322 matches found
CVE-2015-4240
Cisco IP Communicator 8.64 allows remote attackers to cause a denial of service service outage via an unspecified URL in a GET request, aka Bug ID CSCuu37656...
CVE-2015-4240
Cisco IP Communicator 8.6(4) is affected by CVE-2015-4240. A remote attacker can cause a denial of service by sending an HTTP GET request to a specific URL, targeting the web interface; this could take the web service offline. Cisco has acknowledged the vulnerability and released software updates...
CVE-2015-4240
Cisco IP Communicator 8.64 allows remote attackers to cause a denial of service service outage via an unspecified URL in a GET request, aka Bug ID CSCuu37656...
Cisco IP Communicator Web Access Denial of Service Vulnerability
A vulnerability in the web interface of Cisco IP Communicator could allow an unauthenticated, remote attacker to take the web service offline. The vulnerability is due to access of a specific HTTP URL. An attacker could exploit this vulnerability by sending an HTTP GET request to the specific...
Netscape Communicator 4.x JPEG-Comment Heap Overwrite Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1503/info Netscape Browsers use the Independent JPEG Group's decoder library to process JPEG encoded images. The library functions skip JPEG comments; however, the browser uses a custom function to process these comments...
Netscape Communicator 4.5/4.51/4.6/4.61/4.7/4.72/4.73 /tmp Symlink Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1201/info Netscape Communicator version 4.73 and prior may be susceptible to a /tmp file race condition when importing certificates. Netscape creates a /tmp file which is world readable and writable in /tmp, without calli...
MS IE 5.0,Netscape Communicator 4.0/4.5/4.6 Javascript STYLE Vulnerability
No description provided by source. Microsoft Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Netscape Communicator 4.0/4.5/4.6 Javascript STYLE Vulnerability source: http://www.securityfocus.com/bid/630/info The HTML STYLE command can be used to embed Javascript into...
Symantec Java! JustInTime Compiler 210.65 Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6222/info A vulnerability has been discovered in the Java! JustInTime compiled used by Netscape Communicator, related to the generation of Intel instructions from specially constructed Java bytecode. If a malicous applet ...
AOL Instant Messenger 3.5.1856/4.0/4.1.2010/4.2.1193 'aim://' Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2118/info AOL Instant Messenger AIM is a real time messaging service for users that are on line. When AOL Instant Messenger is installed, by default it configures the system so that the aim: URL protocol connects aim://...
Netscape Communicator 4.x URL Read Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1546/info A flaw in Netscape Communicator's implementation of Java allows malicious applets to read any resource reachable via a URL from the local machine by using the netscape.net.URLConnection and...
NJStar Communicator MiniSmtp Buffer Overflow [ASLR Bypass]
No description provided by source. Exploit Title: NJStart Communicator MiniSmtp Buffer Overflow ASLR Bypass Date: 02/12/11 Author: Zune - Julian Pulido Software Link: http://www.njstar.com/download/njcom.exe Version: 3.0 Build: 11818 and previous Tested on: Windows 7 Ultimate CVE:2011-4040 !...
Netscape Communicator 4.5 prefs.js Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/893/info Netscape Communicator 4.5 has an unchecked buffer, through which code can be injected for execution via the prefs.js preferences file. This could be exploited locally to run arbitrary code at the privilege level ...
Netscape Communicator 4.06/4.5/4.6/4.51/4.61 EMBED Buffer Overflow Vulnerability
No description provided by source. / source: http://www.securityfocus.com/bid/618/info In several versions of Netscape Communicator, there is an unchecked buffer in the code that handles EMBED tags. The buffer is in the 'plugins page' option. This vulnerability can be exploited by a malicious...
Microsoft Office (2010 beta) Communicator SIP Denial of Service Exploit
No description provided by source. ======================================================================================== | Title : Microsoft Office 2010 beta Communicator SIP denial of service Exploit | Author : indoushka | email : [email protected] | Home : www.iqs3cur1ty.com/vb | Tested...
Cisco IP Communicator Installed
Cisco IP Communicator, a softphone application for Windows, is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid69801; scriptversion"1.8"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/10"; scriptnameenglish:"Cisco I...
Cisco IP Communicator Certificate Trust List Manipulation
The version of Cisco IP Communicator is 8.61. Such versions are potentially affected by a data modification vulnerability. By performing a Man-in-the-Middle attack, a remote, unauthenticated attacker could replace the original Certificate Trust List with a modified one. C Tenable Network Security...
Description of the cumulative update for Lync Server 2010: July 2011
Describes the bug that is resolved in the July, 2011 cumulative update package for Lync Server 2010.SummaryThis article describes the cumulative update for Microsoft Lync Server 2010 that is dated July, 2011. INTRODUCTIONIssues that this update package fixesThis cumulative update fixes the...
CVE-2013-1302
Microsoft Communicator 2007 R2, Lync 2010, Lync 2010 Attendee, and Lync Server 2013 do not properly handle objects in memory, which allows remote attackers to execute arbitrary code via an invitation that triggers access to a deleted object, aka "Lync RCE Vulnerability."...
Code injection
Microsoft Communicator 2007 R2, Lync 2010, Lync 2010 Attendee, and Lync Server 2013 do not properly handle objects in memory, which allows remote attackers to execute arbitrary code via an invitation that triggers access to a deleted object, aka "Lync RCE Vulnerability."...
CVE-2013-1302
The CVE-2013-1302 issue affects Microsoft Lync-related clients and servers (Communicator 2007 R2, Lync 2010, Lync 2010 Attendee, Lync Server 2013). It is a use-after-free in which Lync components fail to handle memory objects that have been deleted, enabling remote code execution when a user is i...