CVE-2017-3562

This is an entry in the Common Vulnerability Index under number CVE-2017-3562. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2017-3562

Description: Vulnerability in the Oracle Applications DBA component of Oracle E-Business Suite (subcomponent: AD Utilities). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6.

Continue Reading …

CVE-2017-0079

This is an entry in the Common Vulnerability Index under number CVE-2017-0079. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2017-0079

Description: The kernel-mode drivers in Windows 8.1; Windows Server 2012 R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allow local users to gain privileges via a crafted application,

Continue Reading …

CVE-2008-4344

This is an entry in the Common Vulnerability Index under number CVE-2008-4344. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2008-4344

Description: SQL injection vulnerability in cat.php in 6rbScript allows remote attackers to execute arbitrary SQL commands via the CatID parameter.

Status: Candidate

Note for CVEs with status “Candidate”: Candidates must be reviewed and accepted by the CVE Editorial Board before they can be added to the official CVE list.Continue Reading …

CVE-2007-0079

This is an entry in the Common Vulnerability Index under number CVE-2007-0079. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2007-0079

Description: rblog stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for (1) data/admin.mdb or (2) data/rblog.mdb.

Continue Reading …

CVE-2007-0326

This is an entry in the Common Vulnerability Index under number CVE-2007-0326. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2007-0326

Description: Multiple stack-based buffer overflows in the PhotoChannel Networks PNI Digital Media Photo Upload Plugin ActiveX control before 2.0.0.10, as used by multiple retailers, allow remote attackers to execute arbitrary code via unspecified vectors.

Continue Reading …

CVE-2018-5992

This is an entry in the Common Vulnerability Index under number CVE-2018-5992. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2018-5992

Description: SQL Injection exists in the Staff Master through 1.0 RC 1 component for Joomla! via the name parameter in a view=staff request.

Status: Candidate

Note for CVEs with status “Candidate”: Candidates must be reviewed and accepted by the CVE Editorial Board before they can be added to the official CVE list.Continue Reading …

CVE-2012-5859

This is an entry in the Common Vulnerability Index under number CVE-2012-5859. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2012-5859

Description: Samsung Kies Air 2.1.207051 and 2.1.210161 allows remote attackers to cause a denial of service (crash) via a crafted request to www/apps/KiesAir/jws/ssd.php.

Status: Candidate

Note for CVEs with status “Candidate”: Candidates must be reviewed and accepted by the CVE Editorial Board before they can be added to the official CVE list.Continue Reading …

CVE-2015-0575

This is an entry in the Common Vulnerability Index under number CVE-2015-0575. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2015-0575

Description: In all Qualcomm products with Android releases from CAF using the Linux kernel, insecure ciphersuites were included in the default configuration.

Status: Candidate

Note for CVEs with status “Candidate”: Candidates must be reviewed and accepted by the CVE Editorial Board before they can be added to the official CVE list.Continue Reading …

CVE-2008-3460

This is an entry in the Common Vulnerability Index under number CVE-2008-3460. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2008-3460

Description: WPGIMP32.FLT in Microsoft Office 2000 SP3, XP SP3, and 2003 SP2; Office Converter Pack; and Works 8 does not properly parse the length of a WordPerfect Graphics (WPG) file,

Continue Reading …

CVE-2012-0011

This is an entry in the Common Vulnerability Index under number CVE-2012-0011. Specific details regarding this vulnerability name are as follows:

CVE Number: CVE-2012-0011

Description: Microsoft Internet Explorer 7 through 9 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing a deleted object,

Continue Reading …