Disclosure Remote Authentication Bypass Vulnerability |
|||
ZDI-CAN-3711 |
CA |
CVE-2016-5803 |
7.8 |
2016-11-09 |
CA Unified Infrastructure Management download_lar Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3832 |
IBHsoftec |
CVE-2016-8364 |
9.3 |
2016-11-08 |
IBHsoftec S7-SoftPLC CPX43 Heap-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-4047 |
Adobe |
CVE-2016-7862 |
6.8 |
2016-11-08 |
Adobe Flash MovieClip constructor Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4040 |
Adobe |
CVE-2016-7859 |
6.8 |
2016-11-08 |
Adobe Flash AS2 extends Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4048 |
Adobe |
CVE-2016-7860 |
6.8 |
2016-11-08 |
Adobe Flash AdvertisingMetadata Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-4049 |
Adobe |
CVE-2016-7861 |
6.8 |
2016-11-08 |
Adobe Flash Player Metadata Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-4044 |
Adobe |
CVE-2016-7863 |
6.8 |
2016-11-08 |
Adobe Flash TextField Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4042 |
Adobe |
CVE-2016-7865 |
6.8 |
2016-11-08 |
Adobe Flash LocalConnection Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4043 |
Adobe |
CVE-2016-7864 |
6.8 |
2016-11-08 |
Adobe Flash Selection setFocus Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4015 |
Adobe |
CVE-2016-7857 |
6.8 |
2016-11-08 |
Adobe Flash AVSegmentedSource Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3986 |
Adobe |
CVE-2016-7858 |
6.8 |
2016-11-08 |
Adobe Flash ExternalInterface addCallback Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-4020 |
Microsoft |
CVE-2016-7246 |
6.9 |
2016-11-08 |
Microsoft Windows NtUserMagSetContextInformation Kernel State Corruption Privilege Escalation Vulnerability |
|||
ZDI-CAN-4031 |
Microsoft |
CVE-2016-7202 |
6.8 |
2016-11-08 |
Microsoft Windows JavaScript reverse Method Heap-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3924 |
Microsoft |
CVE-2016-7215 |
7.2 |
2016-11-08 |
Microsoft Windows win32k.sys Bitmap Null Pointer Dereference Privilege Escalation Vulnerability |
|||
ZDI-CAN-3842 |
Adobe |
CVE-2016-6938 |
6.8 |
2016-11-04 |
Adobe Reader DC XObject stream Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3875 |
Apple |
CVE-2016-4677 |
6.8 |
2016-11-04 |
Apple Safari JavaScriptCore Array Out-Of-Bounds Access Remote Code Execution Vulnerability |
|||
ZDI-CAN-3908 |
Apple |
CVE-2016-4678 |
6.9 |
2016-11-02 |
Apple OS X AppleSMC smcHandleYPCEvent Privilege Escalation Vulnerability |
|||
ZDI-CAN-3730 |
Hewlett Packard Enterprise |
CVE-2016-4396 |
10.0 |
2016-11-02 |
Hewlett Packard Enterprise System Management Homepage SSO TKN Stack Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3722 |
Hewlett Packard Enterprise |
CVE-2016-4395 |
10.0 |
2016-11-02 |
Hewlett Packard Enterprise System Management Homepage SetSMHData Stack Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-4036 |
Foxit |
4.3 |
2016-11-02 |
Foxit Reader PDF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-4035 |
Foxit |
6.8 |
2016-11-02 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-4034 |
Foxit |
6.8 |
2016-11-02 |
Foxit Reader JPEG2000 Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-4029 |
Foxit |
6.8 |
2016-11-02 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-4028 |
Foxit |
6.8 |
2016-11-02 |
Foxit Reader JBIG2 Parsing Integer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-4027 |
Foxit |
4.3 |
2016-11-02 |
Foxit Reader JPXDecode filters Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3952 |
Foxit |
4.3 |
2016-11-02 |
Foxit Reader JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3951 |
Foxit |
4.3 |
2016-11-02 |
Foxit Reader GIF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3950 |
Foxit |
6.8 |
2016-11-02 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3955 |
Foxit |
6.8 |
2016-11-02 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3949 |
Foxit |
4.3 |
2016-11-02 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3948 |
Foxit |
6.8 |
2016-11-02 |
Foxit Reader JPEG2000 Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3838 |
Adobe |
CVE-2016-6937 |
4.3 |
2016-11-01 |
Adobe Reader DC FlateDecode Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-4038 |
Adobe |
CVE-2016-7854 |
4.3 |
2016-11-01 |
Adobe Reader DC JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3591 |
Oracle |
CVE-2016-5535 |
7.5 |
2016-11-01 |
Oracle WebLogic Commons DiskFileItem Deserialization of Untrusted Data Remote Code Execution Vulnerability |
|||
ZDI-CAN-3812 |
Oracle |
CVE-2016-5568 |
6.8 |
2016-11-01 |
Oracle Java Runtime Environment java.awt.Menu Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3837 |
Novell |
CVE-2016-1000031 |
7.5 |
2016-10-17 |
Novell NetIQ Sentinel Commons DiskFileItem Deserialization of Untrusted Data Remote Code Execution Vulnerability |
|||
ZDI-CAN-3989 |
Adobe |
CVE-2016-6987 |
6.8 |
2016-10-12 |
Adobe Flash Accessibility sendEvent Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3957 |
Adobe |
CVE-2016-6986 |
5.1 |
2016-10-12 |
Adobe Flash SWF Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3943 |
Adobe |
CVE-2016-6975 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing copy-of Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3946 |
Adobe |
CVE-2016-6972 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing key Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3740 |
Adobe |
CVE-2016-6941 |
4.3 |
2016-10-11 |
Adobe Reader DC JPEG2000 Out-Of-Bounds Read Information DIsclosure Vulnerability |
|||
ZDI-CAN-3724 |
Adobe |
CVE-2016-6940 |
4.3 |
2016-10-11 |
Adobe Reader DC PRC Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3961 |
Adobe |
CVE-2016-6969 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing sort Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3939 |
Adobe |
CVE-2016-6973 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing sort Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3816 |
Adobe |
CVE-2016-6971 |
6.8 |
2016-10-11 |
Adobe Acrobat Pro DC XObject stream Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3926 |
Adobe |
CVE-2016-6953 |
6.8 |
2016-10-11 |
Acrobat Reader DC XFA FormSubform Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3921 |
Adobe |
CVE-2016-6952 |
6.8 |
2016-10-11 |
Acrobat Reader DC XFA CPDField Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3925 |
Adobe |
CVE-2016-6951 |
6.8 |
2016-10-11 |
Acrobat Reader DC XFA template Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3927 |
Adobe |
CVE-2016-6950 |
4.3 |
2016-10-11 |
Acrobat Reader DC XFA exclGroup Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3850 |
Adobe |
CVE-2016-6988 |
6.8 |
2016-10-11 |
Adobe Reader DC XFA AFDriver Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3846 |
Adobe |
CVE-2016-6947 |
6.8 |
2016-10-11 |
Adobe Reader DC XFA forms Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3845 |
Adobe |
CVE-2016-6946 |
6.8 |
2016-10-11 |
Adobe Reader DC XFA maxChars Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3753 |
Adobe |
CVE-2016-6942 |
6.8 |
2016-10-11 |
Adobe Reader DC XFA Uninitialized Pointer Remote Code Execution Vulnerability |
|||
ZDI-CAN-3968 |
Adobe |
CVE-2016-6968 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing key Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3969 |
Adobe |
CVE-2016-6967 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing variable Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3942 |
Adobe |
CVE-2016-6966 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing for-each Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3962 |
Adobe |
CVE-2016-6965 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing number Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3964 |
Adobe |
CVE-2016-6964 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing for-each Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3966 |
Adobe |
CVE-2016-6963 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing apply-templates Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3967 |
Adobe |
CVE-2016-6962 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing choose Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3965 |
Adobe |
CVE-2016-6961 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing copy-of Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3963 |
Adobe |
CVE-2016-6979 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing if Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3945 |
Adobe |
CVE-2016-6977 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing choose Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3947 |
Adobe |
CVE-2016-6976 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing variable Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3941 |
Adobe |
CVE-2016-6974 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing if Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3944 |
Adobe |
CVE-2016-6960 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing apply-templates Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3940 |
Adobe |
CVE-2016-6959 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing number Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3938 |
Adobe |
CVE-2016-6978 |
6.8 |
2016-10-11 |
Adobe Reader DC XSLT Parsing value-of Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3851 |
Adobe |
CVE-2016-6945 |
6.8 |
2016-10-11 |
Adobe Acrobat Pro DC SaveAs Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3825 |
Adobe |
CVE-2016-6944 |
6.8 |
2016-10-11 |
Adobe Acrobat Reader DC Search Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3928 |
Microsoft |
CVE-2016-3386 |
7.5 |
2016-10-11 |
Microsoft Windows JavaScript Spread Operator Stack-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3922 |
Microsoft |
CVE-2016-3384 |
5.1 |
2016-10-11 |
Microsoft Internet Explorer s_DestroyMetaCallback Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3857 |
Microsoft |
CVE-2016-3383 |
6.8 |
2016-10-11 |
Microsoft Internet Explorer Table Layout Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3866 |
Microsoft |
CVE-2016-3382 |
6.8 |
2016-10-11 |
Microsoft Edge JavaScript eval Function Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3714 |
VMware |
CVE-2016-7087 |
5.8 |
2016-10-11 |
VMware Horizon View loggerBean Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3827 |
Trend Micro |
6.9 |
2016-10-06 |
Trend Micro Maximum Security tmnciesc Kernel Driver Memory Corruption Privilege Escalation Vulnerability |
||||
ZDI-CAN-3843 |
