CVE-2006-0003
Unspecified vulnerability in the RDS.Dataspace ActiveX control, which is contained in ActiveX Data Objects (ADO) and distributed in Microsoft Data Access Components (MDAC) 2.7 and 2.8, allows remote attackers to execute arbitrary code via unknown attack vectors.
|
Loading description
|
|
Severity | MEDIUM |
Base Score | 5.1 |
Impact Score | 6.4 |
Exploit Score | 4.9 |
Confidentiality Impact | PARTIAL |
Integrity Impact | PARTIAL |
Availability Impact | PARTIAL | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2010-0188
Unspecified vulnerability in Adobe Reader and Acrobat 8.x before 8.2.1 and 9.x before 9.3.1 allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unknown vectors.
|
Loading description
|
|
Severity | HIGH |
Base Score | 9.3 |
Impact Score | 10 |
Exploit Score | 8.6 |
Confidentiality Impact | COMPLETE |
Integrity Impact | COMPLETE |
Availability Impact | COMPLETE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2011-3402
Unspecified vulnerability in the TrueType font parsing engine in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via crafted font data in a Word document or web page, as exploited in the wild in November 2011 by Duqu, aka "TrueType Font Parsing Vulnerability."
|
Loading description
|
|
Severity | HIGH |
Base Score | 9.3 |
Impact Score | 10 |
Exploit Score | 8.6 |
Confidentiality Impact | COMPLETE |
Integrity Impact | COMPLETE |
Availability Impact | COMPLETE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2012-0507
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE: the previous information was obtained from the February 2012 Oracle CPU. Oracle has not commented on claims from a downstream vendor and third party researchers that this issue occurs because the AtomicReferenceArray class implementation does not ensure that the array is of the Object[] type, which allows attackers to cause a denial of service (JVM crash) or bypass Java sandbox restrictions. NOTE: this issue was originally mapped to CVE-2011-3571, but that identifier was already assigned to a different issue.
|
Loading description
|
|
Severity | HIGH |
Base Score | 10 |
Impact Score | 10 |
Exploit Score | 10 |
Confidentiality Impact | COMPLETE |
Integrity Impact | COMPLETE |
Availability Impact | COMPLETE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2012-1889
Microsoft XML Core Services 3.0, 4.0, 5.0, and 6.0 accesses uninitialized memory locations, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
|
Loading description
|
|
Severity | HIGH |
Base Score | 9.3 |
Impact Score | 10 |
Exploit Score | 8.6 |
Confidentiality Impact | COMPLETE |
Integrity Impact | COMPLETE |
Availability Impact | COMPLETE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2012-4681
Multiple vulnerabilities in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allow remote attackers to execute arbitrary code via a crafted applet that bypasses SecurityManager restrictions by (1) using com.sun.beans.finder.ClassFinder.findClass and leveraging an exception with the forName method to access restricted classes from arbitrary packages such as sun.awt.SunToolkit, then (2) using "reflection with a trusted immediate caller" to leverage the getField method to access and modify private fields, as exploited in the wild in August 2012 using Gondzz.class and Gondvv.class.
|
Loading description
|
|
Severity | HIGH |
Base Score | 10 |
Impact Score | 10 |
Exploit Score | 10 |
Confidentiality Impact | COMPLETE |
Integrity Impact | COMPLETE |
Availability Impact | COMPLETE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2012-4792
Use-after-free vulnerability in Microsoft Internet Explorer 6 through 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to an object that (1) was not properly allocated or (2) is deleted, as demonstrated by a CDwnBindInfo object, and exploited in the wild in December 2012.
|
Loading description
|
|
Severity | HIGH |
Base Score | 9.3 |
Impact Score | 10 |
Exploit Score | 8.6 |
Confidentiality Impact | COMPLETE |
Integrity Impact | COMPLETE |
Availability Impact | COMPLETE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2012-5076
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to JAX-WS.
