8 matches found
CVE-2022-29281
Notable before 1.9.0-beta.8 doesn't effectively prevent the opening of executable files when clicking on a link. There is improper validation of the file URI scheme. A hyperlink to an SMB share could lead to execution of an arbitrary program or theft of NTLM credentials via an SMB relay attack,...
Input validation
Notable before 1.9.0-beta.8 doesn't effectively prevent the opening of executable files when clicking on a link. There is improper validation of the file URI scheme. A hyperlink to an SMB share could lead to execution of an arbitrary program or theft of NTLM credentials via an SMB relay attack,...
PT-2022-19521 · Notable +1 · Notable +1
Name of the Vulnerable Software and Affected Versions: Notable versions prior to 1.9.0-beta.8 Description: The issue arises from improper validation of the file URI scheme, allowing the opening of executable files when clicking on a link. This could lead to the execution of an arbitrary program o...
Paul Smith Computer Services VCAP Calendar Server 1.9 - Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/19959/info vCAP Calendar Server is prone to a remote denial-of-service vulnerability. This issue is due to a design error. An attacker can exploit this issue to crash the application, effectively denying service. vCAP...
CVE-2006-5033
Unspecified vulnerability in StoresAndCalendarsList.cgi in Paul Smith Computer Services vCAP 1.9.0 Beta and earlier allows remote attackers to cause a denial of service via the session parameter, possibly related to format string specifiers or malformed URL encoding...
CVE-2006-5033
Unspecified vulnerability in StoresAndCalendarsList.cgi in Paul Smith Computer Services vCAP 1.9.0 Beta and earlier allows remote attackers to cause a denial of service via the session parameter, possibly related to format string specifiers or malformed URL encoding...
CVE-2006-5033
The CVE-2006-5033 entry describes an unspecified vulnerability in Paul Smith Computer Services’ vCAP 1.9.0 Beta and earlier, specifically in StoresAndCalendarsList.cgi, allowing remote attackers to cause a denial of service via the session parameter, possibly related to format string specifiers o...
vcap.txt
title: vCAP calendar server Multiple vulnerabilities Author: securma massine MorX Security Research Team http://www.morx.org Product info : vCAP www.pscs.co.ukis a network calendar server for Windows. vCAP allows user to create calendars which can be viewed and modified by people on network using...