jeudi 12 décembre 2019    || Inscription
BanniereAlertes
 
 

Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

Samba up to 4.9.16/4.10.10/4.11.2 AD Handleer ldb_qsort/dns_name_compare privilege escalation

A vulnerability was found in Samba up to 4.9.16/4.10.10/4.11.2 and classified as critical. This issue affects the function ldb_qsort/dns_name_compare of the component AD Handleer. Upgrading to version 4.9.17, 4.10.11 or 4.11.3 eliminates this...
Auteur: VulDB

Microsoft Visual Studio 2019 privilege escalation

A vulnerability has been found in Microsoft Visual Studio 2019 and classified as critical. This vulnerability affects an unknown code of the component Studio. Applying a patch is able to eliminate this problem. A possible mitigation has been...
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Javascript HTML Page Heap-based memory corruption

A vulnerability, which was classified as critical, was found in Google Chrome. This affects an unknown part of the component Javascript. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Payment HTML Page Cross-Origin information disclosure

A vulnerability, which was classified as problematic, has been found in Google Chrome. Affected by this issue is some unknown functionality of the component Payment Handler. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Download spoofing

A vulnerability classified as problematic was found in Google Chrome (Web Browser). Affected by this vulnerability is an unknown functionality of the component Download Handler. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Omnibox Domain spoofing

A vulnerability classified as critical has been found in Google Chrome (Web Browser). Affected is an unknown function of the component Omnibox. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

CERTFR-2019-AVI-617 : Multiples vulnérabilités dans Adobe Acrobat et Reader (11 décembre 2019)

De multiples vulnérabilités ont été découvertes dans Adobe Acrobat et Reader. Elles permettent à un attaquant de provoquer une exécution de code arbitraire, une atteinte à la confidentialité des données et une élévation de privilèges.

Auteur: Cert FR

Google Chrome prior 79.0.3945.79 interstitials HTML Page Domain spoofing

A vulnerability was found in Google Chrome. It has been rated as critical. This issue affects some unknown processing of the component interstitials. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Navigation HTML Page privilege escalation

A vulnerability was found in Google Chrome. It has been declared as critical. This vulnerability affects an unknown code block of the component Navigation. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Omnibox Domain spoofing

A vulnerability was found in Google Chrome. It has been classified as critical. This affects an unknown code of the component Omnibox. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Security UI HTML Page Domain spoofing

A vulnerability was found in Google Chrome and classified as critical. Affected by this issue is an unknown part of the component Security UI. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Extension HTML Page denial of service

A vulnerability has been found in Google Chrome and classified as problematic. Affected by this vulnerability is some unknown functionality of the component Extension Handler. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Extension HTML Page privilege escalation

A vulnerability, which was classified as critical, was found in Google Chrome. Affected is an unknown functionality of the component Extension Handler. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 SQLite HTML Page Out-of-Bounds information disclosure

A vulnerability, which was classified as critical, has been found in Google Chrome. This issue affects an unknown function of the component SQLite. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 SQLite HTML Page Out-of-Bounds information disclosure

A vulnerability classified as problematic was found in Google Chrome. This vulnerability affects some unknown processing of the component SQLite. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 SQLite HTML Page information disclosure

A vulnerability classified as problematic has been found in Google Chrome. This affects an unknown code block of the component SQLite. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 SQLite HTML Page privilege escalation

A vulnerability was found in Google Chrome. It has been rated as critical. Affected by this issue is an unknown code of the component SQLite. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 on iOS Omnibox HTML Page Address spoofing

A vulnerability was found in Google Chrome on iOS. It has been declared as critical. Affected by this vulnerability is an unknown part of the component Omnibox. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Developer Tools HTML Page information disclosure

A vulnerability was found in Google Chrome. It has been classified as problematic. Affected is some unknown functionality of the component Developer Tools. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 on Android HTML Page Heap-based memory corruption

A vulnerability was found in Google Chrome on Android and classified as critical. This issue affects an unknown functionality. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Omnibox HTML Page URL spoofing

A vulnerability has been found in Google Chrome and classified as critical. This vulnerability affects an unknown function of the component Omnibox. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Audio HTML Page Cross-Origin information disclosure

A vulnerability, which was classified as problematic, was found in Google Chrome. This affects some unknown processing of the component Audio. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Policy Enforcement HTML Page Cross-Origin information disclosure

A vulnerability, which was classified as problematic, has been found in Google Chrome. Affected by this issue is an unknown code block of the component Policy Enforcement. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 Security UI HTML Page spoofing

A vulnerability classified as critical was found in Google Chrome. Affected by this vulnerability is an unknown code of the component Security UI. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB

Google Chrome prior 79.0.3945.79 on iOS Omnibox Domain spoofing

A vulnerability classified as critical has been found in Google Chrome on iOS (Web Browser). Affected is an unknown part of the component Omnibox. Upgrading to version 79.0.3945.79 eliminates this vulnerability.
Auteur: VulDB
First234567891011Last

Événements SSI

FIC

Ayant pour thème cette année "Replacer l'humain au coeur de la cybersécurité", le Forum International de la Cybersécurité occupe les 28, 29 et 30 janvier 2020 le Grand Palais de Lille. Organisé par la Région Hauts-de-France et Euratechnologies, la Gendarmerie Nationale et CEIS.

RSS