Lucene search
K

4 matches found

CVE
CVE
added 2019/04/09 2:33 a.m.111 views

CVE-2019-0798

CVE-2019-0798 is a spoofing vulnerability in Skype for Business Server and Lync Server where an attacker could exploit a specially crafted request URL to cause cross-site scripting or UI spoofing. The issue is tied to improper sanitization of crafted inputs in affected servers, enabling an authen...

6.1CVSS6.2AI score0.02084EPSS
Exploits0References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2019/03/15 12:0 a.m.136 views

Skype for Business and Lync Spoofing Vulnerability

The Microsoft Skype for Business or Microsoft Lync installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability : - A spoofing vulnerability exists when a Skype for Business 2015 server does not properly sanitize a specially crafted...

6.1CVSS6.3AI score0.02084EPSS
Exploits0References2
Symantec
Symantec
added 2019/03/12 12:0 a.m.66 views

Microsoft Skype for Business and Lync Server CVE-2019-0798 Spoofing Vulnerability

Description Microsoft Skype for Business and Lync Server are prone to a spoofing vulnerability. An attacker can exploit this issue to conduct spoofing attacks, execute arbitrary script code in the context of the affected site. This can allow the attacker to steal cookie-based authentication...

0.1AI score0.02084EPSS
Exploits0Affected Software2
Kaspersky
Kaspersky
added 2019/03/12 12:0 a.m.64 views

KLA11434 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Office Access Connectivity Engine can be...

9.3CVSS7.3AI score0.13695EPSS
Exploits0References12
Rows per page
Query Builder