Vulnerability & Exploit Database

Displaying entries 171 - 180 of 140656 in total

SUSE: CVE-2018-15126: SUSE Linux Security Advisory Vulnerability

  • Severity: 8
  • Published: December 19, 2018

LibVNC before commit 73cb96fec028a576a5a24417b57723b55854ad7b contains heap use-after-free vulnerability in server code of file transfer extension that can result remote code execution

Microsoft CVE-2018-8653: Scripting Engine Memory Corruption Vulnerability Vulnerability

  • Severity: 8
  • Published: December 19, 2018

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the sa...

Mailcleaner Remote Code Execution Exploit

Disclosed: December 19, 2018

This module exploits the command injection vulnerability of MailCleaner Community Edition product. An authenticated user can execute an operating system command under the context of the web server user which is root. /admin/managetracing/search/search endpoint takes several user inputs and then pass them to the internal service ...

SUSE: CVE-2018-3613: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: December 17, 2018

Details for this vulnerability have not been published by NIST at this point. Descriptions from software vendor advisories for this issue are provided below.

From SUSE_CVE-2018-3613:

This CVE is addressed in the SUSE advisories SUSE-SU-2018:4155-1, SUSE-SU-2018:4194-1, SUSE-SU-2018:4207-1, openSUSE-SU-2018:4240-1, o...

SUSE: CVE-2018-20189: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: December 17, 2018

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping (which is not available beyond 8-bits/sample), and therefore lacks indexes initialization.