- EPSS 8.95%
- Veröffentlicht 10.12.2014 21:59:18
- Zuletzt bearbeitet 06.05.2026 22:30:45
Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2014-8446,...
CVE-2014-7237
- EPSS 20.06%
- Veröffentlicht 16.10.2014 00:55:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
lib/TWiki/Sandbox.pm in TWiki 6.0.0 and earlier, when running on Windows, allows remote attackers to bypass intended access restrictions and upload files with restricted names via a null byte (%00) in a filename to bin/upload.cgi, as demonstrated usi...
- EPSS 15.16%
- Veröffentlicht 20.10.2011 00:55:00
- Zuletzt bearbeitet 16.06.2026 23:33:04
The Home Page component in Cisco CiscoWorks Common Services before 4.1 on Windows, as used in CiscoWorks LAN Management Solution, Cisco Security Manager, Cisco Unified Service Monitor, Cisco Unified Operations Manager, CiscoWorks QoS Policy Manager, ...
CVE-2011-3389
- EPSS 73.33%
- Veröffentlicht 06.09.2011 19:55:03
- Zuletzt bearbeitet 16.06.2026 23:33:12
The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man...
CVE-2011-0638
- EPSS 1.43%
- Veröffentlicht 25.01.2011 01:00:03
- Zuletzt bearbeitet 16.06.2026 23:27:47
Microsoft Windows does not properly warn the user before enabling additional Human Interface Device (HID) functionality over USB, which allows user-assisted attackers to execute arbitrary programs via crafted USB data, as demonstrated by keyboard and...
CVE-2010-3889
- EPSS 1.61%
- Veröffentlicht 08.10.2010 22:00:37
- Zuletzt bearbeitet 16.06.2026 23:23:45
Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified by Microsoft researchers and other researchers.
CVE-2010-3888
- EPSS 3.93%
- Veröffentlicht 08.10.2010 22:00:37
- Zuletzt bearbeitet 16.06.2026 23:23:45
Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified by Kaspersky Lab researchers and other researchers...
CVE-2010-3143
- EPSS 20.77%
- Veröffentlicht 27.08.2010 19:00:01
- Zuletzt bearbeitet 16.06.2026 23:22:14
Untrusted search path vulnerability in Microsoft Windows Contacts allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wab32res.dll that is located in the same folder as a ....
CVE-2010-3139
- EPSS 23.5%
- Veröffentlicht 27.08.2010 19:00:01
- Zuletzt bearbeitet 16.06.2026 23:22:13
Untrusted search path vulnerability in Microsoft Windows Progman Group Converter (grpconv.exe) allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse imm.dll that is located i...
CVE-2009-3864
- EPSS 22.48%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:30
The Java Update functionality in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22 and JDK and JRE 6 before Update 17, when a non-English version of Windows is used, does not retrieve available new JRE versions, which ...