virtualgames.partypoker.com Cross Site Scripting vulnerability OBB-1393434

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

virtualgames.partypoker.com Cross Site Scripting vulnerability OBB-1385505

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

PartyGaming PartyPoker updates spoofing

Cryptography is not used to validate update authenticity...

SECOBJADV-2008-03.2: PartyGaming PartyPoker Malicious Update Vulnerability

====================================================================== = Security Objectives Advisory SECOBJADV-2008-03.2 = ====================================================================== PartyGaming PartyPoker Malicious Update Vulnerability...

Code injection

The PartyGaming PartyPoker client program 121/120 does not properly verify the authenticity of updates, which allows remote man-in-the-middle attackers to execute arbitrary code via a Trojan horse update...

CVE-2008-3324

The PartyGaming PartyPoker client program 121/120 does not properly verify the authenticity of updates, which allows remote man-in-the-middle attackers to execute arbitrary code via a Trojan horse update...

CVE-2008-3324

The PartyGaming PartyPoker client program 121/120 does not properly verify the authenticity of updates, which allows remote man-in-the-middle attackers to execute arbitrary code via a Trojan horse update...

CVE-2008-3324

CVE-2008-3324 affects PartyGaming PartyPoker client 121/120. The issue is an origin validation/verification failure for updates, allowing remote attackers to perform a man-in-the-middle attack and deliver a Trojan horse update that executes arbitrary code. Exploitation requires impersonating the ...

PT-2008-4730 · Partygaming · Partypoker

Name of the Vulnerable Software and Affected Versions: PartyGaming PartyPoker client program version 121/120 Description: The issue concerns the PartyGaming PartyPoker client program, which fails to properly verify the authenticity of updates. This allows remote man-in-the-middle attackers to...