[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 27003 Download | Alert*

The host is installed with Ghostscript 9.18 or 9.20 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted PostScript document. Successful exploitation could allow attackers to execute arbitrary code.

The host is installed with Ghostscript 9.10 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle a crafted postscript file. Successful exploitation could allow attackers to read data via a crafted postscript file.

The host is installed with Ghostscript 9.20 and is prone to a null pointer dereference vulnerability. A flaw is present in the application, which fails to handle a crafted file. Successful exploitation could allow attackers to crash the service.

The host is installed with Ghostscript 9.20 and is prone to a null pointer dereference vulnerability. A flaw is present in the application, which fails to handle a crafted file. Successful exploitation could allow attackers to crash the service.

The host is installed with Apache Tomcat 8.5.x before 8.5.9, 8.0.x before 8.0.40, 6.x before 6.0.49, 7.x before 7.0.74 or 9.x before 9.0.0.M14 and is prone to an information disclosure vulnerability. A flaw is present in the application which fails to handle the send file code for the NIO HTTP connector. Successful exploitation allows attackers to obtain sensitive information that may aid in furth ...

The host is installed with Apache Tomcat 7.0.x through 7.0.70, 8.5.x through 8.5.4, 8.0.x through 8.0.36, 6.0.x through 6.0.45 or 9.0.0.M1 through 9.0.0.M9 and is prone to an improper access control vulnerability. A flaw is present in application, which fails to properly handle issues in CGI Servlet. Successful exploitation allows remote attackers to redirect an application's outbound HTTP traffic ...

The php_wddx_pop_element function in ext/wddx/wddx.c in PHP 7.0.x before 7.0.15 and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an inapplicable class name in a wddxPacket XML document, leading to mishandling in a wddx_deserialize call.

The exif_convert_any_to_int function in ext/exif/exif.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (application crash) via crafted EXIF data that triggers an attempt to divide the minimum representable negative integer by -1.

The unserialize implementation in ext/standard/var.c in PHP 7.x before 7.0.14 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted serialized data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-6834.

The php_wddx_push_element function in ext/wddx/wddx.c in PHP before 5.6.29 and 7.x before 7.0.14 allows remote attackers to cause a denial of service (out-of-bounds read and memory corruption) or possibly have unspecified other impact via an empty boolean element in a wddxPacket XML document.


Pages:      Start    1235    1236    1237    1238    1239    1240    1241    1242    1243    1244    1245    1246    1247    1248    ..   2700

© SecPod Technologies