漏洞类别:Windows 漏洞等级: 漏洞信息 Multiple elevation of privilege vulnerabilities exist when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could run arbitrary code in kernel mode. …
漏洞类别:Internet Explorer 漏洞等级: 漏洞信息 This security update is rated Critical for Internet Explorer 9 (IE 9), and Internet Explorer 11 (IE 11) on affected Windows clients, and Moderate for Internet Explorer 9 (IE 9), Internet Explorer 10 (IE 10), and Internet Explo…
漏洞类别:Local 漏洞等级: 漏洞信息 Adobe Flash Player is a multimedia application for multiple platforms. Adobe has released security updates for Adobe Flash Player. These updates address critical vulnerabilities that could potentially allow an attacker to take control of …
漏洞类别:Windows 漏洞等级: 漏洞信息 This security update is rated Critical for Microsoft Edge on Windows 10. The update addresses the vulnerabilities by: modifying how Microsoft Edge and certain functions handle objects in memory. modifying how the Chakra JavaScript scrip…
漏洞类别:Windows 漏洞等级: 漏洞信息 An information disclosure vulnerability exists when the Microsoft Internet Messaging API improperly handles objects in memory. The security update affects Microsoft Windows Vista, Windows Server 2008, Windows 7 and Windows Sever 2008 R2…
漏洞类别:Local 漏洞等级: 漏洞信息 Adobe Reader and Acrobat are applications for handling PDF files. They are prone to multiple vulnerabilities that could potentially allow an attacker to take control of an affected system. Affected Software: Acrobat DC Continuous 15.017.2…
CVE
CVE-2016-6935 Adobe Creative Cloud Desktop Application Unquoted Search Path Vulnerability (APSB16-34)
漏洞类别:Local 漏洞等级: 漏洞信息 Adobe Creative Cloud Desktop Application is your central location for managing the dozens of apps and services that are included in your Creative Cloud membership. You can also sync and share files, manage thousands of fonts, access libra…
漏洞类别:Office Application 漏洞等级: 漏洞信息 An Office RTF remote code execution vulnerability exists in Microsoft Office software when the Office software fails to properly handle RTF files. The update addresses the vulnerability by changing the way Microsoft Office so…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that NTP incorrectly handled authenticated broadcast mode. It was discovered that NTP incorrectly verified peer associations of symmetric keys. It was discovered that the NTP ntpq utility incorrectly handled memory. It …
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that PHP incorrectly handled certain invalid objects when unserializing data. It was discovered that PHP incorrectly handled invalid session names. It was discovered that PHP incorrectly handled certain gamma values in …
漏洞类别:Local 漏洞等级: 漏洞信息 Google Chrome is a web browser for multiple platforms developed by Google. This Google Chrome update fixes the following vulnerabilities: CVE-2016-5177: Use after free in V8. CVE-2016-5178: Various fixes from internal audits, fuzzing and …
CVE
CVE-2016-1988 HPE Network Automation, Remote Code Execution, Disclosure of Sensitive Information Vulnerability
漏洞类别:Local 漏洞等级: 漏洞信息 HPE Network Automation software automates network configuration and change management (NCCM) from provisioning to policy-based change and security Potential vulnerabilities have been identified in HPE Network Automation. The vulnerabiliti…
漏洞类别:Local 漏洞等级: 漏洞信息 Accelerate Application Development with the Progress OpenEdge Integrated Development Environment. Heap-based buffer overflow in _mprosrv.exe in Progress Software Progress 9.1E and OpenEdge 10.1x, as used by the RSA Authentication Manager …
漏洞类别:CGI 漏洞等级: 漏洞信息 Abyss Web Server is a freely available personal Web server. It is maintained by Aprelium Technologies and runs on Microsoft Windows as well as Linux. Abyss Web Server installs 'AbyssWebServer' service with an unquoted service path running w…
漏洞列表
RedHat - Red Hat Enterprise Linux 7.1 Extended Update Support Six-Month Notice (RHSA-2016:2008)
漏洞类别:RedHat 漏洞等级: 漏洞信息 In accordance with the Red Hat Enterprise Linux Errata Support Policy, Extended Update Support for Red Hat Enterprise Linux 7.1 will be retired as of March 31, 2017, and support will no longer be provided. Accordingly, Red Hat will no lo…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Chromium is an open-source web browser, powered by WebKit (Blink). This update upgrades Chromium to version 53.0.2785.143. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing ma…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for php7 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Module for Web Scripting 12 漏洞危害 This vulnerability could be exploited to…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for php53 to fix the vulnerabilities. Affected Products: SUSE OpenStack Cloud 5 SUSE Manager Proxy 2.1 SUSE Manager 2.1 SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for openssl to fix the vulnerabilities. Affected Products: SUSE Studio Onsite 1.3 SUSE OpenStack Cloud 5 SUSE Manager Proxy 2.1 SUSE Manager 2.1 SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE L…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for wireshark to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP1 SUSE Linux Enterprise Desktop 12-SP1 漏洞危害 This vulnera…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for curl to fix the vulnerabilities. Affected Products: SUSE OpenStack Cloud 5 SUSE Manager Proxy 2.1 SUSE Manager 2.1 SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for mozillafirefox to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server for SAP 12 SUSE Linux Enterprise Server 12-SP1 SUSE Linu…
漏洞类别:Local 漏洞等级: 漏洞信息 VX Search is an automated, rule-based file search solution on Windows. VX Search Enterprise is exposed to stack buffer overflow vulnerability. NOTE: The exploit is publicly available and could be weaponized in near future. Affected Versio…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for wordpress to fix the vulnerabilities. 漏洞危害 Cross-site request forgery (CSRF) vulnerability in the wp_ajax_wp_compression_test function in wp-admin/includes/ajax-actions.php in WordPress allows remo…
漏洞类别:Security Policy 漏洞等级: 漏洞信息 Authorware is a visual authoring tool for creating rich-media e-learning applications for delivery on corporate networks, CD/DVD, and the Web. Develop accessible applications that comply with learning management system (LMS) sta…