71 matches found
EUVD-2019-2475
Malware in sbrugna...
EUVD-2014-8966
Malware in sbrugna...
EUVD-2015-5898
Malware in sbrugna...
EUVD-2015-5897
Malware in sbrugna...
CVE-2019-8385
An issue was discovered in Thomson Reuters Desktop Extensions 1.9.0.358. An unauthenticated directory traversal and local file inclusion vulnerability in the ThomsonReuters.Desktop.Service.exe and ThomsonReuters.Desktop.exe allows a remote attacker to list or enumerate sensitive contents of files...
CVE-2019-10679
Thomson Reuters Eikon 4.0.42144 allows all local users to modify the service executable file because of weak %PROGRAMFILESX86%\Thomson Reuters\Eikon permissions...
MAL-2022-2049 Malicious code in com.thomsonreuters.brandedtemplates-int (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 25b434f2b21070184fe33b43397147163811e12ba7fb8dc16c6769938558d0e1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2019-10679
Thomson Reuters Eikon 4.0.42144 allows all local users to modify the service executable file because of weak %PROGRAMFILESX86%\Thomson Reuters\Eikon permissions...
CVE-2019-10679
Thomson Reuters Eikon 4.0.42144 allows all local users to modify the service executable file because of weak %PROGRAMFILESX86%\Thomson Reuters\Eikon permissions...
Code injection
Thomson Reuters Eikon 4.0.42144 allows all local users to modify the service executable file because of weak %PROGRAMFILESX86%\Thomson Reuters\Eikon permissions...
CVE-2019-10679
CVE-2019-10679 affects Thomson Reuters Eikon 4.0.42144. A weak permissions issue on the service executable located under %PROGRAMFILES(X86)%\Thomson Reuters\Eikon allows any local user to modify the executable, enabling potential code tampering. The root cause is a misconfigured file permission s...
CVE-2019-10679
Thomson Reuters Eikon 4.0.42144 allows all local users to modify the service executable file because of weak %PROGRAMFILESX86%\Thomson Reuters\Eikon permissions...
Eikon Thomson Reuters 4.0.42144 File Permissions Vulnerability
Eikon Thomson Reuters version 4.0.42144 suffers from a weak permissions issue that can lead to code execution. ======================================================================= title: Extensive file permissions on service executable product: Eikon Thomson Reuters vulnerable version: 4.0.421...
Eikon Thomson Reuters 4.0.42144 File Permissions
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Extensive file permissions on service executable product: Eikon Thomson Reuters vulnerable version: 4.0.42144 fixed version: - CVE number: CVE-2019-10679 impact: High...
thomsonreuters.co.nz Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1173462 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
legal.thomsonreuters.com.au Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1167379 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website...
CVE-2015-5952
Directory traversal vulnerability in Thomson Reuters for FATCA before 5.2 allows remote attackers to execute arbitrary files via the item parameter...
Directory traversal
Directory traversal vulnerability in Thomson Reuters for FATCA before 5.2 allows remote attackers to execute arbitrary files via the item parameter...
CVE-2015-5952
Directory traversal vulnerability in Thomson Reuters for FATCA before 5.2 allows remote attackers to execute arbitrary files via the item parameter...
CVE-2015-5952
CVE-2015-5952 affects Thomson Reuters FATCA; all versions below 5.2 are vulnerable to Local File Inclusion via the item parameter, enabling inclusion of local files and potential command execution. Exploitation details appear in zdt/packetstorm references; mitigation implied by upgrading to v5.2 ...