90 matches found
EUVD-2011-2084
Malware in sbrugna...
EUVD-2010-5172
Malware in sbrugna...
EUVD-2011-2085
Malware in sbrugna...
EUVD-2015-5243
Malware in sbrugna...
EUVD-2006-1629
Malware in sbrugna...
EUVD-2016-7819
Malware in sbrugna...
EUVD-2008-1211
Malware in sbrugna...
EUVD-2010-5171
Malware in sbrugna...
EUVD-2015-3321
Malicious code in bioql PyPI...
CVE-2010-5212
Untrusted search path vulnerability in Adobe LiveCycle Designer ES2 9.0.0.20091029.1.612548 allows local users to gain privileges via a Trojan horse objectassistenUS.dll file in the current working directory, as demonstrated by a directory that contains a .tds file. NOTE: the provenance of this...
Adobe XML External Entity Injection
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Adobe XML External Entity Injection', 'Description' = %q Multiple Adobe Products -- XML External Entity Injection. Affected Software: BlazeDS 3.2...
The vulnerability of the Adobe LiveCycle ES4 form creation and editing program, related to deficiencies in the deserialization mechanism, allows a hacker to execute arbitrary code.
The vulnerability of the Adobe LiveCycle ES4 form creation and editing program is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...
CVE-2023-28500
A Java insecure deserialization vulnerability in Adobe LiveCycle ES4 version 11.0 and earlier allows unauthenticated remote attackers to gain operating system code execution by submitting specially crafted Java serialized objects to a specific URL. Adobe LiveCycle ES4 version 11.0.1 and later may...
CVE-2023-28500
A Java insecure deserialization vulnerability in Adobe LiveCycle ES4 version 11.0 and earlier allows unauthenticated remote attackers to gain operating system code execution by submitting specially crafted Java serialized objects to a specific URL. Adobe LiveCycle ES4 version 11.0.1 and later may...
Deserialization of untrusted data
UNSUPPORTED WHEN ASSIGNED A Java insecure deserialization vulnerability in Adobe LiveCycle ES4 version 11.0 and earlier allows unauthenticated remote attackers to gain operating system code execution by submitting specially crafted Java serialized objects to a specific URL. Adobe LiveCycle ES4...
CVE-2023-28500
The CVE-2023-28500 entry concerns a Java insecure deserialization vulnerability in Adobe LiveCycle ES4. Affected: ES4 11.0 and earlier; ES4 11.0.1+ may be vulnerable if Java is 7u21 or earlier. Root cause: insecure deserialization in the LiveCycle application. Impact: unauthenticated remote attac...
CVE-2023-28500
A Java insecure deserialization vulnerability in Adobe LiveCycle ES4 version 11.0 and earlier allows unauthenticated remote attackers to gain operating system code execution by submitting specially crafted Java serialized objects to a specific URL. Adobe LiveCycle ES4 version 11.0.1 and later may...
PT-2023-6619 · Oracle +1 · Java +1
Name of the Vulnerable Software and Affected Versions: Adobe LiveCycle ES4 versions 11.0 and earlier Adobe LiveCycle ES4 version 11.0.1 and later with Java environment 7u21 and earlier Description: A Java insecure deserialization vulnerability allows unauthenticated remote attackers to gain...
Adobe LiveCycle ES4 代码问题漏洞
Adobe LiveCycle ES4 is a solution comprised of related assets from Audobee Adobe USA. A security vulnerability exists in Adobe LiveCycle ES4 version 11.0 and earlier, which stems from the presence of a deserialization vulnerability...
CVE-2023-28500
A Java insecure deserialization vulnerability in Adobe LiveCycle ES4 version 11.0 and earlier allows unauthenticated remote attackers to gain operating system code execution by submitting specially crafted Java serialized objects to a specific URL. Adobe LiveCycle ES4 version 11.0.1 and later may...