Trend Micro |
6.9 |
2016-10-06 |
Trend Micro Maximum Security tmnciesc driver Untrusted Pointer Dereference Privilege Escalation Vulnerability |
||||
ZDI-CAN-3979 |
Adobe |
CVE-2016-6980 |
4.3 |
2016-09-27 |
Adobe Digital Editions ePub Font Parsing Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3852 |
Apple |
CVE-2016-4768 |
6.8 |
2016-09-27 |
Apple Safari HTMLVideoElement Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3625 |
Google |
6.8 |
2016-09-21 |
(0Day) Google Chrome Protocol Handler Logic Error Restrictions Bypass Vulnerability |
||||
ZDI-CAN-3586 |
Fatek Automation |
6.8 |
2016-09-21 |
(0Day) Fatek Automation PM Designer Heap Memory Corruption Remote Code Execution Vulnerability |
||||
ZDI-CAN-3624 |
Google |
6.8 |
2016-09-21 |
Google Chrome Logic Error Safe Browsing Bypass Vulnerability |
||||
ZDI-CAN-3728 |
Hewlett Packard Enterprise |
CVE-2016-4385 |
7.5 |
2016-09-21 |
Hewlett Packard Enterprise Network Automation RMI Registry Deserialization of Untrusted Data Remote Code Execution Vulnerability |
|||
ZDI-CAN-3814 |
Apple |
CVE-2016-4727 |
6.9 |
2016-09-20 |
Apple OS X IOThunderboltFamily Uninitialized Memory Privilege Escalation Vulnerability |
|||
ZDI-CAN-3822 |
Apple |
CVE-2016-4697 |
6.9 |
2016-09-20 |
Apple OS X AppleHSSPIHIDDriver Buffer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3715 |
Apple |
CVE-2016-4700 |
6.9 |
2016-09-20 |
Apple OS X AppleUpstreamUserClient Out-Of-Bounds Access Privilege Escalation Vulnerability |
|||
ZDI-CAN-3716 |
Apple |
CVE-2016-4699 |
6.9 |
2016-09-20 |
Apple OS X AudioAUUC Integer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3793 |
Rockwell Automation |
CVE-2016-5814 |
6.8 |
2016-09-19 |
Rockwell Automation RSLogix Micro Starter Lite Project File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3976 |
AlienVault |
10.0 |
2016-09-19 |
AlienVault Unified Security Management Remote Authentication Bypass Vulnerability |
||||
ZDI-CAN-3848 |
Adobe |
CVE-2016-4276 |
5.1 |
2016-09-16 |
Adobe Flash SWF Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3862 |
Adobe |
CVE-2016-4279 |
6.8 |
2016-09-16 |
Adobe Flash TextFormat Memory Corruption Remote Code Execution Vulnerability |
|||
ZDI-CAN-3932 |
Microsoft |
CVE-2016-3377 |
6.8 |
2016-09-16 |
Microsoft Windows JavaScript map Method Heap-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3874 |
Microsoft |
CVE-2016-3247 |
2.6 |
2016-09-16 |
Microsoft Edge CSS white-space Property Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3821 |
Microsoft |
CVE-2016-3376 |
4.3 |
2016-09-16 |
Microsoft Windows MSXML IDispatch Use-After-Free Information Disclosure Vulnerability |
|||
ZDI-CAN-3792 |
Microsoft |
CVE-2016-3295 |
6.8 |
2016-09-16 |
Microsoft Edge CTreePos Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3788 |
Microsoft |
CVE-2016-3292 |
6.9 |
2016-09-16 |
Microsoft Internet Explorer Add-on Installer Enhanced Protected Mode Sandbox Escape Vulnerability |
|||
ZDI-CAN-3782 |
Microsoft |
CVE-2016-3294 |
6.8 |
2016-09-16 |
Microsoft Edge TextNode Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3781 |
Microsoft |
CVE-2016-3365 |
6.8 |
2016-09-16 |
Microsoft Office Excel Art Data Memory Corruption Remote Code Execution Vulnerability |
|||
ZDI-CAN-3756 |
Microsoft |
CVE-2016-3354 |
4.9 |
2016-09-16 |
Microsoft Windows NtGdiQueryFonts Information Disclosure Vulnerability |
|||
ZDI-CAN-3570 |
Microsoft |
CVE-2016-3353 |
6.8 |
2016-09-16 |
Microsoft Windows .URL File Remote Code Execution Vulnerability |
|||
ZDI-CAN-3742 |
AlienVault |
10.0 |
2016-09-08 |
AlienVault Unified Security Management get_directive_kdb directive_id SQL Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3704 |
AlienVault |
7.5 |
2016-09-08 |
AlienVault Unified Security Management Multiple PHP Scripts Remote Code Execution Vulnerabilities |
||||
ZDI-CAN-3749 |
Bitdefender |
6.6 |
2016-09-01 |
Bitdefender Antivirus Plus bdfwfpf Integer Overflow Privilege Escalation Vulnerability |
||||
ZDI-CAN-3829 |
Bitdefender |
6.9 |
2016-09-01 |
Bitdefender Antivirus Plus avc3 Kernel Driver Untrusted Pointer Dereference Privilege Escalation Vulnerability |
||||
ZDI-CAN-3840 |
Google |
CVE-2016-5161 |
4.3 |
2016-09-01 |
Google Chrome StylePropertySerializer Type Confusion Information Disclosure Vulnerability |
|||
ZDI-CAN-3690 |
Joyent |
4.7 |
2016-08-29 |
Joyent SmartOS dtrace Information Disclosure Vulnerability |
||||
ZDI-CAN-3689 |
Joyent |
6.9 |
2016-08-29 |
Joyent SmartOS dtrace Zone Escape Privilege Escalation Vulnerability |
||||
ZDI-CAN-3688 |
Joyent |
4.7 |
2016-08-29 |
Joyent SmartOS dtrace Information Disclosure Vulnerability |
||||
ZDI-CAN-3596 |
Apple |
CVE-2016-1820 |
6.9 |
2016-08-29 |
Apple OS X AppleHDA Buffer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3598 |
Apple |
CVE-2016-4648 |
6.9 |
2016-08-29 |
Apple OS X DspFuncLib Use-After-Free Privilege Escalation Vulnerability |
|||
ZDI-CAN-3558 |
Apple |
CVE-2016-1808 |
6.9 |
2016-08-29 |
Apple OS X IOHDIXController Untrusted Pointer Dereference Privilege Escalation Vulnerability |
|||
ZDI-CAN-3554 |
Apple |
CVE-2016-4650 |
6.9 |
2016-08-29 |
Apple OS X IOHIDFamily Heap Buffer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3817 |
Adobe |
CVE-2016-4270 |
4.3 |
2016-08-24 |
Adobe Reader DC Font stream Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3789 |
Adobe |
CVE-2016-4268 |
4.3 |
2016-08-24 |
Adobe Reader DC Font stream Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3830 |
Adobe |
CVE-2016-4269 |
4.3 |
2016-08-24 |
Adobe Reader DC FlateDecode Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3841 |
Adobe |
CVE-2016-4267 |
4.3 |
2016-08-24 |
Adobe Reader DC FlateDecode Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3835 |
Adobe |
CVE-2016-4266 |
4.3 |
2016-08-24 |
Adobe Reader DC FlateDecode Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3839 |
Adobe |
CVE-2016-4265 |
4.3 |
2016-08-24 |
Adobe Reader DC FlateDecode Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3761 |
AVG |
6.9 |
2016-08-19 |
AVG Internet Security avgtdix.sys Kernel Driver Untrusted Pointer Dereference Privilege Escalation Vulnerability |
||||
ZDI-CAN-3674 |
Apple |
CVE-2016-4622 |
7.5 |
2016-08-18 |
Apple Safari Array.splice Out-Of-Bounds Access Remote Code Execuction Vulnerability |
|||
ZDI-CAN-3673 |
Apple |
CVE-2016-4622 |
7.5 |
2016-08-18 |
Apple Safari Array.slice Out-Of-Bounds Access Remote Code Execuction Vulnerability |
|||
ZDI-CAN-3733 |
AVG |
6.6 |
2016-08-18 |
AVG Internet Security avgtdix.sys Kernel Memory Corruption Privilege Escalation Vulnerability |
||||
ZDI-CAN-3732 |
AVG |
6.8 |
2016-08-18 |
AVG Internet Security avgidsdriverx.sys Untrusted Pointer Dereference Privilege Escalation Vulnerability |
||||
ZDI-CAN-3549 |
Samsung |
10.0 |
2016-08-18 |
Samsung Security Manager ActiveMQ Broker Service MOVE Method Remote Code Execution Vulnerability |
||||
ZDI-CAN-3550 |
Samsung |
10.0 |
2016-08-18 |
Samsung Security Manager ActiveMQ Broker Service PUT Method Remote Code Execution Vulnerability |
||||
ZDI-CAN-3548 |
Samsung |
8.5 |
2016-08-18 |
Samsung Security Manager ActiveMQ Broker Service DELETE Method Denial of Service Vulnerability |
||||
ZDI-CAN-3500 |
ABB |
6.8 |
2016-08-17 |
(0Day) ABB DataManagerPro File Permissions Privilege Escalation Vulnerability |
||||
ZDI-CAN-3662 |
Siemens |
CVE-2016-6486 |
7.2 |
2016-08-17 |
Siemens SINEMA Server Insecure File Permissions Privilege Escalation Vulnerability |
|||
ZDI-CAN-3542 |
PCRE |
CVE-2016-3191 |
5.1 |
2016-08-17 |
PCRE Regular Expression Compilation Stack Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3918 |
Foxit |
4.3 |
2016-08-10 |
Foxit Reader BMP Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3903 |
Foxit |
6.8 |
2016-08-10 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3902 |
Foxit |
4.3 |
2016-08-10 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3901 |
Foxit |
4.3 |
2016-08-10 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3900 |
Foxit |
6.8 |
2016-08-10 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3899 |
Foxit |
6.8 |
2016-08-10 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3898 |
Foxit |
6.8 |
2016-08-10 |
Foxit Reader JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3929 |
Foxit |
6.8 |
2016-08-10 |
Foxit Reader ConvertToPDF TIFF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3919 |
Foxit |
6.8 |
2016-08-10 |
Foxit Reader TIFF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3891 |
Foxit |
6.8 |
2016-08-10 |
Foxit Reader ConvertToPDF TIFF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3701 |
Joyent |
6.9 |
2016-08-10 |
Joyent Smart Data Center Docker API Zone Escape Privilege Escalation Vulnerability |
||||
ZDI-CAN-3531 |
Joyent |
4.7 |
2016-08-10 |
Joyent SmartOS dtrace Information Disclosure Vulnerability |
||||
ZDI-CAN-3532 |
Joyent |
6.9 |
2016-08-10 |
Joyent SmartOS dtrace Zone Escape Privilege Escalation Vulnerability |
||||
ZDI-CAN-3757 |
Moxa |
CVE-2016-5792 |
9.3 |
2016-08-10 |
Moxa SoftCMS getcaminfo SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3709 |
Trend Micro |
4.3 |
2016-08-09 |
Trend Micro Control Manager task_controller Information Disclosure Vulnerability |
||||
ZDI-CAN-3641 |
Trend Micro |
4.0 |
2016-08-09 |
Trend Micro Control Manager AdHocQuery_SelectView XPATH Injection Information Disclosure Vulnerability |
||||
ZDI-CAN-3640 |
Trend Micro |
4.0 |
2016-08-09 |
Trend Micro Control Manager AdHocQuery_SelectView XPATH Injection Information Disclosure Vulnerability |
||||
ZDI-CAN-3639 |
Trend Micro |
4.0 |
2016-08-09 |
Trend Micro Control Manager DeploymentPlan_Event_Handler External Entity Processing Information Disclosure Vulnerability |
||||
ZDI-CAN-3638 |
Trend Micro |
4.0 |
2016-08-09 |
Trend Micro Control Manager ProductTree External Entity Processing Information Disclosure Vulnerability |
||||
ZDI-CAN-3637 |
Trend Micro |
4.0 |
2016-08-09 |
Trend Micro Control Manager TreeUserControl_process_tree_event External Entity Processing Information Disclosure Vulnerability |
||||
ZDI-CAN-3636 |
Trend Micro |
6.5 |
2016-08-09 |
Trend Micro Control Manager AdHocQuery_CustomProfiles SQL Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3635 |
Trend Micro |
6.5 |
2016-08-09 |
Trend Micro Control Manager cgiCMUIDispatcher SQL Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3777 |
Microsoft |
CVE-2016-3289 |
6.8 |
2016-08-09 |
Microsoft Internet Explorer CAnchor Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3767 |
Microsoft |
CVE-2016-3308 |
