322 matches found
Memory corruption
A malicious crafted file consumed through Moldflow Synergy, Moldflow Adviser, Moldflow Communicator, and Advanced Material Exchange applications could lead to memory corruption vulnerability. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context ...
CVE-2022-33883
CVE-2022-33883 affects Autodesk Moldflow suite components (Moldflow Synergy, Moldflow Adviser, Moldflow Communicator, and Advanced Material Exchange). The vulnerability is a memory corruption flaw triggered by processing a maliciously crafted file, potentially allowing code execution in the conte...
CVE-2022-33883
A malicious crafted file consumed through Moldflow Synergy, Moldflow Adviser, Moldflow Communicator, and Advanced Material Exchange applications could lead to memory corruption vulnerability. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context ...
GHSA-QCGX-CRRX-38V5 Denial of service in DataCommunicator class in Vaadin 8
Missing check in DataCommunicator class in com.vaadin:vaadin-server versions 8.0.0 through 8.14.0 Vaadin 8.0.0 through 8.14.0 allows authenticated network attacker to cause heap exhaustion by requesting too many rows of data...
vaadin-server 输入验证错误漏洞
vaadin-server is a Vaadin open source application . A platform for rapid development of Web applications on a Java backend . An input validation error vulnerability exists in vaadin-server that stems from a heap error in the service's DataCommunicator class when too much data is submitted...
[Security Nation] Craig Williams of Cisco Talos on Proxyware
!\Security Nation\ Craig Williams of Cisco Talos on Proxywarehttps://blog.rapid7.com/content/images/2021/09/securitynationlogo.jpg In this episode of Security Nation, Jen and Tod chat with Craig Williams, recently of Cisco Talos, about proxyware and integrating security acquisitions the right way...
Description of the cumulative update package for Office Communications Server 2007 R2, Communicator Web Access: September 2011
Describes the cumulative update for Office Communications Server 2007 R2, Communicator Web Access update package that is dated September 2011.SummaryThis article describes the cumulative update for Microsoft Office Communications Server 2007 R2, Microsoft Office Communicator Web Access that is...
Description of the update for Communicator 2007 R2: July 2009
Describes the update for Communicator 2007 R2 that is dated July 2009.SummaryThis article describes the Microsoft Office Communicator 2007 R2 issues that are fixed in the update for Communicator 2007 R2 that is dated June 2009.This article describes the following items about the update:The issues...
Cisco Unified Personal Communicator Remote Denial of Service Vulnerability
Cisco Unified Personal Communicator is an instant messaging application from Cisco USA. A security vulnerability exists in Cisco Unified Personal Communicator version 7.0 1.13056, which arises from the program not freeing allocated memory and failing to perform authentication on received data. An...
CVE-2010-3048
Cisco Unified Personal Communicator 7.0 1.13056 does not free allocated memory for received data and does not perform validation if memory allocation is successful, causing a remote denial of service condition...
Race condition
Cisco Unified Personal Communicator 7.0 1.13056 does not free allocated memory for received data and does not perform validation if memory allocation is successful, causing a remote denial of service condition...
CVE-2010-3048
Cisco Unified Personal Communicator 7.0 1.13056 does not free allocated memory for received data and does not perform validation if memory allocation is successful, causing a remote denial of service condition...
CVE-2010-3048
Cisco Unified Personal Communicator 7.0 1.13056 does not free allocated memory for received data and does not perform validation if memory allocation is successful, causing a remote denial of service condition...
CVE-2010-3048
Cisco Unified Personal Communicator 7.0 (1.13056) is affected by a denial-of-service vulnerability arising from failure to free allocated memory for received data and lack of validation after memory allocation succeeds. The issue is triggered remotely over the network and results in a DoS conditi...
GE Grid Solutions GE Communicator Detection (Windows SMB Login)
Detects the installed version of GE Grid Solutions GE Communicator for Windows. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-6566
GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to replace the uninstaller with a malicious version, which could allow an attacker to gain administrator privileges to the system...
CVE-2019-6548
GE Communicator, all versions prior to 4.0.517, contains two backdoor accounts with hardcoded credentials, which may allow control over the database. This service is inaccessible to attackers if Windows default firewall settings are used by the end user...
CVE-2019-6564
GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place malicious files within the installer file directory, which may allow an attacker to gain administrative privileges on a system during installation or upgrade...
CVE-2019-6566
GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to replace the uninstaller with a malicious version, which could allow an attacker to gain administrator privileges to the system...
CVE-2019-6564
GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place malicious files within the installer file directory, which may allow an attacker to gain administrative privileges on a system during installation or upgrade...