ESpace 7910; ESpace 7950; ESpace 8950 Security Vulnerabilities
Vulnerable URL: http://www.rts.ch/audio/audio/espace-2/programmes/entre-les-lignes/7225854-florian-eglin-holocauste-18-11-2015.html?x">x=1 Details: Description| Value ---|--- Patched:| Yes, at 12.04.2016 Latest check for patch:| 12.04.2016 02:05 GMT Vulnerability type:| XSS Vulnerability status:...
6.3AI Score
Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is unauthorized, which allows remote attackers to bypass intended access restrictions by disregarding this header and processing the response...
6.9AI Score
0.003EPSS
Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is unauthorized, which allows remote attackers to bypass intended access restrictions by disregarding this header and processing the response...
6.7AI Score
0.003EPSS
Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is unauthorized, which allows remote attackers to bypass intended access restrictions by disregarding this header and processing the response...
7.2AI Score
0.003EPSS
Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is unauthorized, which allows remote attackers to bypass intended access restrictions by disregarding this header and processing the response...
6.7AI Score
0.003EPSS
Security Advisory - DoS Vulnerability in Huawei U2990 and U2980
Huawei U2990 and U2980 have a DoS vulnerability caused by no error correction mechanism when handling specific signaling packets. An attacker can send malformed packets to cause a denial of service condition in some services of the U2990 and U2980. (Vulnerability ID: HWPSIRT-2015-09025) This...
0.6AI Score
0.002EPSS
Security Advisory - DoS Vulnerability in Huawei eSpace 8950 IP Phone
When Huawei eSpace 8950 IP phone receive some type of malicious ARP packets, memory leak may occur on the network interface card. When the memory is overloaded by such packets, the IP phone restarts (Vulnerability ID: HWPSIRT-2015-08041). This vulnerability has been assigned Common Vulnerabilities....
7.5CVSS
7.2AI Score
0.002EPSS
Security Advisory - DoS Vulnerability in Huawei U2990 and U2980
Huawei U2990 and U2980 have a DoS vulnerability caused by no error correction mechanism when handling specific signaling packets. An attacker can send malformed packets to cause a denial of service condition in some services of the U2990 and U2980. (Vulnerability ID: HWPSIRT-2015-09025) This...
7.4AI Score
0.002EPSS
espace-recettes.fr XSS vulnerability
Vulnerable URL: http://www.espace-recettes.fr/user/password/">'>-->); Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016 23:39 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 36616 Google Pagerank| 2 VIP w...
6.3AI Score
Vulnerable URL: http://www.eternam.fr/index.phtml?srub=24&lng;=FR&actionespaceclient;=1&ClientActionLogin;=chargement&BackToUrl;=votre-espace-membre-_l_FR_r_25.html&CLIKEO;_EMAIL=%22%3E%3Cscript%3Ealert%28%27XSSPOSED%27%29%3C%2Fscript%3E&CLIKEO;_MDP=%22%3E%3Cscript%3Ealert&TentaviveLoginClient;= .....
6.3AI Score
Medium Alert ID: 41908 First Published: 2015 November 3 20:21 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat (RuleID19129) may contain the following...
0.4AI Score
Vulnerable URL: https://www.net-iris.fr/espace-client/identification.php Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 30533 Google Pagerank| 6 VIP website status:| Yes Check...
6.3AI Score
espace-aubade.fr XSS vulnerability
Vulnerable URL: https://www.espace-aubade.fr/recherche?recherche=%22%3E%3Csvg/onload=alert%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 19:52 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa...
6.3AI Score
espace-recettes.fr XSS vulnerability
Vulnerable URL: http://www.espace-recettes.fr/search/tmrc_solr_recipe/%22%3E%3Csvg/onload=alert%28/XSSPOSED/%29%3E?filters=type%3Arecipes Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016 23:18 GMT Vulnerability type:| XSS Vulnerability status:|...