6.9 |
2016-08-09 |
Microsoft Windows xxxInsertMenuItem Out-Of-Bounds Access Privilege Escalation Vulnerability |
|||
ZDI-CAN-3751 |
Microsoft |
CVE-2016-3326 |
4.3 |
2016-08-09 |
Microsoft Edge GetRefererUrl Use-After-Free Information Disclosure Vulnerability |
|||
ZDI-CAN-3743 |
Microsoft |
CVE-2016-3318 |
6.8 |
2016-08-09 |
Microsoft Office Word RTF JPEG Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3741 |
Microsoft |
CVE-2016-3322 |
6.8 |
2016-08-09 |
Microsoft Internet Explorer CACPCache Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3702 |
Microsoft |
CVE-2016-3309 |
6.9 |
2016-08-09 |
Microsoft Windows win32k RGNOBJ Integer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3695 |
Oracle |
CVE-2016-3587 |
6.8 |
2016-07-21 |
Oracle Java MethodHandle Remote Code Execution Vulnerability |
|||
ZDI-CAN-3720 |
Oracle |
CVE-2016-3606 |
6.8 |
2016-07-21 |
Oracle Java Uninitialized Object Generation Remote Code Execution Vulnerability |
|||
ZDI-CAN-3719 |
Oracle |
CVE-2016-3598 |
6.8 |
2016-07-21 |
Oracle Java MethodHandles dropArguments Remote Code Execution Vulnerability |
|||
ZDI-CAN-3787 |
Oracle |
CVE-2016-3610 |
6.8 |
2016-07-21 |
Oracle Java MethodHandles filterReturnValue Remote Code Execution Vulnerability |
|||
ZDI-CAN-3511 |
Oracle |
CVE-2016-3499 |
7.5 |
2016-07-21 |
Oracle WebLogic PartItem Arbitrary File Upload Remote Code Execution Vulnerability |
|||
ZDI-CAN-3497 |
Oracle |
CVE-2016-3510 |
7.5 |
2016-07-21 |
Oracle WebLogic JBoss Interceptors Deserialization of Untrusted Data Remote Code Execution Vulnerability |
|||
ZDI-CAN-3510 |
Oracle |
CVE-2016-3607 |
7.5 |
2016-07-21 |
Oracle Glassfish PartItem Arbitrary File Upload Remote Code Execution Vulnerability |
|||
ZDI-CAN-3588 |
Oracle |
CVE-2016-3586 |
7.5 |
2016-07-21 |
Oracle WebLogic JtaTransactionManager Deserialization of Untrusted Data Remote Code Execution Vulnerability |
|||
ZDI-CAN-3581 |
Schneider Electric |
CVE-2016-4529 |
7.5 |
2016-07-20 |
Schneider Electric SoMachine HVAC AxEditGrid ActiveX Control SetDataIntf Remote Code Execution Vulnerability |
|||
ZDI-CAN-3718 |
Apple |
CVE-2016-4646 |
4.3 |
2016-07-20 |
Apple OS X ACMP4AACBaseDecoder Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3694 |
Apple |
CVE-2016-4647 |
6.9 |
2016-07-20 |
Apple OS X DspFuncLib Use-After-Free Privilege Escalation Vulnerability |
|||
ZDI-CAN-3693 |
Apple |
CVE-2016-4647 |
6.9 |
2016-07-20 |
Apple OS X DspFuncLib Use-After-Free Privilege Escalation Vulnerability |
|||
ZDI-CAN-3654 |
Apple |
CVE-2016-4653 |
6.9 |
2016-07-20 |
Apple OS X IOPMrootDomain Memory Corruption Privilege Escalation Vulnerability |
|||
ZDI-CAN-3769 |
Apple |
CVE-2016-4640 |
4.4 |
2016-07-20 |
Apple OS X WindowServer Heap-Buffer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3687 |
Apple |
CVE-2016-4633 |
6.9 |
2016-07-20 |
Apple OS X AppleIntelBDWGraphics Memory Corruption Privilege Escalation Vulnerability |
|||
ZDI-CAN-3768 |
Apple |
CVE-2016-4641 |
4.4 |
2016-07-20 |
Apple OS X WindowServer Type Confusion Privilege Escalation Vulnerability |
|||
ZDI-CAN-3771 |
Apple |
CVE-2016-4652 |
3.3 |
2016-07-20 |
Apple OS X WindowServer _XFlushRegion Out-Of-Bounds Read Privilege Escalation Vulnerability |
|||
ZDI-CAN-3776 |
Apple |
CVE-2016-4639 |
4.4 |
2016-07-20 |
Apple OS X WindowServer Memory Corruption Privilege Escalation Vulnerability |
|||
ZDI-CAN-3562 |
Foxit |
4.3 |
2016-07-18 |
Foxit Reader ConvertToPDF JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3746 |
Advantech |
CVE-2016-5810 |
6.8 |
2016-07-18 |
Advantech WebAccess upAdminPg Information Disclosure Vulnerability |
|||
ZDI-CAN-3820 |
Adobe |
CVE-2016-4224 |
6.8 |
2016-07-12 |
Adobe Flash DeleteRangeTimelineOperation Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3819 |
Adobe |
CVE-2016-4225 |
6.8 |
2016-07-12 |
Adobe Flash AdBreakPlacement Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3744 |
Adobe |
CVE-2016-4174 |
6.8 |
2016-07-12 |
Adobe Flash StyleSheet Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3780 |
Adobe |
CVE-2016-4222 |
6.8 |
2016-07-12 |
Adobe Flash PrintJob printAsBitmap Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3818 |
Adobe |
CVE-2016-4223 |
6.8 |
2016-07-12 |
Adobe Flash AdTimelineItem Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3656 |
Adobe |
CVE-2016-4191 |
4.3 |
2016-07-12 |
Adobe Reader DC JPEG2000 Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3731 |
Adobe |
CVE-2016-4198 |
6.8 |
2016-07-12 |
Adobe Reader DC XSLT value-of Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3805 |
Adobe |
CVE-2016-4251 |
4.3 |
2016-07-12 |
Adobe Reader DC FlateDecode Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3663 |
Adobe |
CVE-2016-4255 |
6.8 |
2016-07-12 |
Adobe Reader DC FlateDecode Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3737 |
Adobe |
CVE-2016-4200 |
6.8 |
2016-07-12 |
Adobe Reader DC copy-of XSLT Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3736 |
Adobe |
CVE-2016-4195 |
6.8 |
2016-07-12 |
Adobe Reader DC choose XSLT Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3738 |
Adobe |
CVE-2016-4199 |
6.8 |
2016-07-12 |
Adobe Reader DC for-each XSLT Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3735 |
Adobe |
CVE-2016-4196 |
6.8 |
2016-07-12 |
Adobe Reader DC if XSLT Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3734 |
Adobe |
CVE-2016-4197 |
6.8 |
2016-07-12 |
Adobe Reader DC apply-templates XSLT Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3762 |
Adobe |
CVE-2016-4202 |
6.8 |
2016-07-12 |
Adobe Reader DC number XSLT Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3750 |
Microsoft |
CVE-2016-3271 |
5.0 |
2016-07-12 |
Microsoft Chakra ArrayBuffer.transfer Uninitialized Buffer Information Leak Vulnerability |
|||
ZDI-CAN-3747 |
Microsoft |
CVE-2016-3264 |
6.8 |
2016-07-12 |
Microsoft Edge CGeolocationManager Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3691 |
Microsoft |
CVE-2016-3246 |
5.1 |
2016-07-12 |
Microsoft Edge InjectHtmlStream Memory Corruption Remote Code Execution Vulnerability |
|||
ZDI-CAN-3668 |
Microsoft |
CVE-2016-3242 |
6.8 |
2016-07-12 |
Microsoft Internet Explorer CTableLayout AddRow Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3667 |
Microsoft |
CVE-2016-3241 |
6.8 |
2016-07-12 |
Microsoft Internet Explorer CTableRowCellsCollectionCacheItem Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3675 |
Eaton |
CVE-2016-4509 |
6.8 |
2016-07-07 |
Eaton ELCSoft Heap Memory Corruption Remote Code Execution Vulnerability |
|||
ZDI-CAN-3697 |
Eaton |
CVE-2016-4512 |
7.5 |
2017-08-07 |
Eaton ELCSoft ELCSimulator Stack Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3717 |
Novell |
CVE-2016-1605 |
6.8 |
2016-07-07 |
Novell NetIQ Sentinel Server ReportViewServlet fileName Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3575 |
Trihedral Engineering Ltd |
CVE-2016-4523 |
7.5 |
2016-07-01 |
Trihedral VTScada Path Out-Of-Bounds Indexing Remote Code Execution Vulnerability |
|||
ZDI-CAN-3512 |
Trihedral Engineering Ltd |
CVE-2016-4510 |
5.0 |
2016-07-01 |
Trihedral VTScada Filter Bypass Information Disclosure Vulnerability |
|||
ZDI-CAN-3513 |
Trihedral Engineering Ltd |
CVE-2016-4532 |
5.0 |
2016-07-01 |
Trihedral VTScada Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3815 |
Foxit |
4.3 |
2016-06-29 |
Foxit Reader ConvertToPDF BMP Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3807 |
Foxit |
6.8 |
2016-06-29 |
Foxit Reader ConvertToPDF BMP Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3806 |
Foxit |
6.8 |
2016-06-29 |
Foxit Reader ConvertToPDF GIF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3763 |
Foxit |
4.3 |
2016-06-29 |
Foxit Reader JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3739 |
Foxit |
4.3 |
2016-06-29 |
Foxit Reader JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-3698 |
Foxit |
6.8 |
2016-06-29 |
Foxit Reader ConvertToPDF TIFF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
||||
ZDI-CAN-3700 |
Foxit |
6.8 |
2016-06-29 |
Foxit Reader exportData Restrictions Bypass Remote Code Execution Vulnerability |
||||
ZDI-CAN-3659 |
Foxit |
4.3 |
2016-06-29 |
Foxit Reader Safe Mode Bypass Information Disclosure Vulnerability |
||||
ZDI-CAN-3671 |
Foxit |
6.8 |
2016-06-29 |
Foxit Reader FlateDecode Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3686 |
Foxit |
6.8 |
2016-06-29 |
Foxit Reader Pattern Uninitialized Pointer Remote Code Execution Vulnerability |
||||
ZDI-CAN-3680 |
Foxit |
6.8 |
2016-06-29 |
Foxit Reader FlateDecode Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3657 |
Foxit |
6.8 |
2016-06-29 |
Foxit Reader GoToR action Stack Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3332 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio PLC Type Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3340 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio CommSet Port Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3341 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio Address Name Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3350 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio ScreenInfo ScrnName Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3351 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio String Content Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3349 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio BaseSet EnterTime Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3348 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio BaseSet ScrIDWordAddr Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3347 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio BaseSet PowerEnterTime Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3342 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio ScreenInfo ScrnFile Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3343 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio BaseSet HMINAME Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3344 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio BaseSet BgOnOffBitAddr Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3345 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio BaseSet CurScrIdAddr Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3346 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio HmiSet Style Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3445 |
WECON |
7.2 |
2016-06-29 |
(0Day) WECON LeviStudio HmiSet Type Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3467 |
