14 matches found
EUVD-2022-35805
Malicious code in bioql PyPI...
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Microsoft
CVE-2023-35636 Microsoft Outlook Information Disclosure Vulner...
PT-2023-7682 · Microsoft · Outlook
Name of the Vulnerable Software and Affected Versions: Microsoft Outlook affected versions not specified Description: The issue is related to the calendar sharing function in Microsoft Outlook, which can be exploited to access NT LAN Manager NTLM v2 hashed passwords. Attackers can steal NTLM...
SUSE CVE-2022-32739
When Secure::DisableBanner system configuration has been disabled and agent shares his calendar via public URL, received ICS file contains OTRS release number...
CVE-2022-32739
When Secure::DisableBanner system configuration has been disabled and agent shares his calendar via public URL, received ICS file contains OTRS release number...
CVE-2022-32739
CVE-2022-32739 involves OTRS: when Secure::DisableBanner is disabled and an agent shares a calendar via a public URL, the ICS export leaks the OTRS release number. The linked documents explicitly describe the ICS file containing the OTRS release version, linking to multiple advisories and vulnera...
Qnap QcalAgent 跨站脚本漏洞
Qnap QcalAgent is a time management center from China Weilian Technology Qnap. It is used to manage personal schedules, share calendars with others, and share each other's schedules. QNAP QcalAgent suffers from a cross-site scripting vulnerability that stems from insufficient cleaning of...
Description of the security update for Microsoft Exchange: December 12, 2017
Description of the security update for Microsoft Exchange: December 12, 2017 Summary This security update resolves a vulnerability in Microsoft Exchange Outlook Web Access OWA. The vulnerability could allow elevation of privilege or spoofing in Microsoft Exchange Server if an attacker sends an...
Description of the security update for Microsoft Exchange: September 12, 2017
Description of the security update for Microsoft Exchange: September 12, 2017 Notice Security update package 4045655was released to address a known issue in this original security update. The 4045655 update removes the fix for this vulnerability. Symptoms This security update resolves a...
CVE-2014-8675
Soplanning 1.32 and earlier generates static links for sharing ICAL calendars with embedded login information, which allows remote attackers to obtain a calendar owner's password via a brute-force attack on the embedded password hash...
CVE-2014-8675
Soplanning 1.32 and earlier generates static links for sharing ICAL calendars with embedded login information, which allows remote attackers to obtain a calendar owner's password via a brute-force attack on the embedded password hash...
perl-cal-29920.txt
------=Part1714122617522.1134045408185 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Vendor: Perl-Cal Version tested: Perl-Cal 2.99.20 , other versions may also be affected. Type: Cross Site Scripting Severity: Medium...
CVE-1999-1172
By design, Maximizer Enterprise 4 calendar and address book program allows arbitrary users to modify the calendar of other users when the calendar is being shared...
Exchange
Exchange...