CWE:
 

Sorry. No results for Bugtraq WLB2


CVEMAP Search Results

CVE
Details
Description
2018-07-20
Medium
CVE-2018-5007

Vendor: Adobe
Software: Flash player
 

 
Adobe Flash Player 30.0.0.113 and earlier versions have a Type Confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

 
High
CVE-2018-12812

Vendor: Adobe
Software: Acrobat dc
 

 
Adobe Acrobat and Reader 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier versions have a Type Confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

 
Medium
CVE-2018-12794

Vendor: Adobe
Software: Acrobat dc
 

 
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Type Confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

 
Low
CVE-2018-12793

Vendor: Adobe
Software: Acrobat dc
 

 
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Type Confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

 
Medium
CVE-2018-5057

Vendor: Adobe
Software: Acrobat dc
 

 
Adobe Acrobat and Reader 2018.011.20040 and earlier, 2017.011.30080 and earlier, and 2015.006.30418 and earlier versions have a Type Confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

 
2018-07-19
Medium
CVE-2018-14403

Vendor: Techsmith
Software: Mp4v2
 

 
MP4NameFirstMatches in mp4util.cpp in MP4v2 2.0.0 mishandles substrings of atom names, leading to use of an inappropriate data type for associated atoms. The resulting type confusion can cause out-of-bounds memory access.

 
2018-07-18
Medium
CVE-2018-14379

Vendor: Techsmith
Software: Mp4v2
 

 
MP4Atom::factory in mp4atom.cpp in MP4v2 2.0.0 incorrectly uses the MP4ItemAtom data type in a certain case where MP4DataAtom is required, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted MP4 file, because access to the data structure has different expectations about layout as a result of this type confusion.

 
2018-07-09
Medium
CVE-2018-4953

Vendor: Adobe
Software: Acrobat dc
 

 
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have a Type Confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

 
Medium
CVE-2018-4945

Vendor: Adobe
Software: Flash player
 

 
Adobe Flash Player versions 29.0.0.171 and earlier have a Type Confusion vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.

 
2018-06-16
Medium
CVE-2018-12453

Vendor: Redislabs
Software: Redis
 

 
Type confusion in the xgroupCommand function in t_stream.c in redis-server in Redis before 5.0 allows remote attackers to cause denial-of-service via an XGROUP command in which the key is not a stream.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top