Oracle |
CVE-2016-3443 |
6.8 |
2016-06-29 |
Oracle Java Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3713 |
Unitronics |
CVE-2016-4519 |
6.8 |
2016-06-24 |
Unitronics VisiLogic OPLC IDE vlp File Parsing Stack Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3398 |
SolarWinds |
10.0 |
2016-06-22 |
SolarWinds Storage Resource Monitor Profiler Server RulesMetaData addNewRule SQL Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3567 |
Trend Micro |
CVE-2016-5840 |
9.0 |
2016-06-22 |
Trend Micro Deep Discovery hotfix_upload.cgi filename Remote Code Execution Vulnerability |
|||
ZDI-CAN-3622 |
Microsoft |
CVE-2016-3231 |
6.9 |
2016-06-22 |
(Pwn2Own) Microsoft Windows Diagnostics Hub Standard Collector Directory Traversal Privilege Escalation Vulnerability |
|||
ZDI-CAN-3665 |
Microsoft |
CVE-2016-3222 |
6.8 |
2016-06-22 |
Microsoft Edge CBaseScriptable PrivateQueryInterface Uninitialized Memory Remote Code Execution Vulnerability |
|||
ZDI-CAN-3810 |
Microsoft |
CVE-2016-3215 |
4.3 |
2016-06-22 |
Microsoft Windows PDF Library JPEG2000 COD Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3811 |
Microsoft |
CVE-2016-3203 |
4.3 |
2016-06-22 |
Microsoft Windows PDF Library AES Encryption Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3651 |
Microsoft |
CVE-2016-3199 |
6.8 |
2016-06-16 |
Microsoft Edge JavaScript map Method Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3650 |
Microsoft |
CVE-2016-3199 |
6.8 |
2016-06-16 |
Microsoft Edge JavaScript filter Method Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3539 |
Microsoft |
CVE-2016-3211 |
6.9 |
2016-06-16 |
Microsoft Internet Explorer PerformDoDragDrop Protected Mode Sandbox Escape Vulnerability |
|||
ZDI-CAN-3666 |
Microsoft |
CVE-2016-0200 |
6.8 |
2016-06-15 |
Microsoft Internet Explorer s_DestroyLinkCallback Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3555 |
Hewlett Packard Enterprise |
CVE-2016-4360 |
8.5 |
2016-06-03 |
Hewlett Packard Enterprise LoadRunner Virtual Table Server import_csv Denial of Service Vulnerability |
|||
ZDI-CAN-3516 |
Hewlett Packard Enterprise |
CVE-2016-4359 |
7.5 |
2016-06-03 |
Hewlett Packard Enterprise LoadRunner Shared Memory Name Construction Remote Code Execution Vulnerability |
|||
ZDI-CAN-3707 |
Eclipse |
CVE-2016-4800 |
7.5 |
2016-06-03 |
Eclipse Jetty Protected Resource Bypass Vulnerability |
|||
ZDI-CAN-3605 |
Apple |
CVE-2016-1796 |
6.8 |
2016-05-27 |
(Pwn2Own) Apple OS X libATSServer Heap-based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3606 |
Apple |
CVE-2016-1797 |
4.6 |
2016-05-27 |
(Pwn2Own) Apple OS X fontd Sandbox Escape Vulnerability |
|||
ZDI-CAN-3699 |
Adobe |
CVE-2016-1094 |
6.8 |
2016-05-26 |
Adobe Reader DC FlateDecode Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3611 |
Apple |
CVE-2016-1804 |
4.4 |
2016-05-26 |
(Pwn2Own) Apple OS X WindowServer Use-After-Free Privilege Escalation Vulnerability |
|||
ZDI-CAN-3600 |
Apache |
CVE-2016-3088 |
7.5 |
2016-05-24 |
Apache ActiveMQ MOVE Method Remote Code Execution Vulnerability |
|||
ZDI-CAN-3696 |
Apache |
CVE-2016-3088 |
7.5 |
2016-05-24 |
Apache ActiveMQ Fileserver File Upload Remote Code Execution Vulnerability |
|||
ZDI-CAN-3660 |
Microsoft |
CVE-2016-0186 |
6.8 |
2016-05-24 |
Microsoft Edge JavaScript unshift Method Uninitialized Memory Remote Code Execution Vulnerability |
|||
ZDI-CAN-3123 |
ActivePDF |
6.8 |
2016-05-24 |
(0Day) ActivePDF Toolkit ImageToPDF IAT Overwrite Remote Code Execution Vulnerability |
||||
ZDI-CAN-3544 |
BitTorrent |
6.8 |
2016-05-20 |
BitTorrent API Cross Site Scripting Remote Code Execution Vulnerability |
||||
ZDI-CAN-3610 |
Apple |
CVE-2016-1859 |
6.8 |
2016-05-20 |
(Pwn2Own) Apple Safari GraphicsContext Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3355 |
Trend Micro |
7.5 |
2016-05-20 |
Trend Micro InterScan Web Security Virtual Appliance domains Remote Code Execution Vulnerability |
||||
ZDI-CAN-3514 |
Trend Micro |
7.5 |
2016-05-20 |
Trend Micro InterScan Web Security Virtual Appliance wmi_domain_controllers Remote Code Execution Vulnerability |
||||
ZDI-CAN-3338 |
Trend Micro |
7.5 |
2016-05-20 |
Trend Micro InterScan Web Security Virtual Appliance testConfiguration Remote Code Execution Vulnerability |
||||
ZDI-CAN-3566 |
Trend Micro |
9.0 |
2016-05-20 |
Trend Micro InterScan Web Security ManagePatches filename Remote Code Execution Vulnerability |
||||
ZDI-CAN-3603 |
Apple |
CVE-2016-1820 |
6.9 |
2016-05-19 |
Apple OS X IOAudioFamily Buffer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3607 |
Apple |
CVE-2016-1806 |
7.2 |
2016-05-19 |
(Pwn2Own) Apple OS X SubmitDiagInfo Arbitrary Directory Creation Privilege Escalation Vulnerability |
|||
ZDI-CAN-3620 |
Apple |
CVE-2016-1815 |
6.9 |
2016-05-19 |
(Pwn2Own) Apple OS X IntelAccelerator Out-Of-Bounds Indexing Privilege Escalation Vulnerability |
|||
ZDI-CAN-3564 |
Apple |
CVE-2016-1826 |
6.9 |
2016-05-19 |
Apple OS X DTrace Privilege Escalation Vulnerability |
|||
ZDI-CAN-3619 |
Apple |
CVE-2016-1857 |
6.8 |
2016-05-19 |
(Pwn2Own) Apple Safari ArrayStorage DFG Optimization Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3604 |
Apple |
CVE-2016-1856 |
6.8 |
2016-05-19 |
(Pwn2Own) Apple Safari TextTrack Object Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3576 |
Apple |
CVE-2016-1854 |
6.8 |
2016-05-19 |
Apple Safari DataCue Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3536 |
Apple |
CVE-2016-1817 |
6.9 |
2016-05-19 |
Apple OS X IOAcceleratorFamily2 Buffer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3565 |
Apple |
CVE-2016-1803 |
6.9 |
2016-05-19 |
Apple OS X IOKit CoreCaptureResponder Privilege Escalation Vulnerability |
|||
ZDI-CAN-3658 |
Microsoft |
CVE-2016-0186 |
6.8 |
2016-05-18 |
Microsoft Edge JavaScript shift Method Uninitialized Memory Remote Code Execution Vulnerability |
|||
ZDI-CAN-3538 |
Panasonic |
CVE-2016-4496 |
4.4 |
2016-05-11 |
Panasonic FPWIN Pro SCTASK Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3502 |
Panasonic |
CVE-2016-4496 |
4.4 |
2016-05-11 |
Panasonic FPWIN Pro SelectFCS Array Indexing Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3503 |
Panasonic |
CVE-2016-4496 |
4.4 |
2016-05-11 |
Panasonic FPWIN Pro ReleaseBuffer Integer Overflow Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3504 |
Panasonic |
CVE-2016-4497 |
4.4 |
2016-05-11 |
Panasonic FPWIN Pro DeleteAndCreateSysRegDecls_And_SaveSysRegDeclsDatabaseIdsToTheSysRegDeclInfoMap Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3505 |
Panasonic |
CVE-2016-4496 |
4.4 |
2016-05-11 |
Panasonic FPWIN Pro createLoadContent Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3456 |
Panasonic |
CVE-2016-4498 |
4.4 |
2016-05-11 |
Panasonic FPWIN Pro CPlcSetting::Load Uninitialized Pointer Remote Code Execution Vulnerability |
|||
ZDI-CAN-3501 |
Panasonic |
CVE-2016-4499 |
6.8 |
2016-05-11 |
Panasonic FPWIN Pro GetBlock Heap Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3446 |
Panasonic |
CVE-2016-4499 |
6.8 |
2016-05-11 |
Panasonic FPWIN Pro OPNISAMX Heap Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3633 |
Adobe |
CVE-2016-1095 |
4.3 |
2016-05-10 |
Adobe Reader DC JPEG2000 Out-of-Bounds Read Information DIsclosure Vulnerability |
|||
ZDI-CAN-3602 |
Adobe |
CVE-2016-1094 |
6.8 |
2016-05-10 |
Adobe Reader DC FlateDecode Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3571 |
Adobe |
CVE-2016-1080 |
4.3 |
2016-05-10 |
Adobe Acrobat Pro DC ImageConversion TIFF TAGTYPE Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3569 |
Adobe |
CVE-2016-1079 |
4.3 |
2016-05-10 |
Adobe Acrobat Pro DC app.removeToolButton Information Disclosure Vulnerability |
|||
ZDI-CAN-3540 |
Adobe |
CVE-2016-1078 |
4.3 |
2016-05-10 |
Adobe Acrobat Reader DC JPEG2000 ihdr Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3557 |
Adobe |
CVE-2016-1076 |
4.3 |
2016-05-10 |
Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3520 |
Adobe |
CVE-2016-1075 |
6.8 |
2016-05-10 |
Adobe Reader DC XObject Image Parsing Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3522 |
Adobe |
CVE-2016-1074 |
6.8 |
2016-05-10 |
Adobe Reader DC U3D Parsing Out-Of-Bound Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3508 |
Adobe |
CVE-2016-1073 |
6.8 |
2016-05-10 |
Adobe Reader DC XFA Uninitialized Pointer Remote Code Execution Vulnerability |
|||
ZDI-CAN-3507 |
Adobe |
CVE-2016-1072 |
4.3 |
2016-05-10 |
Adobe Reader DC XFA Page Array Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3541 |
Adobe |
CVE-2016-1071 |
4.3 |
2016-05-10 |
Adobe Reader DC U3D Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3534 |
Adobe |
CVE-2016-1070 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC Share For Comments Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3523 |
Adobe |
CVE-2016-1069 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC Calculate field action Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3527 |
Adobe |
CVE-2016-1068 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC Text field Validate action Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3524 |
Adobe |
CVE-2016-1067 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC ComboBox field Format action Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3429 |
Apple |
CVE-2016-1766 |
10.0 |
2016-05-10 |
Apple iOS MDM Profile Signing Bypass |
|||
ZDI-CAN-3519 |
Adobe |
CVE-2016-1066 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC ListBox Selection Change action Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3517 |
Adobe |
CVE-2016-1065 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC FileAttachment point Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3410 |
Adobe |
CVE-2016-1063 |
6.8 |
2016-05-10 |
Adobe Reader DC JPEG2000 Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3491 |
Adobe |
CVE-2016-1062 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC WillClose JavaScript API Restrictions Bypass Remote Code Execution Vulnerability |
|||
ZDI-CAN-3494 |
Adobe |
CVE-2016-1061 |
6.8 |
2016-05-10 |
Adobe Reader DC Global setPersistent Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3483 |
Adobe |
CVE-2016-1060 |
6.8 |
2016-05-10 |
Adobe Reader DC MenuEventHandler Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3485 |
Adobe |
CVE-2016-1059 |
6.8 |
2016-05-10 |
Adobe Reader DC ExtendScript ScriptProxy Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3486 |
Adobe |
CVE-2016-1058 |
6.8 |
2016-05-10 |
Adobe Reader DC ToolEventHandler Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3484 |
