232 matches found
CVE-2019-18847
Enterprise Access Client Auto-Updater allows for Remote Code Execution prior to version 2.0.1...
Remote code execution
Enterprise Access Client Auto-Updater allows for Remote Code Execution prior to version 2.0.1...
CVE-2019-18847
Enterprise Access Client Auto-Updater allows for Remote Code Execution prior to version 2.0.1...
CVE-2019-18847
CVE-2019-18847 affects Akamai’s Enterprise Application Access Client (EAA) prior to version 2.0.1. The vulnerability stems from unsigned end-user updater downloads and inadequate TLS validation of update sources, enabling remote code execution on the end-user machine with administrator/root privi...
MS15-022: Description of the security update for SharePoint Server 2013 and SharePoint Foundation 2013: March 10, 2015
Resolves vulnerabilities in Microsoft Office that could allow remote code execution if an attacker convinces a user to open or preview a specially crafted Microsoft Word file in an affected version of Office.IntroductionThis security update resolves vulnerabilities in Microsoft Office that could...
Fedora Update for gypsy FEDORA-2013-8705
Check for the Version of gypsy OpenVAS Vulnerability Test Fedora Update for gypsy FEDORA-2013-8705 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Check Point Remote Access Client Insecure Library Loading
The version of Check Point Remote Access Client installed on the remote Windows host is earlier than E75.10 and is, therefore, reportedly affected by an insecure library loading vulnerability. If an attacker can trick a user on the affected system into opening a specially crafted file, they may b...
Check Point Endpoint Security Remote Access Client Installed
Check Point Endpoint Security Remote Access Client, a software VPN client, is installed on the remote Windows host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid62075; scriptversion"1.10"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/01/31";...
CVE-2009-4643
Stack-based buffer overflow in dsInstallerService.dll in the Juniper Installer Service, as used in Juniper Odyssey Access Client 4.72.11421.0 and other products, allows remote attackers to execute arbitrary code via a long string in a malformed DSSETUPSERVICECMDUNINSTALL command to the...
Buffer overflow
Buffer overflow in the Session Initiation Protocol SIP User Access Client UAC message parsing module in Avaya one-X Desktop Edition 2.1.0.70 and earlier allows remote attackers to cause a denial of service call reception outage via a malformed SIP message...
Nortel CES (3DES version) offers false sense of security when using IPSEC
Short summary: Nortel Networks Contivity Extranet Switch CES has a weakness in it's IPSEC key exchange when using 3DES encryption. The 3DES encryption keys are encrypted using single DES during initial key exchange thus reducing cryptographic strength to 56-bit DES level. The weakness affects bot...
CVE-2000-0439
Internet Explorer 4.0 and 5.0 allows a malicious web site to obtain client cookies from another domain by including that domain name and escaped characters in a URL, aka the "Unauthorized Cookie Access" vulnerability...