14 matches found
EUVD-2018-7835
Malware in sbrugna...
K13217575: Session data may be exposed when using a proxy to multiplex connections to the BIG-IP APM system
Security Advisory Description This issue occurs when all of the following conditions are met: The BIG-IP APM system is configured to perform NTLM SSO authentication to back-end servers. A proxy in front of the BIG-IP APM system multiplexes connections from different users. Impact Users may be...
CVE-2019-17497
Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files a related issue to CVE-2018-4993. For example, an NTLM hash is sent for a link to \192.168.0.2\C$\file.pdf without user interaction...
Design/Logic Flaw
Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files a related issue to CVE-2018-4993. For example, an NTLM hash is sent for a link to \192.168.0.2\C$\file.pdf without user interaction...
CVE-2019-17497
Tracker PDF-XChange Editor before 8.0.330.0 has an NTLM SSO hash theft vulnerability using crafted FDF or XFDF files a related issue to CVE-2018-4993. For example, an NTLM hash is sent for a link to \192.168.0.2\C$\file.pdf without user interaction...
CVE-2018-15979
Adobe Acrobat and Reader versions 2019.008.20080 and earlier, 2017.011.30105 and earlier, and 2015.006.30456 and earlier have a ntlm sso hash theft vulnerability. Successful exploitation could lead to information disclosure...
CVE-2018-15979
The CVE-2018-15979 entry describes an information disclosure vulnerability in Adobe Acrobat/Reader. Affected products include Adobe Acrobat/Reader versions 2019.008.20080 and earlier, 2017.011.30105 and earlier, and 2015.006.30456 and earlier, with NTLM SSO hash theft as the underlying issue. The...
Adobe Acrobat < 2015.006.30457 / 2017.011.30106 / 2019.008.20081 Vulnerability (APSB18-40)
The version of Adobe Acrobat installed on the remote Windows host is a version prior to 2015.006.30457, 2017.011.30106, or 2019.008.20081. It is, therefore, affected by a vulnerability. - Adobe Acrobat and Reader versions 2019.008.20080 and earlier, 2017.011.30105 and earlier, and 2015.006.30456...
KLA11357 Information disclosure Vulnerability in Adobe Acrobat and Reader
Vulnerability related to NTLM SSO hash theft was found in Adobe Acrobat and Reader. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories APSB18-40 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More...
CVE-2018-4993
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have an NTLM SSO hash theft vulnerability. Successful exploitation could lead to information disclosure...
CVE-2018-4993
Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and 2015.006.30417 and earlier have an NTLM SSO hash theft vulnerability. Successful exploitation could lead to information disclosure...
Adobe Acrobat 2017 Security Updates (APSB18-09) - Windows
Adobe Acrobat 2017 is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:adobe:acrobat";...
Adobe Reader DC (Classic Track) Security Updates (APSB18-09) - Mac OS X
Adobe Reader DC Classic Track is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Adobe Reader DC (Classic Track) Security Updates (APSB18-09) - Windows
Adobe Reader DC Classic Track is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...