Adobe |
CVE-2016-1057 |
6.8 |
2016-05-10 |
Adobe Reader DC ScrollWheelEventHandler Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3482 |
Adobe |
CVE-2016-1056 |
6.8 |
2016-05-10 |
Adobe Reader DC RenderEventHandler Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3477 |
Adobe |
CVE-2016-1055 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC execDialog Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3479 |
Adobe |
CVE-2016-1054 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC WillSave OCG Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3478 |
Adobe |
CVE-2016-1053 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC listbox value Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3476 |
Adobe |
CVE-2016-1052 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC fillColor Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3475 |
Adobe |
CVE-2016-1051 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC WillSave Action Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3474 |
Adobe |
CVE-2016-1050 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC Close Page Action Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3480 |
Adobe |
CVE-2016-1049 |
6.8 |
2016-05-10 |
Adobe Reader DC XFA preOpen Event Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3481 |
Adobe |
CVE-2016-1048 |
6.8 |
2016-05-10 |
Adobe Reader DC XFA Page prePrint Event Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3487 |
Adobe |
CVE-2016-1047 |
6.8 |
2016-05-10 |
Adobe Acrobat Pro DC Signature signatureSetSeed Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3464 |
Adobe |
CVE-2016-1046 |
6.8 |
2016-05-10 |
Adobe Reader DC XFA prePrint Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3451 |
Adobe |
CVE-2016-1045 |
6.8 |
2016-05-10 |
Adobe Reader DC XFAFormInstanceManager Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3424 |
Adobe |
CVE-2016-1038 |
6.8 |
2016-05-10 |
Adobe Acrobat Reader DC CBSharedReviewSecurityDialog Javascript API Restrictions Bypass Vulnerability |
|||
ZDI-CAN-3423 |
Adobe |
CVE-2016-1044 |
6.8 |
2016-05-10 |
Adobe Acrobat Reader DC CBSharedReviewIfOfflineDialog Javascript API Restrictions Bypass Vulnerability |
|||
ZDI-CAN-3426 |
Adobe |
CVE-2016-1039 |
6.8 |
2016-05-10 |
Adobe Acrobat Reader DC CBSharedReviewCloseDialog Javascript API Restrictions Bypass Vulnerability |
|||
ZDI-CAN-3428 |
Adobe |
CVE-2016-1040 |
6.8 |
2016-05-10 |
Adobe Acrobat Reader DC Net.HTTP.runTaskSet Javascript API Restrictions Bypass Vulnerability |
|||
ZDI-CAN-3427 |
Adobe |
CVE-2016-1041 |
6.8 |
2016-05-10 |
Adobe Acrobat Reader DC ANAuthenticateResource Javascript API Restrictions Bypass Vulnerability |
|||
ZDI-CAN-3425 |
Adobe |
CVE-2016-1042 |
6.8 |
2016-05-10 |
Adobe Acrobat Reader DC ANProxyAuthenticateResource Javascript API Restrictions Bypass Vulnerability |
|||
ZDI-CAN-3414 |
Adobe |
CVE-2016-1043 |
6.8 |
2016-05-10 |
Adobe Reader DC XFA FormCalc replace Integer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3365 |
Adobe |
CVE-2016-1117 |
6.8 |
2016-05-10 |
Adobe Acrobat Reader DC app.launchURL Command Execution Remote Code Execution Vulnerability |
|||
ZDI-CAN-3627 |
Microsoft |
CVE-2016-0176 |
6.9 |
2016-05-10 |
(Pwn2Own) Microsoft Windows dxgkrnl Kernel Driver Buffer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3626 |
Microsoft |
CVE-2016-0193 |
6.8 |
2016-05-10 |
(Pwn2Own) Microsoft Edge JavaScript fill Out-Of-Bounds Access Remote Code Execution Vulnerability |
|||
ZDI-CAN-3621 |
Microsoft |
CVE-2016-0191 |
6.8 |
2016-05-10 |
(Pwn2Own) Microsoft Edge JavaScript concat Method Uninitialized Memory Remote Code Execution Vulnerability |
|||
ZDI-CAN-3618 |
Microsoft |
CVE-2016-0175 |
6.9 |
2016-05-10 |
(Pwn2Own) Microsoft Windows PFFOBJ::bDeleteLoadRef Font Use-After-Free Privilege Escalation Vulnerability |
|||
ZDI-CAN-3617 |
Microsoft |
CVE-2016-0174 |
4.9 |
2016-05-10 |
(Pwn2Own) Microsoft Windows NtGdiGetEmbUFI Information Disclosure Vulnerability |
|||
ZDI-CAN-3615 |
Microsoft |
CVE-2016-0173 |
6.6 |
2016-05-10 |
(Pwn2Own) Microsoft Windows win32kfull.sys Surface Object Use-After-Free Privilege Escalation Vulnerability |
|||
ZDI-CAN-3609 |
Microsoft |
CVE-2016-0196 |
6.9 |
2016-05-10 |
(Pwn2Own) Microsoft Windows xxxEndDeferWindowPosEx Window Use-After-Free Privilege Escalation Vulnerability |
|||
ZDI-CAN-3568 |
Microsoft |
CVE-2016-0185 |
6.8 |
2016-05-10 |
Microsoft Windows Media Center .MCL File Remote Code Execution Vulnerability |
|||
ZDI-CAN-3509 |
Microsoft |
CVE-2016-0192 |
5.1 |
2016-05-10 |
Microsoft Internet Explorer AcquireLineBoxBuilderForLayout Null Array Base Remote Code Execution Vulnerability |
|||
ZDI-CAN-3506 |
Microsoft |
CVE-2016-0194 |
4.7 |
2016-05-10 |
Microsoft Internet Explorer Add-on Installer Enhanced Protected Mode Information Disclosure Vulnerability |
|||
ZDI-CAN-3533 |
Joyent |
3.8 |
2016-05-04 |
Joyent SmartOS dtrace Information Disclosure Vulnerability |
||||
ZDI-CAN-3431 |
Adobe |
CVE-2016-1111 |
6.8 |
2016-04-28 |
Adobe Reader DC Graphics State Dictionary Double Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3379 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module XiotechMonitorServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3394 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module WindowsEventLogsServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3396 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module FileActionAssignmentServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3397 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module ScriptServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3399 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module ScriptServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3376 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module BackupMetaData BexDriveUsageSummaryServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3377 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module XiotechMonitorServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3378 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module XiotechMonitorServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3380 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module UserDefinedFieldConfigServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3381 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module UserDefinedFieldConfigServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3382 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module UserDefinedFieldConfigServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3383 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module NbuErrorMessageServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3384 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module HostStorageServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3385 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module QuantumMonitorServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3386 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module DuplicateFilesServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3387 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module HostStorageServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3388 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module HostStorageServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3389 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module BackupAssociationServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3390 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module BackupAssociationServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3391 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module BackupExceptionsServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3392 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module ProcessesServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3393 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module WindowsEventLogsServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3395 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module WindowsEventLogsServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3400 |
SolarWinds |
CVE-2016-4350 |
10.0 |
2016-04-28 |
SolarWinds Storage Resource Monitor Profiler Module ScriptServlet SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3547 |
Trend Micro |
CVE-2016-4351 |
7.5 |
2016-04-28 |
Trend Micro Mail Encryption Gateway SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3354 |
Hewlett Packard Enterprise |
CVE-2016-2007 |
10.0 |
2016-04-27 |
Hewlett Packard Enterprise Data Protector EXEC_SCRIPT Remote Code Execution Vulnerability |
|||
ZDI-CAN-3353 |
Hewlett Packard Enterprise |
CVE-2016-2006 |
10.0 |
2016-04-27 |
Hewlett Packard Enterprise Data Protector EXEC_BAR Domain Remote Code Execution Vulnerability |
|||
ZDI-CAN-3352 |
Hewlett Packard Enterprise |
CVE-2016-2005 |
10.0 |
2016-04-27 |
Hewlett Packard Enterprise Data Protector EXEC_BAR User Name Remote Code Execution Vulnerability |
|||
ZDI-CAN-3417 |
Hewlett Packard Enterprise |
CVE-2016-2002 |
10.0 |
2016-04-15 |
Hewlett Packard Enterprise Vertica validateAdminConfig Remote Command Injection Vulnerability |
|||
ZDI-CAN-3594 |
Google |
CVE-2016-1651 |
4.3 |
2016-04-15 |
Google Chrome Pdfium JPEG2000 Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3402 |
Apple |
6.8 |
2016-04-14 |
(0Day) Apple QuickTime Atom Processing Heap Corruption Remote Code Execution Vulnerability |
||||
ZDI-CAN-3401 |
Apple |
6.8 |
2016-04-14 |
(0Day) Apple QuickTime moov Atom Heap Corruption Remote Code Execution Vulnerability |
||||
ZDI-CAN-3322 |
Ecava |
CVE-2016-2299 |
7.5 |
2016-04-12 |
Ecava IntegraXor Report batch SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3321 |
Ecava |
CVE-2016-2299 |
7.5 |
2016-04-12 |
Ecava IntegraXor Report batchlist SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3320 |
Ecava |
CVE-2016-2299 |
7.5 |
2016-04-12 |
Ecava IntegraXor Report summary SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3326 |
Ecava |
CVE-2016-2299 |
7.5 |
2016-04-12 |
Ecava IntegraXor Report save SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3325 |
Ecava |
CVE-2016-2299 |
7.5 |
2016-04-12 |
Ecava IntegraXor Report summary_opt SQL Injection Remote Code Execution Vulnerability |
|||
ZDI-CAN-3543 |
Adobe |
CVE-2016-1034 |
6.8 |
2016-04-12 |
