103 matches found
EUVD-2014-0948
Malware in sbrugna...
OESA-2025-1607 yelp security update
Yelp is the help viewer in GNOME. It natively views Mallard, DocBook, man, info, and HTML documents. It can locate documents according to the freedesktop.org help system specification. Security Fixes: A flaw was found in Yelp. The Gnome user help application allows the help document to execute...
Security Bulletin: Source disclosure in IBM InfoSphere Identity Insight’s Help System (CVE-2013-0467)
Abstract Identity Insight’s Help System could allow a remote attacker to obtain source of the Help System. Content SUMMARY: Identity Insight’s Help System could allow a remote attacker to obtain source of the Help System. VULNERABILITY DETAILS: CVE ID: CVE-2013-0467 CVSS: CVSS Base Score: 4 CVSS...
Security Bulletin: Open redirect and cross-site scripting vulnerabilities in the InfoSphere Streams help system (CVE-2012-2159, CVE-2012-2161)
Abstract Open redirect vulnerability in IBM Eclipse Help System IEHS, as used in IBM InfoSphere Streams Information Center 2.0.0.3 or 2.0.0.4 and InfoSphere Streams Studio 2.0 or later, allows potential redirection of users to arbitrary web sites. Cross-site scripting vulnerability in IBM Eclipse...
Security Bulletin: IBM OmniFind Enterprise Edition and IBM Content Analytics (CVE-2013-0599, CVE-2013-0464, CVE-2013-0467)
Abstract Potential security vulnerabilities exist in the IBM Eclipse Help System that is shipped with the IBM OmniFind Enterprise Edition and IBM Content Analytics products. Content The products listed below may be affected by security vulnerabilities in the IBM Eclipse Help System. This issue is...
Security Bulletin: Content Manager Enterprise Edition with use of IBM Eclipse Help System (CVE-2013-0599, CVE-2013-0464, CVE-2013-0467)
Abstract Potential security vulnerabilities exist in the IBM Eclipse Help System that is shipped with the IBM Content Manager Enterprise Edition. Content Content: The products listed below may be affected by security vulnerabilities in the IBM Eclipse Help System. This issue is applicable only if...
Security Bulletin: Cross-site scripting security vulnerability exists in IBM Eclipse Help System used in IBM Security zSecure Visual (CVE-2013-5449)
Abstract IBM Security zSecure Visual uses the IBM Eclipse Help System IEHS to provide product information center for end users. A cross site scripting vulnerability exists in IEHS. Content VULNERABILITY DETAILS CVE ID: CVE-2013-5449 DESCRIPTION: A remote attacker might exploit this vulnerability...
Security Bulletin: IBM InfoSphere Information Server Suite: Source disclosure in InfoSphere information Server’s Help System (CVE-2013-0467)
Abstract Security Bulletin: IBM InfoSphere Information Server Suite: Source disclosure in InfoSphere information Server’s Help System CVE-2013-0467 Content SUMMARY: This bulletin addresses potential source disclosures in InfoSphere Information Server’s Help System VULNERABILITY DETAILS: CVE ID:...
Security Bulletin: IBM Security SiteProtector System can be affected by a vulnerability in the IBM Eclipse Help System (IEHS) (CVE-2013-0467)
Abstract IBM Security SiteProtector System can be affected by a vulnerability in the IBM Eclipse Help System IEHS. This vulnerability could allow a remote attacker to obtain the source code of the Help System. Content VULNERABILITY DETAILS: CVEID: CVE-2013-0467 DESCRIPTION: IBM Security...
Security Bulletin: Open Redirect and Cross-Site Scripting Vulnerabilities in IMS Enterprise Suite Explorer for Development Help System
Abstract IMS™ Explorer for Development bundles the IBM® Eclipse Help System IEHS which has a security vulnerability. Content SUMMARY: IMS Explorer for Development bundles the IBM Eclipse Help System IEHS which has a security vulnerability. VULNERABILITYDETAILS: CVE ID: CVE-2012-2159 DESCRIPTION:...
