18 matches found
EUVD-2015-2186
Malware in sbrugna...
EUVD-2014-8152
Malware in sbrugna...
EUVD-2015-2187
Malware in sbrugna...
EUVD-2014-9209
Malware in sbrugna...
EUVD-2015-2185
Malware in sbrugna...
CVE-2014-9320
SAP BusinessObjects Edge 4.1 allows remote attackers to obtain the SIPLATFORMSEARCHSERVERLOGONTOKEN token and consequently gain SYSTEM privileges via vectors involving CORBA calls, aka SAP Note 2039905...
Design/Logic Flaw
The File RepositoRy Server FRS CORBA listener in SAP BussinessObjects Edge 4.0 allows remote attackers to read arbitrary files via a full pathname, aka SAP Note 2018682...
CVE-2015-2074
The File Repository Server FRS CORBA listener in SAP BussinessObjects Edge 4.0 allows remote attackers to write to arbitrary files via a full pathname, aka SAP Note 2018681...
CVE-2015-2076
The Auditing service in SAP BusinessObjects Edge 4.0 allows remote attackers to obtain sensitive information by reading an audit event, aka SAP Note 2011395...
CVE-2015-2075
SAP BusinessObjects Edge 4.0 allows remote attackers to delete audit events from the auditee queue via a clearData CORBA operation, aka SAP Note 2011396...
CVE-2015-2076
The Auditing service in SAP BusinessObjects Edge 4.0 allows remote attackers to obtain sensitive information by reading an audit event, aka SAP Note 2011395...
CVE-2015-2075
SAP BusinessObjects Edge 4.0 is vulnerable to an unauthenticated remote attack that can delete audit events from the auditee queue via the clearData CORBA operation. The root cause is improper authorization (CWE-285) in the CORBA interface, allowing an attacker to instruct the remote auditee to c...
CVE-2015-2076
The CVE-2015-2076 vulnerability affects SAP BusinessObjects Edge 4.0, where an unauthenticated remote attacker could read auditing information via the Auditing service. The Onapsis advisory and SAP notes identify an unauthorized access risk exposing audit events (e.g., report names, universe quer...
SAP BussinessObjects Edge Unauthorized Access Vulnerability (CNVD-2015-01235)
SAP BusinessObjects is a business intelligence software and enterprise performance solution. An unauthorized access vulnerability exists in SAP BussinessObjects Edge, which can be exploited by attackers to gain unauthorized access and obtain sensitive information...
SAP BussinessObjects Edge Unauthorized Access Vulnerability (CNVD-2015-01234)
SAP BusinessObjects is a business intelligence software and enterprise performance solution. An unauthorized access vulnerability exists in SAP BussinessObjects Edge, which can be exploited by attackers to gain unauthorized access and obtain sensitive information...
SAP BussinessObjects Edge Security Bypass Vulnerability
SAP BusinessObjects is a business intelligence software and enterprise performance solution. A security bypass vulnerability exists in SAP BussinessObjects Edge, which can be exploited by an attacker to perform unauthorized operations bypassing security restrictions...
CVE-2014-8311
SAP BusinessObjects Edge 4.0 allows remote attackers to obtain sensitive information via an InfoStore query to a CORBA listener...
CVE-2014-8311
CVE-2014-8311 affects SAP BusinessObjects Edge 4.0. Remote attackers can obtain sensitive information via an InfoStore query to a CORBA listener, causing information disclosure. The provided sources do not specify affected subversions or a fixed patch in this context. Exploitation details are not...