118 matches found
CVE-2016-3312
ActiveSyncProvider in Microsoft Windows 10 Gold and 1511 allows attackers to discover credentials by leveraging failure of Universal Outlook to obtain a secure connection, aka "Universal Outlook Information Disclosure Vulnerability."...
Grandstream Wave 1.0.1.26 Update Redirection
CVE-2016-1520: GrandStream Android VoIP App Update Redirection ============================================================== Affected app: Grandstream WaveGSWAVE version 1.0.1.26 and probably earlier Classification: CWE-300 Channel Accessible by Non-EndpointCWE300 CWE-319 Cleartext Transmission ...
Apple Software Update Insecure Transport
The version of Apple Software Update installed on the remote Windows host does not use the HTTPS protocol when transferring the updates window contents. A man-in-the-middle attacker can exploit this vulnerability, by modifying the data stream between the client and server, to control the contents...
Design/Logic Flaw
IBM Security QRadar SIEM QRM 7.1 MR1 and QRM/QVM 7.2 MR2 does not properly implement secure connections, which allows man-in-the-middle attackers to discover cleartext credentials via unspecified vectors...
CVE-2014-4825
IBM Security QRadar SIEM QRM 7.1 MR1 and QRM/QVM 7.2 MR2 does not properly implement secure connections, which allows man-in-the-middle attackers to discover cleartext credentials via unspecified vectors...
LibreOffice update spoofing
Updates are checked via insecure connection, digital signature is not validated...
CVE-2011-4405
The cupshelpers scripts in system-config-printer in Ubuntu 11.04 and 11.10, as used by the automatic printer driver download service, uses an "insecure connection" for queries to the OpenPrinting database, which allows remote attackers to execute arbitrary code via a man-in-the-middle MITM attack...
CVE-2011-4405
CVE-2011-4405 concerns the cupshelpers scripts in system-config-printer used by Ubuntu 11.04/11.10, which query the OpenPrinting database over an insecure, unauthenticated connection. This MITM weakness can allow remote tampering with driver packages/repositories and arbitrary code execution. Con...
CVE-2011-4405
The cupshelpers scripts in system-config-printer in Ubuntu 11.04 and 11.10, as used by the automatic printer driver download service, uses an "insecure connection" for queries to the OpenPrinting database, which allows remote attackers to execute arbitrary code via a man-in-the-middle MITM attack...
CVE-2011-4405
The cupshelpers scripts in system-config-printer in Ubuntu 11.04 and 11.10, as used by the automatic printer driver download service, uses an "insecure connection" for queries to the OpenPrinting database, which allows remote attackers to execute arbitrary code via a man-in-the-middle MITM attack...
Ubuntu Update for system-config-printer USN-1265-1
Ubuntu Update for Linux kernel vulnerabilities USN-1265-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12651.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for system-config-printer USN-1265-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-1265-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 11.04 / 11.10 : system-config-printer vulnerability (USN-1265-1)
Marc Deslauriers discovered that system-config-printer's cupshelpers scripts used by the Ubuntu automatic printer driver download service queried the OpenPrinting database using an insecure connection. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be...
USN-1265-1: system-config-printer vulnerability
Marc Deslauriers discovered that system-config-printer's cupshelpers scripts used by the Ubuntu automatic printer driver download service queried the OpenPrinting database using an insecure connection. If a remote attacker were able to perform a machine-in-the-middle attack, this flaw could be...
CVE-2011-4405
The cupshelpers scripts in system-config-printer in Ubuntu 11.04 and 11.10, as used by the automatic printer driver download service, uses an "insecure connection" for queries to the OpenPrinting database, which allows remote attackers to execute arbitrary code via a man-in-the-middle MITM attack...
CentOS Update for squirrelmail CESA-2009:0010 centos3 i386
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Symantec hardware firewall devices SMTP messages leak
Under certain conditions SMTP messages may be sent with insecure external connection instead of internal one...
Avirt Gateway Suite Telnet Proxy Arbitrary Command Execution
It was possible to connect to the remote telnet server without a password and to get a command prompt with the 'DOS' command. And attacker may use this flaw to get access to your system. C Tenable Network Security, Inc. include"compat.inc"; ifdescription scriptid11096; scriptversion "1.21";...