|
Loading description
|
|
Severity | HIGH |
Base Score | 10 |
Impact Score | 10 |
Exploit Score | 10 |
Confidentiality Impact | COMPLETE |
Integrity Impact | COMPLETE |
Availability Impact | COMPLETE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2013-0422
Multiple vulnerabilities in Oracle Java 7 before Update 11 allow remote attackers to execute arbitrary code by (1) using the public getMBeanInstantiator method in the JmxMBeanServer class to obtain a reference to a private MBeanInstantiator object, then retrieving arbitrary Class references using the findClass method, and (2) using the Reflection API with recursion in a way that bypasses a security check by the java.lang.invoke.MethodHandles.Lookup.checkSecurityManager method due to the inability of the sun.reflect.Reflection.getCallerClass method to skip frames related to the new reflection API, as exploited in the wild in January 2013, as demonstrated by Blackhole and Nuclear Pack, and a different vulnerability than CVE-2012-4681 and CVE-2012-3174. NOTE: some parties have mapped the recursive Reflection API issue to CVE-2012-3174, but CVE-2012-3174 is for a different vulnerability whose details are not public as of 20130114. CVE-2013-0422 covers both the JMX/MBean and Reflection API issues. NOTE: it was originally reported that Java 6 was also vulnerable, but the reporter has retracted this claim, stating that Java 6 is not exploitable because the relevant code is called in a way that does not bypass security checks. NOTE: as of 20130114, a reliable third party has claimed that the findClass/MBeanInstantiator vector was not fixed in Oracle Java 7 Update 11. If there is still a vulnerable condition, then a separate CVE identifier might be created for the unfixed issue.
|
Loading description
|
|
Severity | HIGH |
Base Score | 10 |
Impact Score | 10 |
Exploit Score | 10 |
Confidentiality Impact | COMPLETE |
Integrity Impact | COMPLETE |
Availability Impact | COMPLETE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2013-0431
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, and OpenJDK 7, allows user-assisted remote attackers to bypass the Java security sandbox via unspecified vectors related to JMX, aka "Issue 52," a different vulnerability than CVE-2013-1490.
|
Loading description
|
|
Severity | MEDIUM |
Base Score | 5 |
Impact Score | 2.9 |
Exploit Score | 10 |
Confidentiality Impact | NONE |
Integrity Impact | PARTIAL |
Availability Impact | NONE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2013-0634
Adobe Flash Player before 10.3.183.51 and 11.x before 11.5.502.149 on Windows and Mac OS X, before 10.3.183.51 and 11.x before 11.2.202.262 on Linux, before 11.1.111.32 on Android 2.x and 3.x, and before 11.1.115.37 on Android 4.x allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted SWF content, as exploited in the wild in February 2013.
|
Loading description
|
|
Severity | HIGH |
Base Score | 9.3 |
Impact Score | 10 |
Exploit Score | 8.6 |
Confidentiality Impact | COMPLETE |
Integrity Impact | COMPLETE |
Availability Impact | COMPLETE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2013-1493
The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (crash) via an image with crafted raster parameters, which triggers (1) an out-of-bounds read or (2) memory corruption in the JVM, as exploited in the wild in February 2013.
|
Loading description
|
|
Severity | HIGH |
Base Score | 10 |
Impact Score | 10 |
Exploit Score | 10 |
Confidentiality Impact | COMPLETE |
Integrity Impact | COMPLETE |
Availability Impact | COMPLETE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|
CVE-2013-2423
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via unknown vectors related to HotSpot. NOTE: the previous information is from the April 2013 CPU. Oracle has not commented on claims from the original researcher that this vulnerability allows remote attackers to bypass permission checks by the MethodHandles method and modify arbitrary public final fields using reflection and type confusion, as demonstrated using integer and double fields to disable the security manager.
|
Loading description
|
|
Severity | MEDIUM |
Base Score | 4.3 |
Impact Score | 2.9 |
Exploit Score | 8.6 |
Confidentiality Impact | NONE |
Integrity Impact | PARTIAL |
Availability Impact | NONE | Access Vector | null |
Authentication | NONE |
Ease of Access | |
|