19 matches found
EUVD-2011-2757
Malware in sbrugna...
EUVD-2017-5923
Malware in sbrugna...
EUVD-2017-5921
Malware in sbrugna...
EUVD-2017-5922
Malware in sbrugna...
D-Link DIR-850L REV.A and REV.B Man-in-the-Middle Attack Vulnerability
The D-Link DIR-850L REV.A and REV.B are both wireless router products from AUO D-Link. The security vulnerability in the D-Link NPAPI extension used in D-Link DIR-850L REV.A devices with firmware FW114WWb07h2abbeta1 and earlier and REV.B devices with firmware FW208WWb02 and earlier stems from the...
D-Link DIR-850L Information Disclosure Vulnerability
The D-Link DIR-850L is a wireless router from AUO D-Link. A security vulnerability exists in the NPAPI extension in the D-Link DIR-850L using FW114WWb07h2abbeta1 and earlier versions, which stems from the program failing to properly validate certificates. A remote attacker could exploit the...
Design/Logic Flaw
The D-Link NPAPI extension, as used on D-Link DIR-850L REV. A with firmware through FW114WWb07h2abbeta1 and REV. B with firmware through FW208WWb02 devices, participates in mydlink Cloud Services by establishing a TCP relay service for HTTP, even though a TCP relay service for HTTPS is also...
CVE-2017-14420
The D-Link NPAPI extension, as used on D-Link DIR-850L REV. A with firmware through FW114WWb07h2abbeta1 and REV. B with firmware through FW208WWb02 devices, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive...
Information disclosure
The D-Link NPAPI extension, as used on D-Link DIR-850L REV. A with firmware through FW114WWb07h2abbeta1 and REV. B with firmware through FW208WWb02 devices, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive...
CVE-2017-14420
The D-Link NPAPI extension, as used on D-Link DIR-850L REV. A with firmware through FW114WWb07h2abbeta1 and REV. B with firmware through FW208WWb02 devices, does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive...
CVE-2017-14420
The CVE-2017-14420 issue affects the D-Link NPAPI extension used in D-Link DIR-850L Rev. A (firmware up to FW114WWb07_h2ab_beta1) and Rev. B (up to FW208WWb02). The root cause is failure to validate X.509 certificates from SSL servers, enabling a man-in-the-middle to spoof servers and obtain sens...
CVE-2017-14418
The D-Link NPAPI extension, as used in conjunction with D-Link DIR-850L REV. B with firmware through FW208WWb02 devices, sends the cleartext admin password over the Internet as part of interaction with mydlink Cloud Services...
PT-2017-13465 · D Link · D-Link Dir-850L
Name of the Vulnerable Software and Affected Versions: D-Link DIR-850L REV. A versions through FW114WWb07 h2ab beta1 D-Link DIR-850L REV. B versions through FW208WWb02 Description: The issue concerns the D-Link NPAPI extension, which fails to verify X.509 certificates from SSL servers. This allow...
Google Chrome Multiple Vulnerabilities-01 (Jul 2013) - Mac OS X
Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Google Chrome < 28.0.1500.71 Multiple Vulnerabilities
The version of Google Chrome installed on the remote host is a version prior to 28.0.1500.71 and is, therefore, affected by multiple vulnerabilities : - A vulnerability exists that exposes HTTP in SSL to a man-in-the-middle attack. CVE-2013-2853 - Block pop-unders in various scenarios...
CVE-2011-2783
Google Chrome before 13.0.782.107 does not ensure that developer-mode NPAPI extension installations are confirmed by a browser dialog, which makes it easier for remote attackers to modify the product's functionality via a Trojan horse extension...
CVE-2011-2783
Google Chrome before 13.0.782.107 does not ensure that developer-mode NPAPI extension installations are confirmed by a browser dialog, which makes it easier for remote attackers to modify the product's functionality via a Trojan horse extension...
CVE-2011-2783
Removed by vendor...
Google Chrome < 13.0.782.107 Multiple Vulnerabilities
Binary data 5998.pasl...