102 matches found
EUVD-2007-4403
Malware in sbrugna...
EUVD-2007-2581
Malware in sbrugna...
EUVD-2007-4802
Malware in sbrugna...
EUVD-2015-3820
Malware in sbrugna...
The vulnerability of the xwiki-platform-office-viewer component of the XWiki Platform, a platform for creating collaborative web applications. This component allows attackers to view the content of files on the hosting server.
The vulnerability of the xwiki-platform-office-viewer component of the XWiki Platform, a platform for creating collaborative web applications, relates to the disclosure of protected information. Exploiting this vulnerability could allow an attacker to remotely access and view the content of files...
GHSA-M3C3-9QJ7-7XMX Exposure of Sensitive Information to an Unauthorized Actor in org.xwiki.platform:xwiki-platform-office-viewer
Impact The office document viewer macro was allowing anyone to see any file content from the hosting server, provided that the office server was connected and depending on the permissions of the user running the servlet engine e.g. tomcat running XWiki. The same vulnerability also allowed to...
CVE-2023-29517 Exposure of Sensitive Information to an Unauthorized Actor in org.xwiki.platform:xwiki-platform-office-viewer
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. The office document viewer macro was allowing anyone to see any file content from the hosting server, provided that the office server was connected and depending on the permissions of the user...
Kimsuky Hackers Spotted Using 3 New Android Malware to Target South Koreans
The North Korean espionage-focused actor known as Kimsuky has been observed using three different Android malware strains to target users located in its southern counterpart. That's according to findings from South Korean cybersecurity company S2W, which named the malware families FastFire,...
Security Updates for Microsoft Office Viewer Products (December 2018)
The Microsoft Office Viewer Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists when Microsoft Excel software reads out of bound memory due to an uninitialized variable, which could disclose the contents ...
Security Updates for Microsoft Office Viewer Products (November 2018)
The Microsoft Office Viewer Products are missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully...
Security Updates for Microsoft Office Viewer Products (September 2018)
The Microsoft Office Viewer Products are missing a security update. It is, therefore, affected by the following vulnerability : - An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could...
CVE-2018-8382
CVE-2018-8382 is an information-disclosure vulnerability in Microsoft Excel family. Connected advisories attribute the root cause to a missing length verification during parsing of workbook streams, enabling a remote attacker to obtain sensitive memory contents. Affected products include Microsof...
Security Updates for Microsoft Office Viewer Products / Office Compatibility Products (August 2018)
The Microsoft Office Viewer / Office Compatibility Products are missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker w...
Security Updates for Microsoft Office Viewer Products (June 2018)
The Microsoft Office Viewer Products are missing a security update. It is, therefore, affected by the following vulnerability : - An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker who exploited the vulnerability could...
Security Updates for Microsoft Office Viewer Products (April 2018)
The Microsoft Office Viewer Products are missing a security update. It is, therefore, affected by the following vulnerability : - A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully...
Apple iOS < 8.4.1 Multiple Vulnerabilities
Binary data 8978.prm...
Vulnerability of iOS and Mac OS X operating systems, allowing attackers to read arbitrary files
The vulnerability of the Office Viewer component for iOS and Mac OS X lies in the lack of protection for operational data. Exploiting this vulnerability allows a malicious actor to remotely access and read arbitrary files using a specially crafted XML document containing links to external objects...
Apple iOS Office Viewer Sensitive Information Disclosure Vulnerability
Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. A security vulnerability exists in Apple iOS Office Viewer that allows remote users to construct special XML files and trick apps into parsing them, which can trigger XML external entity processing to...
CVE-2015-3784
Office Viewer in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity XXE issue...
CVE-2015-3784
CVE-2015-3784 affects Apple’s Office Viewer in iOS versions before 8.4.1 and OS X versions before 10.10.5. The issue arises from an XML External Entity (XXE) vulnerability where an external entity declaration, combined with an entity reference, enables a remote attacker to read arbitrary files vi...