[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26099 Download | Alert*

The host is installed with Ghostscript 9.18 or 9.20 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted PostScript document. Successful exploitation could allow attackers to execute arbitrary code.

The host is installed with Ghostscript 9.10 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle a crafted postscript file. Successful exploitation could allow attackers to read data via a crafted postscript file.

The host is installed with Ghostscript 9.20 and is prone to a null pointer dereference vulnerability. A flaw is present in the application, which fails to handle a crafted file. Successful exploitation could allow attackers to crash the service.

The host is installed with Ghostscript 9.20 and is prone to a null pointer dereference vulnerability. A flaw is present in the application, which fails to handle a crafted file. Successful exploitation could allow attackers to crash the service.

The host is installed with Apache Tomcat 8.5.x before 8.5.9, 8.0.x before 8.0.40, 6.x before 6.0.49, 7.x before 7.0.74 or 9.x before 9.0.0.M14 and is prone to an information disclosure vulnerability. A flaw is present in the application which fails to handle the send file code for the NIO HTTP connector. Successful exploitation allows attackers to obtain sensitive information that may aid in furth ...

The host is installed with Apache Tomcat 7.0.x through 7.0.70, 8.5.x through 8.5.4, 8.0.x through 8.0.36, 6.0.x through 6.0.45 or 9.0.0.M1 through 9.0.0.M9 and is prone to an improper access control vulnerability. A flaw is present in application, which fails to properly handle issues in CGI Servlet. Successful exploitation allows remote attackers to redirect an application's outbound HTTP traffic ...

The php_wddx_pop_element function in ext/wddx/wddx.c in PHP 7.0.x before 7.0.15 and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an inapplicable class name in a wddxPacket XML document, leading to mishandling in a wddx_deserialize call.

The exif_convert_any_to_int function in ext/exif/exif.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (application crash) via crafted EXIF data that triggers an attempt to divide the minimum representable negative integer by -1.

The unserialize implementation in ext/standard/var.c in PHP 7.x before 7.0.14 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted serialized data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-6834.

The php_wddx_push_element function in ext/wddx/wddx.c in PHP before 5.6.29 and 7.x before 7.0.14 allows remote attackers to cause a denial of service (out-of-bounds read and memory corruption) or possibly have unspecified other impact via an empty boolean element in a wddxPacket XML document.


Pages:      Start    1129    1130    1131    1132    1133    1134    1135    1136    1137    1138    1139    1140    1141    1142    ..   2609

© SecPod Technologies