TYPO3 allows remote authenticated backend users to unserialize arbitrary objects
viewhelp.php in the backend help system in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allows remote authenticated backend users to unserialize arbitrary objects and possibly execute arbitrary PHP code via an unspecified parameter, related to a "missing signature HMAC."...
7-Zip 16 DLL Hijacking
Microsoft Windows Environment Variable Expansion Issue Leads To Remote DLL Hijack Attack vector: 7-ZIP v.16 7-ZIP v.16 and possibly other softwares that utilizes the HTML Help System are prone to a remote DLL hijacking issue which leads to arbitrary code execution. PoC attached. because the OS...
Security Bulletin: Vulnerabilities in Apache Log4j affect IBM Spectrum Protect Operations Center (CVE-2021-45105, CVE-2021-45046)
Summary Vulnerabilities in Apache Log4j could result in a denial of service or remote code execution. These vulnerabilities may affect the Help system in IBM Spectrum Protect Operations Center. The below fix packages include Apache Log4j 2.17 Vulnerability Details CVEID: CVE-2021-45105 DESCRIPTIO...
Security Bulletin: Vulnerability in Apache Log4j affects IBM Spectrum Copy Data Management (CVE-2021-44228)
Summary A vulnerability in Apache Log4j could allow an attacker to execute arbitrary code on the system. This vulnerability may affect the Help system in IBM Spectrum Copy Data Management Vulnerability Details CVEID: CVE-2021-44228 DESCRIPTION: Apache Log4j could allow a remote attacker to execut...
Security Bulletin: Vulnerability in Help system affects multiple IBM Rational products based on IBM Jazz technology (CVE-2015-0113)
Summary An undisclosed vulnerability in the help system affects the following IBM Jazz based Applications: Collaborative Lifecycle Management CLM, Rational Requirements Composer RRC, Rational DOORS Next Generation RDNG, Rational Engineering Lifecycle Manager RELM, Rational Team Concert RTC,...
Security Bulletin: Vulnerabilities in IBM Rational Synergy's Help System (CVE-2013-0464, CVE-2013-0467, CVE-2013-0599)
Summary IBM Rational Synergy can be affected by three vulnerabilities in the IBM Eclipse Help System IEHS, which is used to display the IBM Rational Synergy help content. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow thi...
Security Bulletin: Cross-Site Scripting vulnerability in Business Space Help affects IBM Business Monitor - CVE-2013-0464
Summary IBM Eclipse Help System bundled with Business Space Help is vulnerable to Cross-Site Scripting CVE-2013-0464. Vulnerability Details CVEID: CVE-2013-0464 DESCRIPTION: IBM Eclipse Help System, as used in multiple IBM products, is vulnerable to cross-site scripting. A remote attacker could...
Security Bulletin: Open Redirect and Cross-Site Scripting Vulnerabilities in the Rational Change Help System (CVE-2012-2159, CVE-2012-2161)
Summary Some scripts in the help system used by IBM Rational Change are vulnerable to open redirect or cross-site scripting attacks. Vulnerability Details | Subscribe to My Notifications to be notified of important product support alerts like this. Follow this link for more information requires...
Security Bulletin: Rational Change can be affected by vulnerabilities in the IBM Eclipse Help System (CVE-2013-0464 and CVE-2013-0467)
Summary IBM Rational Change can be affected by two vulnerabilities Cross-site scripting and Help system's source code disclosure by using a specially crafted URL in the IBM Eclipse Help System IEHS, which is used to display the IBM Rational Change help content. Vulnerability Details | Subscribe t...
Security Bulletin: Vulnerability in IBM Rational ClearQuest Help System (CVE-2013-0467 & CVE-2013-0599)
Summary IBM Eclipse Help System IEHS is a component bundled with IBM Rational ClearQuest. It is used to display the Rational ClearQuest web-based help content when the Rational ClearQuest Help web application is deployed to IBM WebSphere Application Server. Vulnerability Details | Subscribe to My...