Debian Linux Security Advisory 4154-1 - A heap corruption vulnerability was discovered in net-snmp, a suite of Simple Network Management Protocol applications, triggered when parsing the PDU prior to the authentication process. A remote, unauthenticated attacker can take advantage of this flaw to crash the snmpd process (causing a denial of service) or, potentially, execute arbitrary code with the privileges of the user running snmpd.
c2fdf78354d35abec9941075f6a4273bb1213ca58a281c089f7c7f2f8527420a
Whitepaper called DOSfuscation: Exploring the Depths of CMD.exe Obfuscation and Detection Techniques.
409e2b8687a76174f5fa96d055dd6d91550c650388b0d2922e1f0ba7ead480f2
Gentoo Linux Security Advisory 201803-14 - Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could lead to the execution of arbitrary code. Versions less than 52.6.0 are affected.
1f3a94ceae3f19b557b9b182f96a0256325f4f1e1effd4be0f02b5e62dec3892
Ubuntu Security Notice 3608-1 - Richard Maciel Costa discovered that Zsh incorrectly handled certain inputs. An attacker could possibly use this to cause a denial of service. It was discovered that Zsh incorrectly handled certain files. An attacker could possibly use this to execute arbitrary code.
4a99fa767bd53ffe79f1111930bcaa884a7ab3ea59090e770b75211d35a9356a
Ubuntu Security Notice 3609-1 - A use-after-free was discovered in Firefox. If a user were tricked in to opening a specially crafted website, an attacker could potentially exploit this to cause a denial of service or execute arbitrary code.
d35256a660a16419932175d6f94dea291aa409fbf58711b6468f2c1e58baa424
Ubuntu Security Notice 3610-1 - It was discovered that ICU incorrectly handled certain calendars. If an application using ICU processed crafted data, a remote attacker could possibly cause it to crash, leading to a denial of service.
34fe3ae72a2ad4c05fa888a8caef7746d0c5876fb34a09e7b67b23549f8c2cf1
Microsoft Windows Remote Assistance suffers from an XML external entity injection vulnerability.
30f3cbd80b79f0e54f6c7a336934dced0eac0a94cb3f89c1fa94def8ecf8a977
Microsoft Exchange suffers from an open redirect vulnerability.
984f3e5bf9a46dde0835b0d4970d3406f20883bb6d60759b4da0a53b6e0ee2ab
RSA Authentication Agent for Web for both IIS and Apache Web Server version 8.0. 1 and earlier contain multiple vulnerabilities that could potentially be exploit ed by malicious users to compromise affected systems. These issues include cross site scripting, buffer overflow, and information disclosure.
824af128e2d83214afc6cfd21dd6dd7b691bc610075d88c3421407f35c6e5466
Debian Linux Security Advisory 4153-1 - It was discovered that a use-after-free in the compositor of Firefox can result in the execution of arbitrary code.
6fdc327eeeed36a23c75517202563b99a3b87fd50fea612fd920dbbe3b88833b
ManageEngine Service Desk Plus versions prior to 9403 suffer from a cross site scripting vulnerability.
18c8b8c9f96e716e3767d9ce3cef7dc2fab52a801c35c39e4cdbdf13647d3e04
Debian Linux Security Advisory 4152-1 - Two vulnerabilities were discovered in MuPDF, a PDF, XPS, and e-book viewer, which may result in denial of service or remote code execution. An attacker can craft a PDF document which, when opened in the victim host, might consume vast amounts of memory, crash the program, or, in some cases, execute code in the context in which the application is running.
4cae0d16fb6f8a731689702d39274a33edc04ac35c3e35b8938bcc0b279edac0
Microsoft Skype Mobile versions 8.12 and 8.13 suffer from a denial of service vulnerability.
627876f417919cd828a3a6e72a859f920ead6c00795181bacedee7e3d7cd18cb
Sandoba CP:Shop CMS version 2016.1 suffers from multiple cross site scripting vulnerabilities.
64ca989b68e545c4ba0ee54044dee644fa3c5bfa7dc7a7e45edf2ff8068e580f
TestLink Open Source Test Management versions prior to 1.9.16 remote proof of concept code execution exploit.
7f1cec95295792a263ea245ef75d239589db9afc06b5a1a8e021fc6d031a4154
Open-AuditIT Professional version 2.1 suffers from a persistent cross site scripting vulnerability.
ad8b6267228824f15774008cba1ef47e47dc5d189886b7ab5d3f3ddfc68b62bc