Secunia Research has discovered a vulnerability in Linux Kernel, which can be exploited by malicious, local users to cause a DoS (Denial of Service). An error in the "_sctp_make_chunk()" function (net/sctp/sm_make_chunk.c) when handling SCTP packets length can be exploited to cause a kernel crash. The vulnerability is confirmed in versions 4.15.0-r7 and 4.15.0. Other versions may also be affected.
f0fc9c0b15f4d208f5ddbd8f5c527f7918efef3e0855ee3238bb91aeec7edb50Secunia Security Advisory - Secunia Research has discovered a vulnerability in the MuPDF plugin for Firefox, which can be exploited by malicious people to compromise a user's system.
20eea0542f76a32f41edc2edf564c1c9e659bc3887ddd18c5d727ab63f7da1caSecunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in InduSoft ISSymbol ActiveX control, which can be exploited by malicious people to compromise a user's system.
7970b7e093607d27d757175767c03080bd3d08df8b6851c188d2805d018cdcf9Secunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in InduSoft ISSymbol ActiveX control, which can be exploited by malicious people to compromise a user's system.
7970b7e093607d27d757175767c03080bd3d08df8b6851c188d2805d018cdcf9Secunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in Advantech Studio ISSymbol ActiveX control, which can be exploited by malicious people to compromise a user's system.
0922c1f183edaf0cebd923a4eefed01bf570b184f870700a384f86d073b53906Secunia Security Advisory - Secunia Research has discovered two vulnerabilities in CA Output Management Web Viewer, which can be exploited by malicious people to compromise a user's system.
a53650f34fb396e3d1f5d6d6827378ee9b06d191224cedfc0bff96302c995c9eSecunia Security Advisory - Secunia Research has discovered two vulnerabilities in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
f317e6c78931603a474c19e3ab146fc81cd3bcd2b3fddda6c3525f8fb832f6ccSecunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in RunCMS, which can be exploited by malicious users to conduct SQL injection attacks and compromise a vulnerable system and by malicious people to conduct cross-site scripting and request forgery attacks.
d07958d980219d5ab8990c96a177fed52a1661e29d3b96472c672e2be1310e83Secunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in Achievo, which can be exploited by malicious users to disclose sensitive information, bypass certain security restrictions, and conduct SQL injection attacks and by malicious people to conduct cross-site scripting attacks.
9f460aeefab97d7930b38d59c5debfb8bac65a09ff68de7e30839f4f02ac52f3Secunia Security Advisory - Secunia Research has discovered a vulnerability in Honeywell ScanServer ActiveX Control, which can be exploited by malicious people to compromise a user's system.
491d12a386f21de84d9a103729e26268183f5e411a25fdde3caa61eee887b663Secunia Security Advisory - Secunia Research has discovered a vulnerability in Foxit Reader, which can be exploited by malicious people to compromise a user's system.
c1eb17d02428c235778c42a6967e0c1f9e09c830311af8ff28a03dfccfcb6b65Secunia Security Advisory - Secunia Research has discovered a vulnerability in Foxit Phantom, which can be exploited by malicious people to compromise a user's system.
4ca16d1365bac6be2717d266827332d454e81ef9e72823b7145182487b591f19Secunia Security Advisory - Secunia Research has discovered two vulnerabilities in SumatraPDF, which can be exploited by malicious people to compromise a user's system.
d0f2420b8961afee6f3ed592052f348eecfd70f1a66eadda37366dfdeb849fd1Secunia Security Advisory - Secunia Research has discovered two vulnerabilities in MuPDF, which can be exploited by malicious people to compromise a user's system.
8cda2e8042948208a916b95341c2de081e760200c3fc3859298b28b94206fd42Secunia Security Advisory - Secunia Research has discovered two vulnerabilities in Dell DellSystemLite.Scanner ActiveX control, which can be exploited by malicious people to disclose various information.
c693e09242d97444325bab20fc736e6e824dc58686cf355d101378dd2bd6ba57Secunia Security Advisory - Secunia Research has discovered multiple vulnerabilities in SigPlus Pro ActiveX control, which can be exploited by malicious people to compromise a user's system.
e94ee9b0a8aa5ffaddb44fca537951393bc583ac47fd55111d5b0b7ce6d8b46aSecunia Research has discovered a vulnerability in Microsoft Word, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused by a double-free error when processing LFO (List Format Override) records and can be exploited to corrupt memory via a specially crafted Word document. Successful exploitation may allow execution of arbitrary code.
