58 matches found
EUVD-2010-4512
Malware in sbrugna...
EUVD-2010-4510
Malware in sbrugna...
EUVD-2014-6016
Malware in sbrugna...
EUVD-2012-5232
Malware in sbrugna...
EUVD-2010-4513
Malware in sbrugna...
EUVD-2012-4749
Malware in sbrugna...
EUVD-2012-5230
Malware in sbrugna...
CVE-2012-5308
Cross-site request forgery CSRF vulnerability in servlet/traveler in IBM Lotus Notes Traveler through 8.5.3.3 Interim Fix 1 allows remote attackers to hijack the authentication of arbitrary users for requests that create problem reports via a getReportProblem upload action...
CVE-2010-4550
IBM Lotus Notes Traveler before 8.5.1.3 allows remote attackers to cause a denial of service sync failure via a malformed document...
CVE-2012-4825
Multiple cross-site scripting XSS vulnerabilities in servlet/traveler/ILNT.mobileconfig in IBM Lotus Notes Traveler before 8.5.3.2 allow remote attackers to inject arbitrary web script or HTML via the 1 userId or 2 address parameter in a getClientConfigFile action...
CVE-2010-4551
IBM Lotus Notes Traveler before 8.5.1.2 allows remote authenticated users to cause a denial of service NULL pointer dereference and daemon crash by omitting the Internet ID field in the person document, and then using an Apple device to 1 accept or 2 decline an invitation...
Getting Started with Citrix Secure Mail
The purpose of this getting started guide is to provide a reference document with key information about Citrix Citrix Secure Mail. Navigation: What is Secure Mail? Citrix Secure Mail Connection Modes List of Supported Mail Servers Citrix Secure Mail w/ IBM Notes Supported File Formats Push...
XSS vulnerability in IBM Domino
Hello 3APA3A! I want to warn you about Cross-Site Scripting vulnerability in IBM Domino. This is one from many vulnerabilities in Domino, which I've found at 03.05.2012. In previous years I wrote about multiple vulnerabilities in Lotus Domino http://securityvulns.ru/docs29277.html and Lotus Notes...
IBM Notes Traveler Companion application information disclosure vulnerability
IBM Notes Traveler is an email product powerfully built for Lotus Notes mobile users. An information disclosure vulnerability exists in the IBM Notes Traveler Companion application, which allows attackers to exploit this vulnerability by conducting phishing attacks involving encrypted email to...
Design/Logic Flaw
The IBM Notes Traveler Companion application 1.0 and 1.1 before 201411010515 for Window Phone, as distributed in IBM Notes Traveler 9.0.1, does not properly restrict the number of executions of the automatic configuration option, which makes it easier for remote attackers to capture credentials b...
CVE-2014-8921
The IBM Notes Traveler Companion application 1.0 and 1.1 before 201411010515 for Window Phone, as distributed in IBM Notes Traveler 9.0.1, does not properly restrict the number of executions of the automatic configuration option, which makes it easier for remote attackers to capture credentials b...
CVE-2014-8921
The IBM Notes Traveler Companion application 1.0 and 1.1 before 201411010515 for Window Phone, as distributed in IBM Notes Traveler 9.0.1, does not properly restrict the number of executions of the automatic configuration option, which makes it easier for remote attackers to capture credentials b...
CVE-2014-8921
The vulnerability CVE-2014-8921 affects the IBM Notes Traveler Companion for Windows Phone (versions 1.0 and 1.1 prior to 201411010515, as distributed in IBM Notes Traveler 9.0.1). The issue is an improper restriction on the number of executions of the automatic configuration option, which could ...
IBM Notes Traveler for Android transmits user credentials over HTTP
Overview The IBM Notes Traveler application for Android does not enforce the use of HTTPS for transmitting user credentials, which can allow an attacker to obtain this information. Description IBM Notes Traveler formerly known as Lotus Notes Traveler is an application that allows access to email,...
CVE-2014-6130
The IBM Notes Traveler application before 9.0.1.3 for Android lacks a warning message during selection of an HTTP session, which makes it easier for remote attackers to obtain sensitive information by sniffing the network during a session in which the user had intended to use HTTPS...