[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248678

 
 

909

 
 

195426

 
 

282

 
 
 
Paid content will be excluded from the download.

Filter
Matches : 26648 Download | Alert*

Skype for Business Elevation of Privilege Vulnerability. An attacker could make a specially crafted network call to the target Skype for Business server, which could cause the parsing of an http request made to an arbitrary address. This could disclose IP addresses or port numbers or both to the attacker.

The host is installed with Visual Studio code before 1.81.1 and is prone to a remote code execution vulnerability. A flaw is present in the application, which fails to properly handle Electron software which is consumed by Visual Studio Code. Successful exploitation could allow attackers to execute arbitrary code.

The host is installed with PaperCut NG 20.0.0 before 20.1.9 or 21.0.0 before 21.2.13 or 22.0.0 before 22.1.3 and is prone to a path traversal vulnerability. A flaw is present in the application, which fails to properly handle issues in application servers. Successful exploitation could allow path traversal, enabling attackers to upload, read, or delete arbitrary files.

The host is installed with Artifex Ghostscript before 10.02.0 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to properly handle the pcl/pl/plfont.c:418 in pl_glyph_name function. Successful exploitation allows attackers to cause a denial of service via transforming a crafted PCL file to PDF format.

The host is installed with Adobe Bridge through 12.0.4 or 13.x through 13.0.3 and is prone to an out-of-bounds read vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to cause memory leak.

The host is installed with Adobe Bridge through 12.0.4 or 13.x through 13.0.3 and is prone to a use after free vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to cause memory leak.

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability. The user would have to click on a specially crafted URL to be compromised by the attacker. The vulnerability is in the web server, but the malicious scripts execute in the victim's browser on their machine. Any authenticated attacker could trigger this vulnerability. It does not require admin or other elevated privileges. The ...

Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability. The user would have to click on a specially crafted URL to be compromised by the attacker. The vulnerability is in the web server, but the malicious scripts execute in the victim's browser on their machine. Any authenticated attacker could trigger this vulnerability. It does not require admin or other elevated privileges. The ...

Windows RDP Encoder Mirror Driver Elevation of Privilege Vulnerability. An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.

Skype for Business Remote Code Execution Vulnerability. An attacker who successfully exploited this vulnerability could execute code in the security context of the 'NT AUTHORITY\Network Service' account. An attacker could exploit this vulnerability by leveraging the OcsPowershell endpoint within Skype for Business 2019 and elevate their privileges to execute code as NT Authority\Network Service us ...


Pages:      Start    1621    1622    1623    1624    1625    1626    1627    1628    1629    1630    1631    1632    1633    1634    ..   2664

© SecPod Technologies