19 matches found
EUVD-2004-2421
Malware in sbrugna...
EUVD-2001-0543
Malware in sbrugna...
EUVD-2004-2731
Malware in sbrugna...
EUVD-2015-2317
Malware in sbrugna...
CVE-2005-2017
Symantec AntiVirus 9 Corporate Edition allows local users to gain privileges via the "Scan for viruses" option, which launches a help window with raised privileges, a re-introduction of a vulnerability that was originally identified and addressed by CVE-2002-1540...
January 15, 2019—KB4480969 (Preview of Monthly Rollup)
January 15, 2019—KB4480969 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part KB4480963 released January 8, 2019 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses an...
January 15, 2019—KB4480976 (OS Build 17134.556)
January 15, 2019—KB4480976 OS Build 17134.556 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue in Microsoft Edge that fails to trigger the focusin event if the focus even...
January 15, 2019—KB4480967 (OS Build 16299.936)
January 15, 2019—KB4480967 OS Build 16299.936 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue in Microsoft Edge that fails to trigger the focusin event if the focus even...
January 17, 2019—KB4480955 (Preview of Monthly Rollup)
January 17, 2019—KB4480955 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4480970 released January 8, 2019 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Addresses an...
January 17, 2019—KB4480974 (Preview of Monthly Rollup)
January 17, 2019—KB4480974 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4480968 released January 8, 2019 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Ensures that...
CVE-2018-19439
XSS exists in the Administration Console in Oracle Secure Global Desktop 4.4 20080807152602 but was fixed in later versions including 5.4. helpwindow.jsp has reflected XSS via all parameters, as demonstrated by the sgdadmin/faces/comsunwebui/help/helpwindow.jsp windowTitle parameter...
CVE-2015-2210
The help window in Epicor CRS Retail Store before 3.2.03.01.008 allows local users to execute arbitrary code by injecting Javascript into the window source to create a button that spawns a command shell...
CVE-2015-2210
The help window in Epicor CRS Retail Store before 3.2.03.01.008 allows local users to execute arbitrary code by injecting Javascript into the window source to create a button that spawns a command shell...
CVE-2004-2741
Cross-site scripting XSS vulnerability in the "help window" help.php in Horde Application Framework 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the 1 module, 2 topic, or 3 module parameters...
CVE-2004-2430
Trend OfficeScan Corporate Edition 5.58 and possibly earler does not drop privileges when opening a help window from a virus detection pop-up window, which allows local users to gain SYSTEM privileges...
Horde Application Framework Help Window Multiple Parameter XSS
The target is running at least one instance of Horde in which the help subsystem is vulnerable to a cross-site scripting attack since information passed to the help window is not properly sanitized. %NASLMINLEVEL 70300 This script was written by George A. Theall, . See the Nessus Scripts License...
horde -- cross-site scripting vulnerability in help window
A Horde Team announcement states that a potential cross-site scripting vulnerability in the help window has been corrected. The vulnerability appears to involve the handling of the topic and module parameters of the help window template...
CVE-2001-0551
Buffer overflow in CDE Print Viewer dtprintinfo allows local users to execute arbitrary code by copying text from the clipboard into the Help window...
CVE-2001-0551
Buffer overflow in CDE Print Viewer dtprintinfo allows local users to execute arbitrary code by copying text from the clipboard into the Help window...