[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248149

 
 

909

 
 

194803

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 14298 Download | Alert*

The host is installed with Adobe Reader and Acrobat and is prone to arbitrary code execution vulnerability. A flaw is present in the applications, which cause memory corruptions while processing malformed contents within a PDF document. Successful exploitation allows remote attackers to inject scripting code, or execute arbitrary commands by tricking a user into opening a malicious PDF document.

The host is installed with Adobe Reader and Acrobat and is prone to integer overflow vulnerability. A flaw is present in ACE.dll, which cause an error due to several multiplications of controlled byte values. This leads to an allocation of a small buffer which can subsequently be overflowed. Successful exploitation allows remote attackers to execute arbitrary code using a crafted ICC data

The host is installed with Adobe Reader and Acrobat and is prone to arbitrary code execution vulnerability. A flaw is present in the applications which cause memory corruptions while processing malformed contents within a PDF document. Successful exploitation allows remote attackers to inject scripting code or execute arbitrary commands by tricking a user into opening a malicious PDF document

The host is installed with Adobe Reader and Acrobat and is prone to arbitrary code execution vulnerability. A flaw is present in the applications, which cause memory corruptions while processing malformed contents within a PDF document. Successful exploitation allows remote attackers to inject scripting code or execute arbitrary commands by tricking a user into opening a malicious PDF document.

The host is installed with Adobe Reader and Acrobat and is prone to remote code execution vulnerability. A flaw is present in the applications, which fails to properly parse fonts. Successful exploitation allows remote attackers to execute arbitrary code using a crafted font.

The host is installed with Ruby on Rails 3.0.x before 3.0.10 or 3.1.x before 3.1.0.rc6 and is prone to filter skipping vulnerability. A flaw is present in the application which fails to properly handle glob characters. Successful exploitation allows an attacker to craft a URL and cause Rails to render an arbitrary view.

The host is installed with Ruby on Rails before 2.3.13 or 3.0.x before 3.0.10 or 3.1.x before 3.1.0.rc5 and is prone to multiple SQL injection vulnerabilities. The flaws are present in the application which fail to properly handle a crafted column name. Successful exploitation allows remote attackers to inject arbitrary SQL into a query.

The host is installed with Ruby on Rails before 2.3.13 or 3.0.x before 3.0.10 or 3.1.x before 3.1.0.rc5 and is prone to cross-site scripting (XSS) vulnerability. A flaw is present in the application which fails to properly handle strip_tags helper. Successful exploitation allows remote attackers to inject arbitrary web script or HTML into the response.

The host is installed with Ruby on Rails before 2.3.13 or 3.0.x before 3.0.10 or 3.1.x before 3.1.0.rc5 and is prone to cross-site scripting (XSS) vulnerability. A flaw is present in the application which fails to properly handle escaping function. Successful exploitation allows remote attackers to bypass the escaping code via a malformed unicode string.

The host is installed with Ruby on Rails 2.3.x before 2.3.13 and is prone to CRLF injection vulnerability. A flaw is present in the application which fails to sufficiently validate the values provided. Successful exploitation allows remote attackers to inject arbitrary HTTP headers into a response.


Pages:      Start    1129    1130    1131    1132    1133    1134    1135    1136    1137    1138    1139    1140    1141    1142    ..   1429

© SecPod Technologies