Adobe Creative Cloud Node.js Remote Code Execution Vulnerability |
|||
ZDI-CAN-3578 |
Microsoft |
CVE-2016-0148 |
7.5 |
2016-04-12 |
Microsoft .NET Framework mscoreei DLL Planting Remote Code Execution Vulnerability |
|||
ZDI-CAN-3529 |
Microsoft |
CVE-2016-0158 |
7.5 |
2016-04-12 |
Microsoft Edge Proxy Object Universal Cross Site Scripting Vulnerability |
|||
ZDI-CAN-3471 |
Microsoft |
CVE-2016-0157 |
6.8 |
2016-04-12 |
Microsoft Edge keyframes Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3422 |
Microsoft |
CVE-2016-0159 |
6.8 |
2016-04-12 |
Microsoft Internet Explorer CTableLayout AddRow Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3404 |
Microsoft |
CVE-2016-0166 |
6.8 |
2016-04-12 |
Microsoft Internet Explorer CMediaEngine Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3366 |
Microsoft |
CVE-2015-6065 |
6.8 |
2016-04-12 |
Microsoft Internet Explorer CAttrValue Double-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3616 |
Adobe |
CVE-2016-1018 |
6.8 |
2016-04-08 |
(Pwn2Own) Adobe Flash JPEG-XR Parsing Stack Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3608 |
Adobe |
CVE-2016-1015 |
6.8 |
2016-04-08 |
(Pwn2Own) Adobe Flash AS2 NetConnection Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3613 |
Adobe |
CVE-2016-1016 |
6.8 |
2016-04-08 |
(Pwn2Own) Adobe Flash AS2 Transform matrix Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3614 |
Adobe |
CVE-2016-1017 |
6.8 |
2016-04-08 |
(Pwn2Own) Adobe Flash AS2 LoadVars decode Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3623 |
Google |
CVE-2016-1649 |
6.8 |
2016-04-08 |
Google Chrome libANGLE glGetUniformfv Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3177 |
HID |
10.0 |
2016-03-28 |
HID VertX/Edge discoveryd Command Injection Remote Code Execution Vulnerability |
||||
ZDI-CAN-3406 |
Foxit |
6.8 |
2016-03-23 |
Foxit Reader Fields Format Action Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3572 |
Foxit |
CVE-2016-4059 |
6.8 |
2016-03-23 |
Foxit Reader FlateDecode Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3551 |
Foxit |
CVE-2016-4063 |
6.8 |
2016-03-23 |
Foxit Reader Revision Number Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3552 |
Foxit |
CVE-2016-4063 |
6.8 |
2016-03-23 |
Foxit Reader Revision Number Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3560 |
Foxit |
CVE-2016-4065 |
4.3 |
2016-03-23 |
Foxit Reader ConvertToPDF BMP Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3559 |
Foxit |
CVE-2016-4065 |
4.3 |
2016-03-23 |
Foxit Reader ConvertToPDF GIF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3561 |
Foxit |
CVE-2016-4065 |
4.3 |
2016-03-23 |
Foxit Reader ConvertToPDF JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
|||
ZDI-CAN-3521 |
Foxit |
CVE-2016-4064 |
6.8 |
2016-03-23 |
Foxit Reader XFA remerge Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3537 |
Foxit |
6.8 |
2016-03-23 |
Foxit PhantomPDF ListBox value Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3518 |
Foxit |
6.8 |
2016-03-23 |
Foxit Reader XFA preOpen Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3528 |
Foxit |
6.8 |
2016-03-23 |
Foxit PhantomPDF Signature field Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3498 |
Foxit |
6.8 |
2016-03-23 |
Foxit Reader XFA Page prePrint Event Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3459 |
IBM |
CVE-2016-0226 |
6.8 |
2016-03-22 |
IBM Informix portmap Service Privilege Escalation Vulnerability |
|||
ZDI-CAN-3458 |
IBM |
CVE-2016-0226 |
6.8 |
2016-03-22 |
IBM Informix nsrexecd Service Privilege Escalation Vulnerability |
|||
ZDI-CAN-3457 |
IBM |
CVE-2016-0226 |
6.8 |
2016-03-22 |
IBM Informix nsrd Service Privilege Escalation Vulnerability |
|||
ZDI-CAN-3315 |
Apple |
CVE-2016-1753 |
6.9 |
2016-03-22 |
Apple OS X IOGeneralMemoryDescriptor Integer Overflow Privilege Escalation Vulnerability |
|||
ZDI-CAN-3530 |
Apple |
CVE-2016-1749 |
6.9 |
2016-03-22 |
Apple OS X IOUSBInterfaceUserClient Out-Of-Bounds Indexing Privilege Escalation Vulnerability |
|||
ZDI-CAN-3453 |
Apple |
CVE-2016-1747 |
6.9 |
2016-03-22 |
Apple OS X IOGraphicsFamily Untrusted Pointer Dereference Privilege Escalation Vulnerability |
|||
ZDI-CAN-3448 |
Apple |
CVE-2016-1775 |
6.8 |
2016-03-22 |
Apple OS X TTF bdat Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3420 |
Apple |
CVE-2016-1761 |
6.8 |
2016-03-22 |
Apple OS X XML Double Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3489 |
Apple |
CVE-2016-1746 |
6.9 |
2016-03-22 |
Apple OS X IOGraphicsFamily Untrusted Pointer Dereference Privilege Escalation Vulnerability |
|||
ZDI-CAN-3460 |
Apple |
CVE-2016-1740 |
6.8 |
2016-03-22 |
Apple OS X PDF Parsing Remote Code Execution Vulnerability |
|||
ZDI-CAN-3449 |
Apple |
CVE-2016-1778 |
6.8 |
2016-03-22 |
Apple Safari Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3574 |
Mozilla |
CVE-2016-1961 |
6.8 |
2016-03-11 |
Mozilla Firefox nsHTMLDocument SetBody Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3545 |
Mozilla |
CVE-2016-1960 |
6.8 |
2016-03-11 |
Mozilla Firefox nsHtml5TreeBuilder Array Indexing Remote Code Execution Vulnerability |
|||
ZDI-CAN-3563 |
Google |
CVE-2016-1645 |
6.8 |
2016-03-10 |
Google Chrome Pdfium JPEG2000 Out-Of-Bounds Write Remote Code Execution Vulnerability |
|||
ZDI-CAN-3589 |
Microsoft |
CVE-2016-0095 |
7.2 |
2016-03-10 |
Microsoft Windows CreateWindowStation Privilege Escalation Vulnerability |
|||
ZDI-CAN-2916 |
Microsoft |
6.4 |
2016-03-10 |
Microsoft Internet Explorer Hidden Browser Window Restriction Bypass Vulnerability |
||||
ZDI-CAN-3469 |
Adobe |
CVE-2016-0994 |
6.8 |
2016-03-10 |
Adobe Flash AS2 actionCallMethod Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3546 |
Adobe |
CVE-2016-0996 |
6.8 |
2016-03-10 |
Adobe Flash setInterval Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3413 |
Adobe |
CVE-2016-1005 |
6.8 |
2016-03-10 |
Adobe Flash MPEG-4 Uninitialized Pointer Remote Code Execution Vulnerability |
|||
ZDI-CAN-3253 |
Adobe |
CVE-2016-1009 |
6.8 |
2016-03-08 |
Adobe Reader Out-Of-Bounds Indexing Remote Code Execution Vulnerability |
|||
ZDI-CAN-3111 |
Adobe |
CVE-2016-1008 |
7.5 |
2016-03-08 |
Adobe Acrobat Pro DC DLL Planting Remote Code Execution Vulnerability |
|||
ZDI-CAN-3022 |
Adobe |
CVE-2016-1007 |
6.8 |
2016-03-08 |
Adobe Reader DC Uninitialized Memory Remote Code Execution Vulnerability |
|||
ZDI-CAN-3492 |
Microsoft |
CVE-2016-0112 |
4.3 |
2016-03-08 |
Microsoft Internet Explorer setAttribute Use-After-Free Information Disclosure Vulnerability |
|||
ZDI-CAN-3499 |
Microsoft |
CVE-2016-0114 |
6.8 |
2016-03-08 |
Microsoft Internet Explorer Input Range Control Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3472 |
Microsoft |
CVE-2016-0113 |
6.8 |
2016-03-08 |
Microsoft Internet Explorer CTravelEntry Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3488 |
Microsoft |
CVE-2016-0112 |
6.8 |
2016-03-08 |
Microsoft Internet Explorer CAttrArray Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3473 |
Microsoft |
CVE-2016-0109 |
5.1 |
2016-03-08 |
Microsoft Internet Explorer SNeighborPosition Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3421 |
Microsoft |
CVE-2016-0107 |
6.8 |
2016-03-08 |
Microsoft Internet Explorer CTableLayout AddRow Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3433 |
Microsoft |
CVE-2016-0091 |
6.8 |
2016-03-08 |
Microsoft Windows OleLoadPicture Bitmap Heap Corruption Remote Code Execution Vulnerability |
|||
ZDI-CAN-3367 |
Microsoft |
CVE-2016-0092 |
6.8 |
2016-03-08 |
Microsoft Windows OleLoadPicture Heap Corruption Remote Code Execution Vulnerability |
|||
ZDI-CAN-3455 |
Microsoft |
CVE-2016-0106 |
4.3 |
2016-03-08 |
Microsoft Internet Explorer CDataset RemoveItem Use-After-Free Information Disclosure Vulnerability |
|||
ZDI-CAN-3419 |
Microsoft |
CVE-2016-0106 |
4.3 |
2016-03-08 |
Microsoft Internet Explorer CDataset SetItem Use-After-Free Information Disclosure Vulnerability |
|||
ZDI-CAN-3411 |
Microsoft |
CVE-2016-0123 |
6.8 |
2016-03-08 |
Microsoft Edge GetLineBoxForReuse Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3408 |
Microsoft |
CVE-2016-0118 |
5.1 |
2016-03-08 |
Microsoft Edge CAsyncTpWorker Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-2975 |
SAP |
CVE-2016-2536 |
6.8 |
2016-02-18 |
(0Day) SAP 3D Visual Enterprise Viewer SketchUp document Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-2979 |
SAP |
CVE-2016-2536 |
6.8 |
2016-02-18 |
(0Day) SAP 3D Visual Enterprise Viewer SketchUp document Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-2976 |
SAP |
CVE-2016-2536 |
6.8 |
2016-02-18 |
(0Day) SAP 3D Visual Enterprise Viewer SketchUp document Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-2974 |
SAP |
CVE-2016-2536 |
6.8 |
2016-02-18 |
(0Day) SAP 3D Visual Enterprise Viewer SketchUp document Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3447 |
Google |
CVE-2016-1628 |
6.8 |
2016-02-18 |
Google Chrome Pdfium JPEG2000 Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3432 |
Google |
CVE-2016-1626 |
6.8 |
2016-02-18 |
Google Chrome Pdfium JPEG2000 Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3364 |
Joyent |
6.9 |
2016-02-18 |
Joyent SmartOS Linux Zone Escape SS Exception Privilege Escalation Vulnerability |
||||
ZDI-CAN-3284 |
Joyent |
6.9 |
2016-02-18 |
Joyent SmartOS dtrace Information Disclosure Vulnerability |
||||
ZDI-CAN-3263 |
Joyent |
6.9 |
2016-02-18 |
Joyent SmartOS dtrace Zone Escape Integer Overflow Privilege Escalation Vulnerability |
||||
ZDI-CAN-3136 |
Novell |
CVE-2015-5970 |
5.0 |
2016-02-11 |
Novell Zenworks ChangePassword XPath Injection Information Disclosure Vulnerability |
|||
ZDI-CAN-3403 |
Microsoft |
CVE-2016-0063 |
6.8 |
2016-02-10 |
Microsoft Internet Explorer DOMImplementation Remote Code Execution Vulnerability |
|||
ZDI-CAN-3368 |
Microsoft |
CVE-2016-0060 |
5.1 |
2016-02-10 |
Microsoft Edge Text Node Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3037 |
SonicWALL |
CVE-2016-2396 |
9.0 |
2016-02-10 |
Dell SonicWALL GMS Virtual Appliance Multiple Remote Code Execution Vulnerabilities |
|||
ZDI-CAN-3137 |
SonicWALL |
CVE-2016-2397 |
10.0 |
2016-02-10 |
Dell SonicWALL GMS Virtual Appliance Deserialization of Untrusted Data Remote Code Execution Vulnerability |
|||
ZDI-CAN-3375 |
Microsoft |
CVE-2016-0061 |
6.8 |
2016-02-09 |
Microsoft Internet Explorer HTML form Element Type Confusion Remote Code Execution Vulnerability |
|||
ZDI-CAN-3430 |
Adobe |
CVE-2016-0973 |
6.8 |
2016-02-09 |
Adobe Flash URLRequest Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3452 |
