34 matches found
Threat Outbreak Alert RuleID13457: Email Messages Distributing Malicious Software on February 6, 2015
Medium Alert ID: 37385 First Published: 2015 February 9 14:19 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID13457 may contain the following files: Name |...
Information disclosure
An unspecified Ajax service in the Content Management toolkit in IBM Business Process Manager BPM 8.5.x through 8.5.5 allows remote authenticated users to obtain sensitive information by performing a document-attachment search and then reading document properties in the search results...
CVE-2014-4759
IBM BPM 8.5.x through 8.5.5 is affected by CVE-2014-4759 due to an Ajax service in the Content Management toolkit that allows authenticated users to perform a document-attachment search and read document properties, potentially exposing sensitive information. The vulnerability arises because quer...
Threat Outbreak Alert: Fake Document Attachment Email Messages on March 1, 2014
Medium Alert ID: 33327 First Published: 2014 March 12 22:46 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain a document for the recipient. The email message attempts to convince the recipient to open the link to view the document...
Threat Outbreak Alert: Fake Document Attachment Email Messages on January 27, 2014
Medium Alert ID: 32589 First Published: 2014 January 27 21:02 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a document for the recipient. The text in the email message attempts to convince the recipient to open the...
Threat Outbreak Alert: Fake Document Attachment Email Messages on October 21, 2013
Medium Alert ID: 31390 First Published: 2013 October 21 16:28 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an Excel document for the recipient. The text in the email message attempts to convince the recipient to open...
Threat Outbreak Alert: Fake Document Attachment Email Messages on September 30, 2013
Medium Alert ID: 31033 First Published: 2013 September 30 18:17 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an important document from Wells Fargo. The text in the email message attempts to convince the recipient to...
Threat Outbreak Alert: Fake Payroll Document Delivery Email Messages on July 18, 2013
Medium Alert ID: 30144 First Published: 2013 July 19 13:03 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a payroll document attachment for the recipient. The text in the email message attempts to convince the recipient...
siteserver cms 3.4.5 tasteless vulnerabilities and fixes-vulnerability warning-the black bar safety net
This vulnerability with the original vulnerability approach is very similar to that! To meet the two conditions of the system open up iis6 Register account-the document attachment management-Upload File we create a new layer directory of course before is can be established. the asp directory in t...
CVE-2012-0707
Cross-site scripting XSS vulnerability in IBM WebSphere Lombardi Edition 7.2 allows remote attackers to inject arbitrary web script or HTML via crafted text input to a coach that is configured with a document attachment control section...
Cross site scripting
Cross-site scripting XSS vulnerability in IBM WebSphere Lombardi Edition 7.2 allows remote attackers to inject arbitrary web script or HTML via crafted text input to a coach that is configured with a document attachment control section...
CVE-2012-0707
Cross-site scripting XSS vulnerability in IBM WebSphere Lombardi Edition 7.2 allows remote attackers to inject arbitrary web script or HTML via crafted text input to a coach that is configured with a document attachment control section...
CVE-2011-1215
CVE-2011-1215 is a stack-based buffer overflow in Autonomy KeyView (mw8sr.dll) used by IBM Lotus Notes before 8.5.2 FP3. The vulnerability allows remote code execution via a crafted link in an Office document attachment. The issue is mapped to the KeyView filter used by multiple Symantec/Notes-re...
VulnCheck KEV: CVE-2008-2244
Microsoft Office Word 2002 SP3 allows remote attackers to execute arbitrary code via a .doc file that contains malformed data, as exploited in the wild in July 2008, and as demonstrated by attachement.doc...