09199796312d54b98c05e03a55568621a9059426818c08614687c60d34bcd71aSecunia Research has discovered two vulnerabilities in Microsoft Office, which can be exploited by malicious people to compromise a user's system. A boundary error in the FlashPix graphics filter when parsing certain tile data can be exploited to cause a data section buffer overflow via a specially crafted image. A boundary error in the FlashPix graphics filter when parsing certain tile data can be exploited to cause a stack-based buffer overflow via a specially crafted image. Successful exploitation of the vulnerabilities allows execution of arbitrary code.
b60f45ab7b6e2a2faa176e81b2106b9d5cd588df7175ba1241a68f372b354aacSecunia Research has discovered a vulnerability in Microsoft Office, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by a boundary error in the FlashPix graphics filter when parsing certain property sets. This can be exploited to cause a stack-based buffer overflow via a specially crafted FlashPix image. Successful exploitation allows execution of arbitrary code.
da9db2c31643ad2ece4ad028a02978df527f30435b8d0a989495edb5b862b7cfSecunia Security Advisory - Secunia Research has discovered a vulnerability in SAP Crystal Reports, which can be exploited by malicious people to compromise a user's system.
33f01f0ed1ca4d01117353e853a21e3301f28ebf71389e78366cf3a471775535Secunia Research has discovered two vulnerabilities in Microsoft Office, which can be exploited by malicious people to compromise a user's system. An input validation error in the TIFF Import/Export Graphic Filter when copying certain data can be exploited to cause a heap-based buffer overflow via a specially crafted TIFF image. Another input validation error in the TIFF Import/Export Graphic Filter when copying certain data after having encountered a specific error can be exploited to cause a heap-based buffer overflow via a specially crafted TIFF image. Successful exploitation of the vulnerabilities may allow execution of arbitrary code when processing a TIFF image in an application using the graphics filter (e.g. opening the image in Microsoft Photo Editor or importing it into an Office document).
9dba3d0d50ecb04d6b0e88ad279009be8dcf8e519a8e80f0bd5acd274e688272Secunia Research has discovered a vulnerability in Microsoft Office, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused by missing input validation within a library used by the bundled Microsoft Office Document Imaging application when converting certain data during parsing of TIFF images. This can be exploited to corrupt memory via a TIFF image containing specially crafted IFD entries. Successful exploitation may allow execution of arbitrary code.
623e21468d54f2db461001bc0b8983f1dc7a59785a4ad47663b3d0349af2f8ceSecunia Research has discovered a vulnerability in Microsoft Office, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused by an error in the TIFF Import/Export Graphic Filter (TIFFIM32.FLT) when converting the endianess of certain data. This can be exploited to corrupt memory via e.g. a specially crafted TIFF image. Successful exploitation may allow execution of arbitrary code when processing a TIFF image in an application using the graphics filter (e.g. opening the image in Microsoft Photo Editor or importing it into an Office document).
28a0cbd4c91dc6908098a5bb540ee31c831d78a7df3e6e91cc796712c465d9faSecunia Research has discovered a vulnerability in Microsoft Office, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by an integer truncation error in the PICT import filter (PICTIM32.FLT). This can be exploited to cause a heap-based buffer overflow by e.g. tricking a user into importing a specially crafted PICT file. Successful exploitation may allow execution of arbitrary code.
3d48dcf13f13e7c0894cc02b34b824a7414ad66514cf0dc9789b003d837a5be5Secunia Research has discovered a vulnerability in RealPlayer, which can be exploited by malicious people to potentially compromise a user's system. The vulnerability is caused due to an error in the handling of errors encountered while decoding "cook" encoded audio content. This can be exploited to trigger the use of uninitialised memory and potentially free an arbitrary address. Successful exploitation may allow execution of arbitrary code.
8ce3f987a47149f84b0f20dda276ecafb1deb4f3712048d4fa372fdc4fe9f31cSecunia Research has discovered a vulnerability in RealPlayer, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by an error in the parsing of AAC audio content and can be exploited to corrupt memory via specially crafted spectral data. Successful exploitation may allow execution of arbitrary code.
e1d707d2fdf5b309bfa5099effc7b3f06ec130515db11e823db3c81a62298aaf
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed