5 matches found
CVE-2019-0948
CVE-2019-0948 is an information-disclosure vulnerability in Windows Event Viewer (eventvwr.msc) where XML input containing an external entity reference is improperly parsed. An authenticated user can be persuaded to import a crafted XML file, allowing an attacker to read arbitrary files via an XM...
Microsoft Windows Multiple Vulnerabilities (KB4503291)
This host is missing a critical security update according to Microsoft KB4503291 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
Microsoft Event Viewer 1.0 - XML External Entity Injection
Microsoft Event Viewer 1.0 - XML External Entity Injection + Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-EVENT-VIEWER-XXE-FILE-EXFILTRATION.txt + ISR: ApparitionSec + CVE: CVE-2019-0948 Vendor: ===============...
Microsoft Event Viewer 1.0 - XML External Entity Injection
Credits: John Page aka hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MICROSOFT-EVENT-VIEWER-XXE-FILE-EXFILTRATION.txt + ISR: ApparitionSec + CVE: CVE-2019-0948 Vendor: ================= www.microsoft.com Product: ========================...
CVE-2019-0948
creationtimestamp| type| source ---|---|--- 2016-12-05 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/40863...