14 matches found
EUVD-2017-3839
Malware in sbrugna...
EUVD-2016-7370
Malware in sbrugna...
CVE-2017-12266
A vulnerability in the routine that loads DLL files in Cisco Meeting App for Windows could allow an authenticated, local attacker to run an executable file with privileges equivalent to those of Cisco Meeting App. The vulnerability is due to incomplete input validation of the path name for DLL...
Input validation
A vulnerability in the routine that loads DLL files in Cisco Meeting App for Windows could allow an authenticated, local attacker to run an executable file with privileges equivalent to those of Cisco Meeting App. The vulnerability is due to incomplete input validation of the path name for DLL...
CVE-2017-12266
Cisco Meeting App for Windows is affected by an elevation-of-privilege flaw in the DLL-loading path validation. The issue stems from incomplete input validation of DLL file paths before loading, allowing a local, authenticated user to place a crafted DLL in a system directory and execute commands...
CVE-2017-12266
A vulnerability in the routine that loads DLL files in Cisco Meeting App for Windows could allow an authenticated, local attacker to run an executable file with privileges equivalent to those of Cisco Meeting App. The vulnerability is due to incomplete input validation of the path name for DLL...
Cisco Meeting App Local Privilege Escalation Vulnerability
A vulnerability in the routine that loads DLL files in Cisco Meeting App for Windows could allow an authenticated, local attacker to run an executable file with privileges equivalent to those of Cisco Meeting App. The vulnerability is due to incomplete input validation of the path name for DLL...
CVE-2016-6447
A vulnerability in Cisco Meeting Server and Meeting App could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior to 2.0.1, Acano Server releases prior to 1.8.16 and prior...
CVE-2016-6447
A vulnerability in Cisco Meeting Server and Meeting App could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior to 2.0.1, Acano Server releases prior to 1.8.16 and prior...
Design/Logic Flaw
A vulnerability in Cisco Meeting Server and Meeting App could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior to 2.0.1, Acano Server releases prior to 1.8.16 and prior...
CVE-2016-6447
The CVE-2016-6447 issue relates to Cisco Meeting Server and Meeting App where an unauthenticated, remote attacker could trigger a buffer underflow/overflow in the SDP/related input handling, allowing arbitrary code execution. Affected products include Cisco Meeting Server releases prior to 2.0.1,...
CVE-2016-6447
A vulnerability in Cisco Meeting Server and Meeting App could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. This vulnerability affects the following products: Cisco Meeting Server releases prior to 2.0.1, Acano Server releases prior to 1.8.16 and prior...
Cisco Meeting Server and Meeting App Buffer Overflow Vulnerability
Cisco Meeting Server formerly known as Acano Conferencing Server is the United States Cisco Cisco company's set of audio and video conferencing server software. Cisco Meeting Server, Meeting App does not perform boundary checks on user data there is a security vulnerability that could allow a...
Cisco Meeting Server and Meeting App Buffer Underflow Vulnerability
A vulnerability in Cisco Meeting Server and Meeting App could allow an unauthenticated, remote attacker to execute arbitrary code on an affected system. The vulnerability exists because the software does not perform sufficient boundary checks on user-supplied data. An unauthenticated, remote...