6.3AI Score
chiens-online.com XSS vulnerability
Vulnerable URL: http://www.chiens-online.com/identification-espace-membre.html#signupForm Details: Description| Value ---|--- Patched:| Yes, at 23.11.2017 Latest check for patch:| 23.11.2017 08:43 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 185849 Google...
6.3AI Score
espace-recettes.fr XSS vulnerability
Vulnerable URL: http://www.espace-recettes.fr/search/tmrc_solr_recipe/%22%3E%3Csvg/onload%3Dalert%28/XSSPOSED/%29%3E?filters=type%3Arecipes Details: Description| Value ---|--- Patched:| Yes, at 30.01.2016 Latest check for patch:| 30.01.2016 23:16 GMT Vulnerability type:| XSS Vulnerability...
6.3AI Score
Threat Outbreak Alert RuleID18688: Email Messages Distributing Malicious Software on August 31, 2016
Medium Alert ID: 41513 First Published: 2015 October 14 18:54 GMT Last Updated: 2016 September 1 13:08 GMT Version: 72 Summary Email messages that are related to this threat (RuleID18688 and RuleID18688KVR) may contain the following files: Name | Size in Bytes | MD5 Checksum ---|---|---...
0.4AI Score
Safari < 6.2.7 / 7.1.7 / 8.0.7 Multiple Vulnerabilities
Versions of Safari prior to 6.2.7 / 7.1.7 / 8.0.7 are reportedly affected by the following vulnerabilities : A flaw exists in WebKit Page Loading due to the Origin request header being preserved for cross-origin redirects. A remote attacker can exploit this, via a specially crafted web page, to...
1.8AI Score
0.02EPSS
6.6AI Score
0.043EPSS
espace-toner.fr XSS vulnerability
Vulnerable URL: http://www.espace-toner.fr/unsubscribe/index.php?email=%27%22%3E%3E%3C/title%3E%27%22%3ESCRIPT%3E%22%3E%27%3E%3CSCRIPT%3Ealert%28/XSSPOSED/%29%3C/SCRIPT%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability...
6.3AI Score
Security Advisory - DoS Vulnerability in Huawei U1900 CLI Module
Huawei eSpace U1900 switch series provides professional IP voice solutions to meet communications requirements from various enterprises of different sizes. Huawei eSpace U1900 series includes eSpace U1910, U1911, U1930, U1960, U1980, and U1981. The U1900 series uses the Command Line Interface...
6.8AI Score
Security Advisory - DoS Vulnerability in Huawei U1900 Products
Huawei eSpace U1900 switch series provides professional IP voice solutions to meet communications requirements from various enterprises of different sizes. Huawei eSpace U1900 series includes eSpace U1910, U1911, U1930, U1960, U1980, and U1981. A vulnerability exists in a module of U1900 series....
6.5AI Score
Adobe Flash Heap Use-After-Free In SurfaceFilterList::CreateFromScriptAtom Exploit
Exploit for windows platform in category remote...
0.2AI Score
0.783EPSS
7.4AI Score
EPSS
Adobe Flash - Heap Use-After-Free in SurfaceFilterList::CreateFromScriptAtom
Adobe Flash - Heap Use-After-Free in...
0.2AI Score
0.2AI Score
0.783EPSS
Security Advisory - Stagefright Vulnerability in Multiple Huawei Android Products
The Stagefright media player engine in Android OS has multiple vulnerabilities, which can be exploited to remotely execute code in affected devices. (Vulnerability ID: HWPSIRT-2015-07056, HWPSIRT-2015-07057, HWPSIRT-2015-07058, HWPSIRT-2015-07059, HWPSIRT-2015-07060, HWPSIRT-2015-07061 and...
6.5AI Score
0.954EPSS
Open Bug Bounty ID: OBB-78111 Description| Value ---|--- Affected Website:| 7910.com.ua Vulnerable Application:| Custom Code Vulnerability Type:| XSS (Cross Site Scripting) / CWE-79 CVSSv3 Score:| 6.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N] Remediation Guide:| OWASP XSS Prevention Cheat...
