908 matches found
Remote code execution
Uniscribe in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, Windows Server 2016, Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office Word Viewer, Microsoft Lync 2013 SP1, Skype for...
CVE-2017-0283
CVE-2017-0283 is described in the connected MSKB as a remote code execution vulnerability in Microsoft Office components that could be triggered by opening a specially crafted Office file. The MSKB describes a security update KB3191937 for Skype for Business 2015 (Lync 2013) that addresses CVE-20...
Microsoft Skype for Business and Lync Server Remote Code Execution Vulnerability
Microsoft Skype is a suite of instant messaging software from the American company Microsoft. A remote code execution vulnerability exists in Microsoft Skype for Business and Lync Server. An attacker is allowed to exploit the vulnerability to execute arbitrary code within the context of the...
Microsoft Patch Tuesday - June 2017
Today, Microsoft has release their monthly set of security updates designed to address vulnerabilities. This month's release addresses 92 vulnerabilities with 17 of them rated critical and 75 rated important. Impacted products include Edge, Internet Explorer, Office, Sharepoint, Skype for Busines...
Microsoft Teams help & learning
None Microsoft Teams help & learning Meetings Chat Notifications & settings Teams & channels Calls & devices Files Troubleshoot New to Microsoft Teams? Learn all about Teams' essential features here.MeetingsChatNotificationsTeamsChannelsCalls Meet Microsoft 365 Copilot Copilot works alongside you...
Microsoft Teams help & learning
None Microsoft Teams help & learning Meetings Chat Notifications & settings Teams & channels Calls & devices Files Troubleshoot New to Microsoft Teams? Learn all about Teams' essential features here.MeetingsChatNotificationsTeamsChannelsCalls Meet Microsoft 365 Copilot Copilot works alongside you...
Skype for Business Remote Code Execution Vulnerability
A remote code execution vulnerability exists when Skype for Business and Microsoft Lync Servers fail to properly sanitize specially crafted content. An authenticated attacker who successfully exploited this vulnerability could execute HTML and JavaScript content in the Skype for Business or Lync...
Microsoft Windows Uniscribe CVE-2017-0283 Remote Code Execution Vulnerability
Description Microsoft Windows Uniscribe is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Live...
Microsoft Skype for Business and Lync Server CVE-2017-8550 Remote Code Execution Vulnerability
Description Microsoft Skype for Business and Lync Server are prone to a remote code-execution vulnerability. Successfully exploiting this issue may result in the execution of arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service...
Security Update for Live Meeting 2007 / Lync 2010 and 2013 / Skype for Business 2016 (June 2017)
The Microsoft Live Meeting 2007, Lync 2010, Lync 2013, or Skype 2016 for Business application installed on the remote Windows host is missing a security update. It is, therefore, affected remote code execution vulnerability in Windows Uniscribe software due to improper handling of objects in...
KLA11047 Multiple vulnerabilities in Microsoft Development Tools
Multiple serious vulnerabilities have been found in Microsoft Development Tools. Malicious users can exploit these vulnerabilities to obtain sensitive information and execute arbitrary code. Original advisories - Exploitation Public exploits exist for this vulnerability. Malware exists for this...
Microsoft Windows Graphics Component CVE-2017-8527 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting user to open a malicious file or webpage. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Failed explo...
Microsoft Lync Certificate Validation Vulnerability-4013241 - Mac OS X
This host is missing an important security update according to Microsoft Bulletin MS17-014. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
Microsoft Lync Detection - Mac OS X
Detects the installed version of Microsoft Lync. The script logs in via ssh, searches for folder SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...
CVE-2017-0129
Microsoft Lync for Mac 2011 fails to properly validate certificates, allowing remote attackers to alter server-client communications, aka "Microsoft Lync for Mac Certificate Validation Vulnerability."...
CVE-2017-0129
Microsoft Lync for Mac 2011 fails to properly validate certificates, allowing remote attackers to alter server-client communications, aka "Microsoft Lync for Mac Certificate Validation Vulnerability."...
Input validation
Microsoft Lync for Mac 2011 fails to properly validate certificates, allowing remote attackers to alter server-client communications, aka "Microsoft Lync for Mac Certificate Validation Vulnerability."...
CVE-2017-0129
Microsoft Lync for Mac 2011 fails to properly validate certificates, allowing remote attackers to alter server-client communications, aka "Microsoft Lync for Mac Certificate Validation Vulnerability."...
CVE-2017-0108
The Windows Graphics Component in Microsoft Office 2007 SP3; 2010 SP2; and Word Viewer; Skype for Business 2016; Lync 2013 SP1; Lync 2010; Live Meeting 2007; Silverlight 5; Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; and Windows 7 SP1 allows remote attackers to execute arbitrary code v...
CVE-2017-0129
CVE-2017-0129 is a certificate-validation vulnerability in Microsoft Lync for Mac 2011. The flaw stems from improper X.509 certificate validation, enabling a remote attacker to tamper with TLS-secured communications (man‑in‑the‑middle) between server and client. Connected sources confirm the vuln...