Vuldb Updates

A vulnerability classified as very critical has been found in DjVuLibre. Affected is an unknown function. The manipulation leads to code injection. This vulnerability is traded as CVE-2012-6535. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in PrestaShop. Affected is an unknown function of the file redirect.php. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2012-6641. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in RedCloth Library up to 4.2.9 on Ruby. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting. This vulnerability is handled as CVE-2012-6684. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability was found in Microsoft .NET Framework 3.5/3.5 SP1/3.5.1/4 and classified as critical. This issue affects the function Replace. The manipulation leads to improper input validation. The identification of this vulnerability is CVE-2013-0005. The attack may be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as critical, was found in Microsoft Windows 7/Server 2008 R2. Affected is an unknown function of the component Print Spooler. The manipulation leads to memory corruption. This vulnerability is traded as CVE-2013-0011. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Internet Explorer 6/7/8/9/10. It has been rated as critical. Affected by this issue is some unknown functionality of the component Vector Markup Language Handler. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2013-0030. The attack may be launched remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as critical, was found in Microsoft Windows up to XP. Affected is the function callback of the component .NET Framework. The manipulation leads to improper access controls. This vulnerability is traded as CVE-2013-0073. It is possible to launch the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability classified as critical was found in Microsoft Windows up to XP. This vulnerability affects unknown code of the file TCP/IP of the component TCP FIN WAIT Handler. The manipulation leads to denial of service. This vulnerability was named CVE-2013-0075. The attack can be initiated remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Silverlight 5.0.60401.0/5.0.60818.0/5.0.61118.0. It has been declared as very critical. Affected by this vulnerability is an unknown functionality of the component Application Handler. The manipulation leads to memory corruption. This vulnerability is known as CVE-2013-0074. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in CA Release Automation up to 4.7.0 and classified as critical. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The identification of this vulnerability is CVE-2014-8246. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in CA Release Automation up to 4.7.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2014-8247. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Media5 Mediatrix Voip Gateway 4402 up to Dgw 1.1.13.186 and classified as problematic. This vulnerability affects unknown code of the component Web Management Interface. The manipulation of the argument username leads to cross site scripting. This vulnerability was named CVE-2014-1612. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in Mozilla Firefox 26 and classified as problematic. Affected by this issue is some unknown functionality of the component P-1 Public DH Value Handler. The manipulation leads to cryptographic issues. This vulnerability is handled as CVE-2014-1491. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Adobe Acrobat Reader 11.1.0/11.1.3 on Android. Affected by this issue is the function ARJavaScript/ARCloudPrintActivity/ARCreatePDFWebView of the component PDF File Handler. The manipulation leads to improper access controls. This vulnerability is handled as CVE-2014-0514. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Microsoft Windows Server 2003/Server 2008/Vista/XP. This affects an unknown part in the library Quartz.dll of the component DirectShow. The manipulation leads to code injection. This vulnerability is uniquely identified as CVE-2013-0077. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability, which was classified as problematic, has been found in Microsoft Windows 7/Server 2008 R2. This issue affects some unknown processing of the file Client/Server of the component Client/Server Run-time Subsystem. The manipulation leads to improper resource management. The identification of this vulnerability is CVE-2013-0076. It is possible to launch the attack on the local host. There is no exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Microsoft Windows Defender on Windows 8/Windows RT. It has been classified as critical. This affects an unknown part of the component Registry Path Value. The manipulation leads to improper input validation. This vulnerability is uniquely identified as CVE-2013-0078. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Microsoft OneNote 2010 SP1 and classified as critical. Affected by this vulnerability is an unknown functionality of the component ONE File Handler. The manipulation leads to memory corruption. This vulnerability is known as CVE-2013-0086. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to apply a patch to fix this issue.

A vulnerability was found in Google Chrome 27.0.1444.0. It has been classified as critical. Affected is an unknown function of the component Widget Handler. The manipulation leads to improper resource management. This vulnerability is traded as CVE-2013-2842. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Coppermine-gallery Photo Gallery up to 1.5.3. It has been classified as problematic. This affects an unknown part of the file edit_one_pic.php. The manipulation of the argument keywords leads to cross site scripting. This vulnerability is uniquely identified as CVE-2012-1613. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.