Lucene search
K

8 matches found

NVD
NVD
added 2022/04/15 9:15 p.m.10 views

CVE-2022-29281

Notable before 1.9.0-beta.8 doesn't effectively prevent the opening of executable files when clicking on a link. There is improper validation of the file URI scheme. A hyperlink to an SMB share could lead to execution of an arbitrary program or theft of NTLM credentials via an SMB relay attack,...

8.8CVSS0.01483EPSS
Exploits0References2
Prion
Prion
added 2022/04/15 9:15 p.m.16 views

Input validation

Notable before 1.9.0-beta.8 doesn't effectively prevent the opening of executable files when clicking on a link. There is improper validation of the file URI scheme. A hyperlink to an SMB share could lead to execution of an arbitrary program or theft of NTLM credentials via an SMB relay attack,...

6.8CVSS8.7AI score0.01483EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/04/15 12:0 a.m.4 views

PT-2022-19521 · Notable +1 · Notable +1

Name of the Vulnerable Software and Affected Versions: Notable versions prior to 1.9.0-beta.8 Description: The issue arises from improper validation of the file URI scheme, allowing the opening of executable files when clicking on a link. This could lead to the execution of an arbitrary program o...

8.8CVSS8.5AI score0.01483EPSS
Exploits0References7
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Paul Smith Computer Services VCAP Calendar Server 1.9 - Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19959/info vCAP Calendar Server is prone to a remote denial-of-service vulnerability. This issue is due to a design error. An attacker can exploit this issue to crash the application, effectively denying service. vCAP...

7.1AI score
Exploits0
NVD
NVD
added 2006/09/27 11:7 p.m.11 views

CVE-2006-5033

Unspecified vulnerability in StoresAndCalendarsList.cgi in Paul Smith Computer Services vCAP 1.9.0 Beta and earlier allows remote attackers to cause a denial of service via the session parameter, possibly related to format string specifiers or malformed URL encoding...

5CVSS6.8AI score0.03555EPSS
Exploits1References8
Cvelist
Cvelist
added 2006/09/27 11:0 p.m.15 views

CVE-2006-5033

Unspecified vulnerability in StoresAndCalendarsList.cgi in Paul Smith Computer Services vCAP 1.9.0 Beta and earlier allows remote attackers to cause a denial of service via the session parameter, possibly related to format string specifiers or malformed URL encoding...

6.8AI score0.03555EPSS
Exploits1References8
CVE
CVE
added 2006/09/27 11:0 p.m.35 views

CVE-2006-5033

The CVE-2006-5033 entry describes an unspecified vulnerability in Paul Smith Computer Services’ vCAP 1.9.0 Beta and earlier, specifically in StoresAndCalendarsList.cgi, allowing remote attackers to cause a denial of service via the session parameter, possibly related to format string specifiers o...

5CVSS7.1AI score0.03555EPSS
Exploits1References8Affected Software1
Packet Storm
Packet Storm
added 2006/09/13 12:0 a.m.24 views

vcap.txt

title: vCAP calendar server Multiple vulnerabilities Author: securma massine MorX Security Research Team http://www.morx.org Product info : vCAP www.pscs.co.ukis a network calendar server for Windows. vCAP allows user to create calendars which can be viewed and modified by people on network using...

7.4AI score
Exploits0
Rows per page
Query Builder