55 matches found
Design/Logic Flaw
MaLion for Mac 4.3.0 to 5.2.1 does not properly validate certificates, which may allow an attacker to eavesdrop on an encrypted communication...
CVE-2017-10815
MaLion for Windows 5.2.1 and earlier only when "Remote Control" is installed and MaLion for Mac 4.0.1 to 5.2.1 only when "Remote Control" is installed allow remote attackers to bypass authentication to execute arbitrary commands or operations on Terminal Agent...
CVE-2017-10818
MaLion for Windows and Mac versions 3.2.1 to 5.2.1 uses a hardcoded cryptographic key which may allow an attacker to alter the connection settings of Terminal Agent and spoof the Relay Service...
CVE-2017-10819
MaLion for Mac 4.3.0 to 5.2.1 does not properly validate certificates, which may allow an attacker to eavesdrop on an encrypted communication...
CVE-2017-10816
SQL injection vulnerability in the MaLion for Windows and Mac 5.0.0 to 5.2.1 allows remote attackers to execute arbitrary SQL commands via Relay Service Server...
Sql injection
SQL injection vulnerability in the MaLion for Windows and Mac 5.0.0 to 5.2.1 allows remote attackers to execute arbitrary SQL commands via Relay Service Server...
CVE-2017-10817
MaLion for Windows and Mac (versions 5.0.0–5.2.1) contains an authentication bypass vulnerability that allows remote attackers to change settings in the Relay Service Server. The issue is documented in CVE-2017-10817 and is reflected in NVD entries with high to critical impact (CVSSv3.1: base sco...
CVE-2017-10816
Affected products: Intercom MaLion for Windows and MaLion for Mac (versions 5.0.0–5.2.1). Vulnerability: SQL injection via the Relay Service Server. Impact (as stated): remote attacker can execute arbitrary SQL commands. This vulnerability is documented across multiple sources (CNVD/NVD) with the...
CVE-2017-10816
SQL injection vulnerability in the MaLion for Windows and Mac 5.0.0 to 5.2.1 allows remote attackers to execute arbitrary SQL commands via Relay Service Server...
CVE-2017-10817
MaLion for Windows and Mac 5.0.0 to 5.2.1 allows remote attackers to bypass authentication to alter settings in Relay Service Server...
CVE-2017-10815
MaLion for Windows 5.2.1 and earlier only when "Remote Control" is installed and MaLion for Mac 4.0.1 to 5.2.1 only when "Remote Control" is installed allow remote attackers to bypass authentication to execute arbitrary commands or operations on Terminal Agent...
CVE-2017-10819
MaLion for Mac 4.3.0 to 5.2.1 does not properly validate certificates, which may allow an attacker to eavesdrop on an encrypted communication...
CVE-2017-10818
CVE-2017-10818 affects Intercom MaLion for Windows and Mac (versions 3.2.1–5.2.1). The vulnerability stems from a hard-coded cryptographic key, which may allow an attacker to alter the Terminal Agent’s connection settings and spoof the Relay Service. The NVD entry documents a high/critical risk p...
CVE-2017-10815
MaLion for Windows 5.2.1 and earlier (only when “Remote Control” is installed) and MaLion for Mac 4.0.1 to 5.2.1 (only when “Remote Control” is installed) have an authentication-bypass vulnerability that allows remote attackers to execute arbitrary commands on the Terminal Agent. The connected CN...
CVE-2017-10819
CVE-2017-10819 concerns MaLion for Mac, affected versions 4.3.0 to 5.2.1. The root cause is improper certificate validation in the application, which could allow an attacker to eavesdrop on encrypted communications. The linked CNVD/NVD entries confirm the same impact. There is no explicit remedia...