60 matches found
EUVD-2016-0404
Malware in sbrugna...
EUVD-2014-6055
Malware in sbrugna...
EUVD-2016-0405
Malware in sbrugna...
EUVD-2016-3957
Malware in sbrugna...
EUVD-2016-6935
Malware in sbrugna...
EUVD-2016-0258
Malware in sbrugna...
Security Bulletin: IBM Forms Viewer stack buffer overflow identified (CVE-2013-5447)
Abstract A stack buffer overflow issue has been identified in the Forms Viewer that could allow remote code execution to occur. Content A stack buffer overflow issue has been identified in the Forms Viewer that could allow remote code execution to occur VULNERABILITY DETAILS: CVEID : CVE-2013-544...
Security Bulletin: Apache HttpComponents vulnerable to spoofing attacks are affecting Case Manager Client (CVE-2012-6153, CVE-2014-3577)
Summary Apache HttpComponents that are vulnerable to spoofing attacks are affecting Case Manager Client. Vulnerability Details Apache HttpComponents that are being utilized by the Forms widget in Case Manager Client when you are working with IBM Forms are vulnerable to spoofing attacks. CVEID:...
Security Bulletin: IBM Forms Experience Builder could be susceptible to Apache POI Vulnerabilities
Summary IBM Forms Experience Builder could be susceptible to allowing for a denial of service, cause by an error in Apache POI Libraries Vulnerability Details CVEID: CVE-2014-3574 DESCRIPTION: Apache POI is vulnerable to a denial of service, caused by an XML External Entity Injection XXE error wh...
Security Bulletin: IBM Forms Experience Builder is vulnerable due to Apache Tomcat and Apache Commons FileUpload Vulnerabilities (CVE-2016-3092)
Summary IBM Forms Experience Builder could be susceptible to a denial of service, caused by an error in the Apache Commons FileUpload component. Vulnerability Details CVEID: CVE-2016-3092 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by an error in the Apache Commons...
Security Bulletin: Vulnerability in Apache Commons FileUpload affects IBM Forms Server (CVE-2016-3092 )
Summary An Apache Commons FileUpload vulnerability for handling string edge case was addressed by IBM Forms Server. Vulnerability Details CVEID: CVE-2016-3092 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by an error in the Apache Commons FileUpload component. By sending...
Security Bulletin: IBM Forms Experience Builder could be susceptible to a server-side request forgery (CVE-2016-6001)
Summary IBM Forms Experience Builder could be susceptible to a server-side request forgery SSRF allowing for some information disclosure of internal resources. Vulnerability Details CVEID: CVE-2016-6001 DESCRIPTION: IBM Forms Experience Builder could be susceptible to a server-side request forger...
Security Bulletin: IBM Forms Viewer may be affected by an Apache Xerces-C XML Parser library vulnerability (CVE-2016-0729, CVE-2016-4463)
Summary An IBM Form XFDL document that contains a specially crafted mark-up could crash IBM Forms Viewer. This may expose a vulnerability in its use of the Apache Xerces-C XML Parser library. Vulnerability Details CVEID: CVE-2016-0729 DESCRIPTION: Apache Xerces-C XML Parser library is vulnerable ...
Security Bulletin: IBM Forms Server may be affected by an Apache Xerces-C XML Parser library vulnerability (CVE-2016-0729, CVE-2016-4463)
Summary An IBM Form XFDL document that contains a specially crafted mark-up could crash IBM Forms Server. This may expose a vulnerability in its use of the Apache Xerces-C XML Parser library. Vulnerability Details CVEID: CVE-2016-0729 DESCRIPTION: Apache Xerces-C XML Parser library is vulnerable ...
Security Bulletin: IBM Forms Experience Builder is vulnerable to XML External Entity (XXE) Processing (CVE-2016-0369)
Summary IBM Forms Experience Builder is vulnerable to an XML External Entity processing exposure potentially leading to information disclosure. Vulnerability Details CVEID : CVE-2016-0369 DESCRIPTION : IBM Forms Experience Builder could allow a remote attacker to obtain sensitive information,...
Security Bulletin: IBM Forms Experience Builder is susceptible to a cross site scripting vulnerability (CVE-2016-0370)
Summary IBM Forms Experience Builder is susceptible to building an application by an administrator that could expose a cross site scripting vulnerability. Vulnerability Details CVEID: CVE-2016-0370 DESCRIPTION: IBM Forms Experience Builder is susceptible to building an application by an...
Security Bulletin: IBM Forms Experience Builder vulnerable to CSRF when configured with non default settings (CVE-2016-2884)
Summary A cross-site request forgery attack is possible when configured with non default settings, caused by improper validation of user-supplied input. Vulnerability Details CVEID: CVE-2016-2884 DESCRIPTION: IBM Forms Experience Builder is vulnerable to cross-site request forgery, when configure...
Security Bulletin: IBM Forms Viewer Installation could allow a remote attacker to execute arbitrary code on the system (CVE-2016-2542)
Summary IBM Forms Viewer Installation could allow a remote attacker to execute arbitrary code on the system. If you have recently downloaded a copy of IBM Forms Viewer, use the information below to correct the vulnerability prior to installing the product. If you have already installed IBM...
Security Bulletin: IBM Forms Designer Installation could allow a remote attacker to execute arbitrary code on the system (CVE-2016-2542)
Summary IBM Forms Designer Installation could allow a remote attacker to execute arbitrary code on the system. If you have recently downloaded a copy of IBM Forms Designer, use the information below to correct the vulnerability prior to installing the product. If you have already installed IBM...
Security Bulletin: IBM Forms Server vulnerability identified in Webform Server (CVE-2016-0223)
Summary IBM Forms Server's Webform Framework API is vulnerable to cross-site scripting when a specifically-crafted URL is used within the web browser. Vulnerability Details CVEID: CVE-2016-0223 DESCRIPTION: IBM Forms Server is vulnerable to cross-site scripting, caused by improper validation of...