|
247771
|
5.4 |
MEDIUM
Network
|
microsoft
|
sharepoint_enterprise_server
|
An elevation of privilege vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server, aka "Microsoft SharePoint …
|
CWE-79
Cross-site Scripting
|
CVE-2018-1005
|
2024-11-21 12:58 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247772
|
7.5 |
HIGH
Network
|
microsoft
|
internet_explorer
|
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects …
|
CWE-787
Out-of-bounds Write
|
CVE-2018-1001
|
2024-11-21 12:58 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247773
|
5.3 |
MEDIUM
Network
|
microsoft
|
internet_explorer
|
An information disclosure vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Information Disclosure Vulnerability." This a…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-1000
|
2024-11-21 12:58 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247774
|
8.8 |
HIGH
Network
|
microsoft
|
windows_server_2012 windows_10 windows_server_2016 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1
|
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affe…
|
CWE-20
Improper Input Validation
|
CVE-2018-1013
|
2024-11-21 12:58 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247775
|
8.8 |
HIGH
Network
|
microsoft
|
windows_server_2012 windows_10 windows_server_2016 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1
|
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affe…
|
CWE-20
Improper Input Validation
|
CVE-2018-1012
|
2024-11-21 12:58 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247776
|
8.8 |
HIGH
Network
|
microsoft
|
windows_server_2012 windows_10 windows_server_2016 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1
|
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka "Microsoft Graphics Remote Code Execution Vulnerability." This affe…
|
CWE-20
Improper Input Validation
|
CVE-2018-1010
|
2024-11-21 12:58 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247777
|
7.0 |
HIGH
Local
|
microsoft
|
windows_rt_8.1 windows_server_2012 windows_server_2016 windows_7 windows_10 windows_8.1 windows_server_2008
|
An elevation of privilege vulnerability exists in Windows Adobe Type Manager Font Driver (ATMFD.dll) when it fails to properly handle objects in memory, aka "OpenType Font Driver Elevation of Privile…
|
NVD-CWE-noinfo
|
CVE-2018-1008
|
2024-11-21 12:58 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247778
|
8.8 |
HIGH
Network
|
microsoft
|
internet_explorer windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_server_2008 windows_7 windows_rt_8.1
|
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, …
|
CWE-787
Out-of-bounds Write
|
CVE-2018-1004
|
2024-11-21 12:58 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247779
|
7.8 |
HIGH
Local
|
microsoft
|
windows_server_2012 windows_10 windows_server_2016 windows_8.1 windows_server_2008 windows_7 windows_rt_8.1
|
A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vuln…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-1003
|
2024-11-21 12:58 |
2018-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247780
|
7.8 |
HIGH
Local
|
foxitsoftware
|
pdf_activex
|
Foxit PDF ActiveX before 5.5.1 allows remote code execution via command injection because of the lack of a security permission control.
|
CWE-77
Command Injection
|
CVE-2018-19418
|
2024-11-21 12:57 |
2021-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|