Adobe |
CVE-2016-0975 |
6.8 |
2016-02-09 |
Adobe Flash instanceof Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3405 |
Microsoft |
CVE-2016-0060 |
6.8 |
2016-02-09 |
Microsoft Internet Explorer CAttrArray Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3374 |
Microsoft |
CVE-2016-0062 |
6.8 |
2016-02-09 |
Microsoft Internet Explorer CACPWrap Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3297 |
Microsoft |
CVE-2016-0072 |
6.8 |
2016-02-09 |
Microsoft Internet Explorer CSVGAnimatedAngle Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3252 |
Microsoft |
CVE-2016-0046 |
6.8 |
2016-02-09 |
Microsoft Reader Uninitialized Pointer Remote Code Execution Vulnerability |
|||
ZDI-CAN-3333 |
Advantech |
6.8 |
2016-02-05 |
(0Day) Advantech WebAccess Local Escalation Of Privilege Vulnerability |
||||
ZDI-CAN-3159 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName/NodeName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3187 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess datacore Service datacore.exe ScadaNodeName strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3165 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName strncpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3156 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3164 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll NodeName strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3158 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName memcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3171 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName strncpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3170 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3155 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName/NodeName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3161 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName/NodeName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3157 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll NodeName strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3151 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName/NodeName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3247 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll NodeName strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3169 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll TagName memcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3168 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName strncpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3162 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName/NodeName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3249 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3166 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3163 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName/NodeName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3248 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3167 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3160 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName/NodeName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3154 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service viewdll1.dll strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3181 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess datacore Service datacore.exe strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3153 |
Advantech |
9.3 |
2016-02-05 |
(0Day) Advantech WebAccess webvrpcs Service BwWebSvc.dll ProjectName/NodeName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3128 |
Advantech |
CVE-2016-0854 |
10.0 |
2016-02-05 |
Advantech WebAccess Dashboard Viewer saveGeneralFile Arbitrary File Creation Remote Code Execution Vulnerability |
|||
ZDI-CAN-3126 |
Advantech |
CVE-2016-0854 |
10.0 |
2016-02-05 |
Advantech WebAccess Dashboard Viewer ImageUploadHandler Unrestricted File Upload Remote Code Execution Vulnerability |
|||
ZDI-CAN-3127 |
Advantech |
CVE-2016-0854 |
10.0 |
2016-02-05 |
Advantech WebAccess Dashboard Viewer FileUploadHandler Unrestricted File Upload Remote Code Execution Vulnerability |
|||
ZDI-CAN-3133 |
Advantech |
CVE-2016-0855 |
7.8 |
2016-02-05 |
Advantech WebAccess Dashboard Viewer openWidget Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3129 |
Advantech |
CVE-2016-0855 |
7.8 |
2016-02-05 |
Advantech WebAccess Dashboard Viewer renameFolder Directory Traversal Denial of Service Vulnerability |
|||
ZDI-CAN-3130 |
Advantech |
CVE-2016-0855 |
7.8 |
2016-02-05 |
Advantech WebAccess Dashboard Viewer removeFolder Directory Traversal Denial of Service Vulnerability |
|||
ZDI-CAN-3131 |
Advantech |
CVE-2016-0855 |
7.8 |
2016-02-05 |
Advantech WebAccess Dashboard Viewer addFolder Directory Traversal Arbitrary File Deletion Denial of Service Vulnerability |
|||
ZDI-CAN-3132 |
Advantech |
CVE-2016-0855 |
7.8 |
2016-02-05 |
Advantech WebAccess Dashboard Viewer removeFile Directory Traversal Arbitrary File Deletion Denial of Service Vulnerability |
|||
ZDI-CAN-3178 |
Advantech |
CVE-2016-0857 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe AlarmMessage strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3179 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe AlarmMessage sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3180 |
Advantech |
CVE-2016-0857 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe AlarmMessage strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3182 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe strncpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3183 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe Username strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3184 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3185 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3186 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe Username strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3188 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe Username strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3189 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe Username strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3190 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3191 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3192 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3193 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe Username strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3194 |
Advantech |
CVE-2016-0857 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3195 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3196 |
Advantech |
CVE-2016-0858 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe strcpy Shared Virtual Memory Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3197 |
Advantech |
CVE-2016-0859 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe ExtDataSize Integer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3198 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe Path strcat Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3199 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe Path strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3200 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess datacore Service datacore.exe Path strcat Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3201 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service DrawSrv.dll TagGroup strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3202 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service DrawSrv.dll TagGroup strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3203 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service DrawSrv.dll TagGroup strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3204 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewDll.dll TagGroup strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3205 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewDll.dll TagGroup strcat Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3206 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service DrawSrv.dll TagGroup strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3207 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service DrawSrv.dll Path BwBuildPath Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3208 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service DrawSrv.dll Path BwBuildPath Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3209 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwKrlApi.dll Path BwBuildPath Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3210 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwKrlApi.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3211 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwKrlApi.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3212 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwKrlApi.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3213 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwKrlApi.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3214 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwKrlApi.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3215 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwKrlApi.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3216 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewSrv.dll Path BwBuildPath Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3217 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewSrv.dll Path BwBuildPath Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3218 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewSrv.dll Path BwBuildPath Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3219 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewSrv.dll Path BwBuildPath Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3220 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwKrlApi.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3221 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewSrv.dll TagName strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3222 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewSrv.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3223 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewSrv.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3224 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewSrv.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3225 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service ViewSrv.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3226 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll memcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3227 |
