VU#354840: Microsoft Windows Type 1 font parsing remote code execution vulnerabilities
Adobe Type Manager,which is provided by atmfd.dll,is a kernel module that is provided by Windows and provides support for OpenType fonts. …
CERT
VU#425163: Machine learning classifiers trained via gradient descent are vulnerable to arbitrary misclassification attack
This vulnerability results from using gradient descent to determine classification of inputs via a neural network. As such,it is a …
VU#872016: Microsoft SMBv3 compression remote code execution vulnerability
Microsoft Server Message Block 3.1.1(SMBv3)contains a vulnerability in the way that it handles connections that use compression. This …
VU#782301: pppd vulnerable to buffer overflow due to a flaw in EAP packet processing
PPP is the protocol used for establishing internet links over dial-up modems,DSL connections,and many other types of point-to-point links …
VU#498544: ZyXEL pre-authentication command injection in weblogin.cgi
CWE-78:Improper Neutralization of Special Elements used in an OS Command(‘OS Command Injection’) Multiple ZyXEL devices achieve …
VU#498544: ZyXEL NAS pre-authentication command injection in weblogin.cgi
CWE-78:Improper Neutralization of Special Elements used in an OS Command(‘OS Command Injection’) ZyXEL NAS devices achieve authentication …
VU#597809: IBM ServeRAID Manager exposes unauthenticated Java Remote Method Invocation (RMI)
IBM ServeRAID Manager includes an embedded instance of Java version 1.4.2. Both ServeRAID Manager and Java 1.4.2 are no longer supported. …
VU#261385: Cisco Discovery Protocol (CDP) enabled devices are vulnerable to denial-of-service and remote code execution
CVE-2020-3110 Cisco’s Video Surveillance 8000 Series IP cameras with CDP enabled are vulnerable to a heap overflow in the parsing of …
VU#390745: OpenSMTPD vulnerable to local privilege escalation and remote code execution
OpenSMTPD is an open-source server-side implementation of the Simple Mail Transfer Protocol(SMTP)that is part of the OpenBSD Project. …
VU#338824: Microsoft Internet Explorer Scripting Engine memory corruption vulnerability
Microsoft has released Security Advisory ADV200001,which describes a memory corruption vulnerability in the Scripting Engine. This …