» 2020 » 2월

Adobe Acrobat and Reader versions 2019.021.20061 and earlier, 2017.011.30156 and earlier, 2017.011.30156 and earlier, and 2015.006.30508 and earlier have a privilege escalation vulnerability. Successful exploitation could lead to arbitrary file system write.

Source: CVE-2020-3762

CVE-2020-3751

Posted on 2020년 2월 14일2020년 2월 14일 by admin

CVE-2020-3751

Adobe Acrobat and Reader versions 2019.021.20061 and earlier, 2017.011.30156 and earlier, 2017.011.30156 and earlier, and 2015.006.30508 and earlier have an use after free vulnerability. Successful exploitation could lead to arbitrary code execution .

Source: CVE-2020-3751

CVE-2020-7051

Posted on 2020년 2월 14일2020년 2월 14일 by admin

CVE-2020-7051

An issue was discovered in Codologic Codoforum 4.8.4. While creating a new topic as a normal user, it is possible to add a poll that is automatically loaded in the DOM once the thread/topic is opened. Because session cookies lack the HttpOnly flag, it is possible to steal authentication cookies and take over accounts.

Source: CVE-2020-7051

CVE-2020-3760

Posted on 2020년 2월 14일2020년 2월 14일 by admin

CVE-2020-3760

Adobe Digital Editions versions 4.5.10 and below have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.

Source: CVE-2020-3760

CVE-2020-3763

Posted on 2020년 2월 14일2020년 2월 14일 by admin

CVE-2020-3763

Source: CVE-2020-3763

CVE-2020-8614

Posted on 2020년 2월 14일2020년 2월 14일 by admin

CVE-2020-8614

An issue was discovered on Askey AP4000W TDC_V1.01.003 devices. An attacker can perform Remote Code Execution (RCE) by sending a specially crafted network packer to the bd_svr service listening on TCP port 54188.

Source: CVE-2020-8614

CVE-2020-3759

Posted on 2020년 2월 14일2020년 2월 14일 by admin

CVE-2020-3759

Adobe Digital Editions versions 4.5.10 and below have a buffer errors vulnerability. Successful exploitation could lead to information disclosure.

Source: CVE-2020-3759