Download
| Alert*
oval:org.secpod.oval:def:10960
Microsoft Lync Server 2013 is installed oval:org.secpod.oval:def:19868 The host is installed with Lync Server 2010 or 2013 and is prone to a content sanitization vulnerability. A flaw is present in the application, which fails to fails to properly sanitize specially crafted content. Successful exploitation could allow attackers to potentially execute scripts in the use ... oval:org.secpod.oval:def:19869 The host is missing an important security update according to Microsoft security bulletin, MS14-032. The update is required to fix an information disclosure vulnerability. A flaw is present in the application, which fails to fails to properly sanitize specially crafted content. Successful exploitati ... oval:org.secpod.oval:def:58429 An information disclosure vulnerability exists in Lync 2013. An attacker who exploited it could read arbitrary files on the victim's machine. To exploit the vulnerability, an attacker needs to instantiate a conference and modify the meeting link with malicious content and send the link to a victim. ... oval:org.secpod.oval:def:58536 The host is missing an important security update for KB4515509 oval:org.secpod.oval:def:21091 The host is installed with Lync Server 2010 or 2013 and is prone to a denial of service vulnerability. A flaw is present in the application, which improperly handles certain exceptions. Successful exploitation could allow attackers to cause the target system to stop responding. oval:org.secpod.oval:def:21092 The host is missing an important security update according to Microsoft security bulletin, MS14-055. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to fails to properly sanitize specially crafted content or handle a crafted request or ca ... oval:org.secpod.oval:def:21090 The host is installed with Lync Server 2013 or 2010 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a crafted request. Successful exploitation could allow attackers to cause a denial of service (NULL pointer dereference and daem ... oval:org.secpod.oval:def:21088 The host is installed with Lync Server 2013 or 2010 and is prone to a cross-site scripting (XSS) vulnerability. A flaw is present in the application, which fails to properly handle a crafted URL. Successful exploitation could allow attackers to inject arbitrary web script or HTML. oval:org.secpod.oval:def:10961 The host is missing an important security update according to Microsoft bulletin, MS13-041. The update is required to fix remote code execution vulnerability. A flaw is present in the applications, which attempts to access an object in memory that has been deleted. Successful exploitation allows att ... oval:org.secpod.oval:def:10959 The host is installed with microsoft Lync Attendee 2010, Lync 2010, Lync server 2013 or Office Communicator 2007 R2 and is prone to remote code execution vulnerability. A flaw is present in the applications, which attempts to access an object in memory that has been deleted. Successful exploitation ... oval:org.secpod.oval:def:26573 The host is missing an important security update according to Microsoft security bulletin, MS15-104. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly sanitize specially crafted content or handle a crafted request or call. An at ... oval:org.secpod.oval:def:26570 The host is installed with Lync Server 2013 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly sanitize specially crafted content. An attacker who successfully exploited this vulnerability could potentially execute scripts in the us ... oval:org.secpod.oval:def:26572 The host is installed with Lync Server 2013 and is prone to a XSS information disclosure vulnerability. A flaw is present in the application, which fails to properly sanitize specially crafted content. An attacker who successfully exploited this vulnerability could potentially execute scripts in the ... oval:org.secpod.oval:def:26571 The host is installed with Lync Server 2013 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly sanitize specially crafted content. An attacker who successfully exploited this vulnerability could potentially execute scripts in the us ... oval:org.secpod.oval:def:81886 Skype for Business and Lync Remote Code Execution Vulnerability oval:org.secpod.oval:def:81938 The host is missing an important security update for KB5016714 oval:org.secpod.oval:def:78713 Skype for Business Information Disclosure Vulnerability oval:org.secpod.oval:def:71806 Skype for Business and Lync Spoofing Vulnerability oval:org.secpod.oval:def:71805 Skype for Business and Lync Remote Code Execution Vulnerability oval:org.secpod.oval:def:71867 The host is missing an important security update 5003729 oval:org.secpod.oval:def:69074 The host is missing an important security update for KB5000675 oval:org.secpod.oval:def:69016 Skype for Business and Lync Denial of Service Vulnerability oval:org.secpod.oval:def:69075 The host is missing an important security update for KB5000688 oval:org.secpod.oval:def:69076 Skype for Business and Lync Spoofing Vulnerability oval:org.secpod.oval:def:64344 The host is missing a critical security update for KB4571334 oval:org.secpod.oval:def:64196 An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation. An attacker who successfully exploited the vulnerability could bypass authentication and achieve improper access. To exploit this vulnerability, an ... |