6.4AI Score
0.6AI Score
WordPress CP Multi-View Calendar Unauthenticated SQL Injection Scanner
This module will scan given instances for an unauthenticated SQL injection within the CP Multi-View Calendar plugin v1.1.4 for...
8.4AI Score
8.8CVSS
8.8AI Score
EPSS
QNAP - Web Server Remote Code Execution via Bash Environment Variable Code Injection (Metasploit)
...
7.4AI Score
EPSS
7.4AI Score
EPSS
Threat Outbreak Alert RuleID14123: Email Messages Distributing Malicious Software on March 20, 2015
Medium Alert ID: 37966 First Published: 2015 March 20 12:57 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat (RuleID14123) may contain the following...
0.2AI Score
Security Advisory - NTPd Security Vulnerability in Multiple Huawei Products
Huawei was notified about information released by NTP.org and CERT/CC regarding stack buffer overflow security vulnerabilities (CVE-2014-9295) in NTP daemon (ntpd) on December 19th, 2014. Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary.....
2.3AI Score
0.966EPSS
Google Chrome < 39.0.2171.65 Multiple Vulnerabilities
The version of Google Chrome installed on the remote host is a version prior to 39.0.2171.65. It is, therefore, affected by the following vulnerabilities : A double-free vulnerability exists in the version of Adobe Flash bundled with Chrome which could result in arbitrary code execution....
2.8AI Score
0.037EPSS
Security Advisory - Glibc Buffer Overflow Vulnerability
Huawei noticed that Qualys had disclosed the buffer overflow in the GNU C Library (glibc) on January 27th, 2015, Applications call various gethostbyname function are affected and attackers can exploit this vulnerability to perform remote code execution. (Vulnerability ID: HWPSIRT-2015-01045) This.....
8AI Score
0.975EPSS
The Meeting component in Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted...
6.2AI Score
0.001EPSS
The Meeting component in Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted...
6AI Score
0.001EPSS
The eSpace Meeting ActiveX control (eSpaceStatusCtrl.dll) in Huawei eSpace Desktop before V200R001C03 allows local users to cause a denial of service (memory overflow) via unspecified...
6.2AI Score
0.001EPSS
The eSpace Meeting ActiveX control (eSpaceStatusCtrl.dll) in Huawei eSpace Desktop before V200R001C03 allows local users to cause a denial of service (memory overflow) via unspecified...
6.1AI Score
0.001EPSS
Multiple untrusted search path vulnerabilities in Huawei eSpace Desktop before V200R003C00 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) mfc71enu.dll, (2) mfc71loc.dll, (3) tcapi.dll, or (4)...
7.3AI Score
0.001EPSS
Multiple untrusted search path vulnerabilities in Huawei eSpace Desktop before V200R003C00 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) mfc71enu.dll, (2) mfc71loc.dll, (3) tcapi.dll, or (4)...
7.4AI Score
0.001EPSS
Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted QES...
6.1AI Score
0.0004EPSS
Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted QES...
6AI Score
0.0004EPSS
Multiple untrusted search path vulnerabilities in Huawei eSpace Desktop before V200R003C00 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) mfc71enu.dll, (2) mfc71loc.dll, (3) tcapi.dll, or (4)...
7.8AI Score
0.001EPSS
The Meeting component in Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted...
6.6AI Score
0.001EPSS
Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted QES...
6.5AI Score
0.0004EPSS
The eSpace Meeting ActiveX control (eSpaceStatusCtrl.dll) in Huawei eSpace Desktop before V200R001C03 allows local users to cause a denial of service (memory overflow) via unspecified...
6.6AI Score
0.001EPSS
The Meeting component in Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted...
6AI Score
0.001EPSS