Advantech |
CVE-2016-0860 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll memcpy Globals Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3228 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll memcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3229 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll Backup RPC Hostname strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3230 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3231 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll Primary RPC Hostname strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3232 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll NewPointValue strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3233 |
Advantech |
CVE-2016-0857 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3234 |
Advantech |
CVE-2016-0857 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll Backup RPC Hostname strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3235 |
Advantech |
CVE-2016-0857 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3236 |
Advantech |
CVE-2016-0857 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3237 |
Advantech |
CVE-2016-0857 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3238 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3239 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll ProjectName/NodeName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3240 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3241 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll HostName/ProjectName/NodeName strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3242 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll ProjectName strcat Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3243 |
Advantech |
CVE-2016-0860 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll ProjectName strcpy Globals Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3244 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll ProjectName strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3245 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3246 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwpAlarm.dll sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3152 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service WaDBS.dll TagName strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3172 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwBASScdDl.dll TargetHost strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3173 |
Advantech |
CVE-2016-0851 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwOpcSvc.dll sprintf Uncontrolled Format String Remote Code Execution Vulnerability |
|||
ZDI-CAN-3175 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwOpcSvc.dll WindowName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3174 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwOpcSvc.dll WindowName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3150 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwOpcSvc.dll WindowName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3149 |
Advantech |
CVE-2016-0856 |
9.3 |
2016-02-05 |
Advantech WebAccess webvrpcs Service BwOpcSvc.dll WindowName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3302 |
Oracle |
CVE-2016-0491 |
9.0 |
2016-01-25 |
Oracle Application Testing Suite UploadFileAction Servlet Remote Code Execution Vulnerability |
|||
ZDI-CAN-3307 |
Oracle |
CVE-2016-0485 |
7.8 |
2016-01-25 |
Oracle Application Testing Suite DownloadServlet reportName Parameter Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3300 |
Oracle |
CVE-2016-0476 |
7.8 |
2016-01-25 |
Oracle Application Testing Suite DownloadServlet reportName Parameter Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3304 |
Oracle |
CVE-2016-0481 |
7.8 |
2016-01-25 |
Oracle Application Testing Suite DownloadServlet scheduleReportName Parameter Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3305 |
Oracle |
CVE-2016-0480 |
7.8 |
2016-01-25 |
Oracle Application Testing Suite DownloadServlet TMAPReportImage Parameter Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3339 |
Oracle |
CVE-2016-0492 |
7.5 |
2016-01-25 |
Oracle Application Testing Suite Authentication Bypass Vulnerability |
|||
ZDI-CAN-3301 |
Oracle |
CVE-2016-0477 |
7.8 |
2016-01-25 |
Oracle Application Testing Suite DownloadServlet Multiple Parameter Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3308 |
Oracle |
CVE-2016-0486 |
7.8 |
2016-01-25 |
Oracle Application Testing Suite DownloadServlet exportFileName Parameter Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3306 |
Oracle |
CVE-2016-0490 |
10.0 |
2016-01-25 |
Oracle Application Testing Suite filename Header Remote Code Execution Vulnerability |
|||
ZDI-CAN-3323 |
Oracle |
CVE-2016-0489 |
9.0 |
2016-01-25 |
Oracle Application Testing Suite ReportImage tempfilename Parameter Directory Traversal Remote Code Execution Vulnerability |
|||
ZDI-CAN-3303 |
Oracle |
CVE-2016-0482 |
7.8 |
2016-01-25 |
Oracle Application Testing Suite DownloadServlet file Parameter Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3299 |
Oracle |
CVE-2016-0478 |
7.8 |
2016-01-25 |
Oracle Application Testing Suite DownloadServlet scriptName Parameter Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3324 |
Oracle |
CVE-2016-0488 |
7.5 |
2016-01-25 |
Oracle Application Testing Suite Authentication Bypass Vulnerability |
|||
ZDI-CAN-3309 |
Oracle |
CVE-2016-0484 |
7.8 |
2016-01-25 |
Oracle Application Testing Suite DownloadServlet scriptPath Parameter Directory Traversal Information Disclosure Vulnerability |
|||
ZDI-CAN-3356 |
Oracle |
CVE-2016-0487 |
7.5 |
2016-01-25 |
Oracle Application Testing Suite Authentication Bypass Vulnerability |
|||
ZDI-CAN-3282 |
Oracle |
CVE-2016-0483 |
6.8 |
2016-01-25 |
Oracle Java readImage Heap Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-3274 |
Foxit |
6.8 |
2016-01-25 |
Foxit Reader ConvertToPDF Heap Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3409 |
Foxit |
6.8 |
2016-01-25 |
Foxit Reader JBIG2 Out-Of-Bounds Read Remote Code Execution Vulnerability |
||||
ZDI-CAN-3251 |
Foxit |
6.8 |
2016-01-25 |
Foxit Reader GpRuntime::GpLock::GpLock Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3407 |
Foxit |
6.8 |
2016-01-25 |
Foxit Reader XFA FormCalc replace Integer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3470 |
Foxit |
6.8 |
2016-01-25 |
Foxit Reader Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3493 |
Foxit |
6.8 |
2016-01-25 |
Foxit PhantomPDF WillClose Action Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3495 |
Foxit |
6.8 |
2016-01-25 |
Foxit Reader Global setPersistent Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3465 |
Foxit |
6.8 |
2016-01-25 |
Foxit Reader Font Parsing Use-After-Free Remote Code Execution Vulnerability |
||||
ZDI-CAN-3041 |
Oracle |
CVE-2016-0452 |
10.0 |
2016-01-22 |
Oracle GoldenGate Veridata File Upload Remote Code Execution Vulnerability |
|||
ZDI-CAN-3040 |
Oracle |
CVE-2016-0451 |
10.0 |
2016-01-22 |
Oracle GoldenGate File Upload Remote Code Execution Vulnerability |
|||
ZDI-CAN-3039 |
Oracle |
CVE-2016-0450 |
5.0 |
2016-01-22 |
Oracle GoldenGate Denial of Service Vulnerability |
|||
ZDI-CAN-3316 |
Apple |
CVE-2016-1718 |
6.9 |
2016-01-22 |
Apple OS X IOAcceleratorFamily2 Out-Of-Bounds Indexing Privilege Escalation Vulnerability |
|||
ZDI-CAN-3329 |
Microsoft |
CVE-2016-0003 |
4.3 |
2016-01-12 |
Microsoft Edge TextData Type Confusion Information Disclosure Vulnerability |
|||
ZDI-CAN-3330 |
Microsoft |
CVE-2016-0020 |
4.4 |
2016-01-12 |
Microsoft Internet Explorer NewMessage Protected Mode Sandbox Escape Vulnerability |
|||
ZDI-CAN-3273 |
Adobe |
CVE-2016-0935 |
6.8 |
2016-01-12 |
Adobe Reader Graphics State Parameter Dictionary Double Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3250 |
Adobe |
CVE-2016-0934 |
6.8 |
2016-01-12 |
Adobe Reader DC AGM Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3264 |
Adobe |
CVE-2016-0939 |
6.8 |
2016-01-12 |
Adobe Acrobat Reader DC Uninitialized Memory Remote Code Execution Vulnerability |
|||
ZDI-CAN-3254 |
Adobe |
CVE-2016-0936 |
6.8 |
2016-01-12 |
Adobe Reader JPEG2000 Out-Of-Bounds Indexing Remote Code Execution Vulnerability |
|||
ZDI-CAN-3265 |
Adobe |
CVE-2016-0938 |
6.8 |
2016-01-12 |
Adobe Reader DC Forms Out-Of-Bounds Read Remote Code Execution Vulnerability |
|||
ZDI-CAN-3362 |
Adobe |
CVE-2016-0943 |
6.8 |
2016-01-12 |
Adobe Reader DC Global Javascript API Restrictions Bypass Vulnerability |
|||
ZDI-CAN-3312 |
Adobe |
CVE-2016-0937 |
6.8 |
2016-01-12 |
Adobe Acrobat Pro DC OCG Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3336 |
Adobe |
CVE-2016-0941 |
6.8 |
2016-01-12 |
Adobe Acrobat Reader DC Search Query Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3021 |
Adobe |
CVE-2016-0931 |
6.8 |
2016-01-12 |
Adobe Reader DC FileAttachment point Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3074 |
Adobe |
CVE-2016-0932 |
6.8 |
2016-01-12 |
Adobe Acrobat Reader DC Doc Use-After-Free Remote Code Execution Vulnerability |
|||
ZDI-CAN-3285 |
McAfee |
CVE-2016-1715 |
6.6 |
2016-01-08 |
McAfee Application Control Kernel Driver Memory Corruption Privilege Escalation Vulnerability |
|||
ZDI-CAN-2990 |
Proface |
6.8 |
2016-01-08 |
(0Day) Proface GP-Pro EX D-Script Heap Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-2959 |
Proface |
4.3 |
2016-01-08 |
(0Day) Proface GP-Pro EX Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-2946 |
Proface |
4.3 |
2016-01-08 |
(0Day) Proface GP-Pro EX Out-Of-Bounds Read Information Disclosure Vulnerability |
||||
ZDI-CAN-2945 |
Proface |
6.8 |
2016-01-08 |
(0Day) Proface GP-Pro EX Stack Buffer Overflow Remote Code Execution Vulnerability |
||||
ZDI-CAN-3337 |
Apple |
CVE-2015-7092 |
7.5 |
2016-01-08 |
Apple QuickTime ID3 Tag Heap Buffer Overflow Remote Code Execution Vulnerability |
|||
ZDI-CAN-2905 |
Unitronics |
CVE-2015-7939 |
9.3 |
2016-01-06 |
Unitronics VisiLogic OPLC IDE File Parsing Buffer Overflow Remote Code Execution Vulnerability |
All advisories loaded.