jeudi 12 décembre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Adobe Acrobat Reader Heap-based memory corruption [CVE-2019-16451]

A vulnerability classified as critical has been found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). This affects an unknown part. Upgrading to version 2015.006.30508, 2017.011.30156 or...
Auteur: VulDB

Adobe Acrobat Reader Use-After-Free memory corruption [CVE-2019-16464]

A vulnerability was found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). It has been rated as critical. Affected by this issue is some unknown functionality. Upgrading to version...
Auteur: VulDB

Adobe Acrobat Reader Use-After-Free memory corruption [CVE-2019-16459]

A vulnerability was found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). It has been declared as critical. Affected by this vulnerability is an unknown functionality. Upgrading to version...
Auteur: VulDB

Adobe Acrobat Reader Use-After-Free memory corruption [CVE-2019-16452]

A vulnerability was found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). It has been classified as critical. Affected is an unknown function. Upgrading to version 2015.006.30508,...
Auteur: VulDB

Adobe Acrobat Reader Use-After-Free memory corruption [CVE-2019-16448]

A vulnerability was found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software) and classified as critical. This issue affects some unknown processing. Upgrading to version 2015.006.30508,...
Auteur: VulDB

Adobe Acrobat Reader Use-After-Free memory corruption [CVE-2019-16445]

A vulnerability has been found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software) and classified as critical. This vulnerability affects an unknown code block. Upgrading to version...
Auteur: VulDB

Adobe Acrobat Reader Out-of-Bounds memory corruption [CVE-2019-16454]

A vulnerability, which was classified as critical, was found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). This affects an unknown code. Upgrading to version 2015.006.30508, 2017.011.30156...
Auteur: VulDB

Adobe Acrobat Reader Out-of-Bounds memory corruption [CVE-2019-16450]

A vulnerability, which was classified as critical, has been found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). Affected by this issue is an unknown part. Upgrading to version...
Auteur: VulDB

Adobe Acrobat Reader Out-of-Bounds information disclosure [CVE-2019-16465]

A vulnerability classified as problematic was found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). Affected by this vulnerability is some unknown functionality. Upgrading to version...
Auteur: VulDB

Adobe Acrobat Reader Out-of-Bounds information disclosure [CVE-2019-16461]

A vulnerability classified as problematic has been found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). Affected is an unknown functionality. Upgrading to version 2015.006.30508,...
Auteur: VulDB

Adobe Acrobat Reader Out-of-Bounds information disclosure [CVE-2019-16458]

A vulnerability was found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). It has been rated as problematic. This issue affects an unknown function. Upgrading to version 2015.006.30508,...
Auteur: VulDB

Adobe Acrobat Reader Out-of-Bounds information disclosure [CVE-2019-16457]

A vulnerability was found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). It has been declared as problematic. This vulnerability affects some unknown processing. Upgrading to version...
Auteur: VulDB

Adobe Acrobat Reader Out-of-Bounds information disclosure [CVE-2019-16456]

A vulnerability was found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software). It has been classified as problematic. This affects an unknown code block. Upgrading to version 2015.006.30508,...
Auteur: VulDB

Adobe Acrobat Reader Out-of-Bounds information disclosure [CVE-2019-16449]

A vulnerability was found in Adobe Acrobat Reader up to 2015.006.30505/2017.011.30152/2019.021.20056 (Document Reader Software) and classified as problematic. Affected by this issue is an unknown code. Upgrading to version 2015.006.30508,...
Auteur: VulDB

McAfee Tech Check up to 3.0.0.17 Microsoft Windows Client privilege escalation

A vulnerability has been found in McAfee Tech Check up to 3.0.0.17 and classified as critical. Affected by this vulnerability is an unknown part of the component Microsoft Windows Client. There is no information about possible countermeasures...
Auteur: VulDB

AWS Firecracker up to 0.19.0 memory corruption [CVE-2019-18960]

A vulnerability, which was classified as critical, was found in AWS Firecracker up to 0.19.0. Affected is some unknown functionality. There is no information about possible countermeasures known. It may be suggested to replace the affected object...
Auteur: VulDB

Progress Telerik UI for ASP.NET AJAX up to 2019.3.1023 .NET Deserialization RadAsyncUpload Remote Code Execution

A vulnerability, which was classified as critical, has been found in Progress Telerik UI for ASP.NET AJAX up to 2019.3.1023. This issue affects the function RadAsyncUpload of the component .NET Deserialization. There is no information about...
Auteur: VulDB

node-connect up to 2.8.0 Middleware cross site scripting

A vulnerability classified as problematic was found in node-connect up to 2.8.0. This vulnerability affects an unknown function of the component Middleware. Upgrading to version 2.8.1 eliminates this vulnerability.
Auteur: VulDB

JBossWeb Bayeux Reflected cross site scripting [CVE-2013-6495]

A vulnerability classified as problematic has been found in JBossWeb Bayeux (the affected version unknown). This affects some unknown processing. There is no information about possible countermeasures known. It may be suggested to replace the...
Auteur: VulDB

omniauth-facebook Gem on Ruby Access Token unknown vulnerability

A vulnerability was found in omniauth-facebook Gem on Ruby (affected version not known). It has been rated as critical. Affected by this issue is an unknown code block of the component Access Token Handler. There is no information about possible...
Auteur: VulDB

Orca Python Module Code Execution [CVE-2013-4245]

A vulnerability was found in Orca (affected version unknown). It has been declared as critical. Affected by this vulnerability is an unknown code of the component Python Module. Upgrading eliminates this vulnerability. A possible mitigation has...
Auteur: VulDB

SmokePing up to 2.6.8 Incomplete Fix CVE-2012-0790 displaymode cross site scripting

A vulnerability was found in SmokePing up to 2.6.8. It has been classified as problematic. Affected is an unknown part of the component Incomplete Fix CVE-2012-0790. Upgrading to version 2.6.9 eliminates this vulnerability. A possible mitigation...
Auteur: VulDB

CERTFR-2019-AVI-627 : Multiples vulnérabilités dans les produits Microsoft (11 décembre 2019)

De multiples vulnérabilités ont été corrigées dans les produits Microsoft. Elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données, une exécution de code à distance et une usurpation d'identité.
Auteur: Cert FR

CERTFR-2019-AVI-626 : Multiples vulnérabilités dans Microsoft Windows (11 décembre 2019)

De multiples vulnérabilités ont été corrigées dans Microsoft Windows. Elles permettent à un attaquant de provoquer un déni de service, une élévation de privilèges, une atteinte à la confidentialité des données, une exécution de code à distance et...
Auteur: Cert FR

CERTFR-2019-AVI-625 : Multiples vulnérabilités dans Microsoft Office (11 décembre 2019)

De multiples vulnérabilités ont été corrigées dans Microsoft Office. Elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données, une exécution de code à distance, une usurpation d'identité et un déni de service.
Auteur: Cert FR
12345678910Last

Événements SSI

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS