[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250108

 
 

909

 
 

196064

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26295 Download | Alert*

An information disclosure vulnerability exists in Lync 2013. An attacker who exploited it could read arbitrary files on the victim's machine. To exploit the vulnerability, an attacker needs to instantiate a conference and modify the meeting link with malicious content and send the link to a victim. The update addresses the vulnerability by changing how the URL is being resolved.

Host is installed with Kaspersky Anti-Virus 2019 before Patch F and is prone to an Information exposure vulnerability. A flaw is present in the application, which fails to properly handle a specially crafted webpage. Successful exploitation allows an attacker to potentially disclose unique Product ID.

The host is installed with Bamboo CI server before 7.2.2 and is prone to a sensitive data exposure vulnerability. A flaw is present in the application, which fails to properly handle an issue in the /chart endpoint. Successful exploitation could allow an unauthenticated remote attacker to view a stack trace that may reveal the path for the home directory in disk and if certain files exists on the ...

The host is installed with OpenSSH before 5.8p2 and is prone to a exposure of sensitive information to an unauthorized actor vulnerability. A flaw is present in the application, which is due to ssh-keysign.c in ssh-keysign which on certain platforms executes ssh-rand-helper with unintended open file descriptors. Successful exploitation could allow remote attackers to obtain sensitive key informati ...

The host is installed with Oracle VM VirtualBox 5.0.x before 5.0.28 or 5.1.x before 5.1.8 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle unknown vectors. Successful exploitation can result in unauthorized read access to a subset of Oracle VM VirtualBox accessible data.

The host is installed with Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0 or 12.1.3.0 and is prone to a remote security vulnerability. A flaw is present in the application, which fails to properly handle HTTP requests. Successful exploitation allows unauthorized access to critical data or complete access to all Oracle WebLogic Server accessible data.

The host is installed with Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.3.0, 12.2.1.1 or 12.2.1.2 and is prone to a remote information disclosure vulnerability. A flaw is present in the application, which fails to properly handle HTTP requests. Successful exploitation allows an attacker to give permission to an unauthorized read access to a subset of Oracle WebLogic ...

An information disclosure vulnerability exists in Outlook when a message is opened. This vulnerability could potentially result in the disclosure of sensitive information to a malicious site. To exploit the vulnerability, an attacker would have to send a malicious email to a user and convince the user to open the email. A connection to a remote SMB server could then be automatically initiated, ena ...

The host is installed with SAP BusinessObjects Business Intelligence Platform and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle crafted InfoObject queries. Successful exploitation could allow remote attackers to expose the CMS InfoObjects database.

An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing a malicious XEL file containing a reference to an external entity. An attacker who successfully exploited this vulnerability could read arbitrary files via an XML external entity declaration. To exploit the vulnerability, an attacker must entice a user on an affected SSMS server to open a s ...


Pages:      Start    2588    2589    2590    2591    2592    2593    2594    2595    2596    2597    2598    2599    2600    2601    ..   2629

© SecPod Technologies