Download
| Alert*
|
oval:org.secpod.oval:def:16200
The host is missing an important security update, according to Microsoft security bulletin MS13-103. The update is required to fix a signalR XSS vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to access resources ... oval:org.secpod.oval:def:16198 Microsoft Visual Studio Team Foundation Server 2013 is installed oval:org.secpod.oval:def:16199 The host is installed with Microsoft Visual Studio Team Foundation Server 2013 and is prone to a signalR XSS vulnerability. A flaw is present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to access resources in the context of the targeted user. oval:org.secpod.oval:def:57358 A remote code execution vulnerability exists when Azure DevOps Server and Team Foundation Server (TFS) improperly handle user input. An attacker who successfully exploited the vulnerability could execute code on the target server in the context of the DevOps or TFS service account. To exploit the vu ... |
