[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249966

 
 

909

 
 

195636

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26513 Download | Alert*

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing malicious XML content containing a reference to an external entity. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external entity declaration. To exploit the vulnerability, an attacker must entice a user on an affected SSMS server to open a ...

The host is installed with NetMechanica NetDecision before 4.6.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle an invalid version number. Successful exploitation could allow attackers to obtain the source code of NetDecision script files with a .nd extension.

The host is installed with NetMechanica NetDecision before 4.6.1 and is prone an information disclosure vulnerability. A flaw is present in the application, which fails to handle a request with a trailing "?". Successful exploitation could allow attackers to obtain the installation path.

The host is installed with Symantec Altiris WISE Package Studio before 8.0MR1 and is prone to multiple sql injection vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation could allow remote attackers to execute arbitrary SQL commands.

An information disclosure vulnerability exists in Lync 2013. An attacker who exploited it could read arbitrary files on the victim's machine. To exploit the vulnerability, an attacker needs to instantiate a conference and modify the meeting link with malicious content and send the link to a victim. The update addresses the vulnerability by changing how the URL is being resolved.

Host is installed with Kaspersky Anti-Virus 2019 before Patch F and is prone to an Information exposure vulnerability. A flaw is present in the application, which fails to properly handle a specially crafted webpage. Successful exploitation allows an attacker to potentially disclose unique Product ID.

The host is installed with Pro-face WinGP PC Runtime 3.01.100 or earlier and is prone to information disclosure vulnerability. A flaw is present in the application, which fails to handle a crafted packet with a certain opcode. Successful exploitation could allow remote attackers to obtain sensitive information from daemon memory crash.

The host is installed with IBM Rational ClearQuest 7.1.1 before 7.1.1.9 or 7.1.2 before 7.1.2.6 and is prone to SQL injection vulnerability. A flaw is present in the application, which fails to handle certain fields in the Maintenance tool. Successful exploitation allows remote attackers to execute arbitrary SQL commands by leveraging an error in the user-database upgrade feature.

The host is installed with Bamboo CI server before 7.2.2 and is prone to a sensitive data exposure vulnerability. A flaw is present in the application, which fails to properly handle an issue in the /chart endpoint. Successful exploitation could allow an unauthenticated remote attacker to view a stack trace that may reveal the path for the home directory in disk and if certain files exists on the ...

The host is installed with OpenSSH before 5.8p2 and is prone to a exposure of sensitive information to an unauthorized actor vulnerability. A flaw is present in the application, which is due to ssh-keysign.c in ssh-keysign which on certain platforms executes ssh-rand-helper with unintended open file descriptors. Successful exploitation could allow remote attackers to obtain sensitive key informati ...


Pages:      Start    2602    2603    2604    2605    2606    2607    2608    2609    2610    2611    2612    2613    2614    2615    ..   2651

© SecPod Technologies