6926 matches found
CVE-2015-3102
Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...
Server side request forgery (ssrf)
The web applications in Microsoft Exchange Server 2013 SP1 and Cumulative Update 8 allow remote attackers to bypass the Same Origin Policy and send HTTP traffic to intranet servers via a crafted request, related to a Server-Side Request Forgery SSRF issue, aka "Exchange Server-Side Request Forger...
UBUNTU-CVE-2015-3098
Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...
UBUNTU-CVE-2015-3099
Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...
UBUNTU-CVE-2015-3102
Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...
CVE-2015-1764
The web applications in Microsoft Exchange Server 2013 SP1 and Cumulative Update 8 allow remote attackers to bypass the Same Origin Policy and send HTTP traffic to intranet servers via a crafted request, related to a Server-Side Request Forgery SSRF issue, aka "Exchange Server-Side Request Forger...
CVE-2015-3098
Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...
CVE-2015-3099
Adobe Flash Player before 13.0.0.292 and 14.x through 18.x before 18.0.0.160 on Windows and OS X and before 11.2.202.466 on Linux, Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X and Android, Adobe AIR SDK before 18.0.0.144 on Windows and before 18.0.0.143 on OS X, and Adobe...
CVE-2015-3098
Adobe Flash Player and related AIR components are affected by a vulnerability (CVE-2015-3098) that could bypass the Same Origin Policy via unspecified vectors. Mageia MGASA-2015-0248 notes a fix in Flash Player 11.2.202.468 and links CVE-2015-3098 to this update. Affected versions include Windows...
CVE-2015-3102
Adobe Flash Player and related runtimes (Windows/macOS: 13.0.0.292 and 14.x–18.x before 18.0.0.160; Linux before 11.2.202.466; AIR before 18.0.0.144 on Windows and before 18.0.0.143 on macOS/Android; AIR SDKs before 18.0.0.144/18.0.0.143) are affected by CVE-2015-3102, which enables remote bypass...
CVE-2015-3099
CVE-2015-3099 concerns Adobe Flash Player and related Adobe AIR components. Affected versions include Flash Player 13.0.0.292 and 14.x up to 18.x before 18.0.0.160 on Windows/macOS, and before 11.2.202.466 on Linux; Adobe AIR before 18.0.0.144 on Windows and before 18.0.0.143 on OS X/Android; and...
Microsoft Exchange Server Same-Origin Policy Bypass Vulnerability
Microsoft Exchange Server is an enterprise-class mail service program. A same-origin policy bypass vulnerability exists in Microsoft Exchange Server, which could be exploited by a remote attacker to submit a special web application request to bypass the same-origin policy and obtain sensitive...
Adobe Flash Player Same-Origin Policy Bypass Information Disclosure Vulnerability (CNVD-2015-03774)
Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from a same-origin policy bypass vulnerability, which allows remote attackers to exploit the vulnerability to construct malicious SWF content that can be parsed by the user and can be used to obtain sensitive...
Adobe Flash Player Same Origin Policy Bypass Information Disclosure Vulnerability (CNVD-2015-03801)
Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from a same-origin policy bypass vulnerability, which allows remote attackers to exploit the vulnerability to construct malicious SWF content that can be parsed by the user and can be used to obtain sensitive...
Adobe Flash Player Homologation Policy Bypasses Information Disclosure Vulnerability
Adobe Flash Player is a Flash file handling program. Adobe Flash Player suffers from a same-origin policy bypass vulnerability, which allows remote attackers to exploit the vulnerability to construct malicious SWF content that can be parsed by the user and can be used to obtain sensitive...
Microsoft Exchange Server Privilege Escalation Vulnerability (3062157)
This host is missing an important security update according to Microsoft Bulletin MS15-064. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE...
Microsoft Exchange Server CVE-2015-1764 Same Origin Policy Security Bypass Vulnerability
Description Microsoft Exchange Server is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass the same-origin policy, obtain sensitive information and perform unauthorized actions. This could be used to steal sensitive information or launch other attacks...
Google Chrome < 43.0.2357.124 Multiple Vulnerabilities
The version of Google Chrome installed on the remote Windows host is prior to 43.0.2357.124. It is, therefore, affected by multiple vulnerabilities related to Adobe Flash : - An unspecified vulnerability exists that allows an attacker to bypass the fix for CVE-2014-5333. CVE-2015-3096 - An...
Google Chrome < 43.0.2357.124 Multiple Vulnerabilities (Mac OS X)
The version of Google Chrome installed on the remote Mac OS X host is prior to 43.0.2357.124. It is, therefore, affected by multiple vulnerabilities related to Adobe Flash : - An unspecified vulnerability exists that allows an attacker to bypass the fix for CVE-2014-5333. CVE-2015-3096 - Multiple...
Multiple Blue Coat Systems SSL Visibility Appliance Products Incorrectly Enter Authentication Vulnerabilities
Blue Coat Systems SSL Visibility Appliance SV800 and others are products of Blue Coat Systems, U.S.A. The Blue Coat SSL Visibility Appliance SV800 is a management platform that provides complete visibility into encrypted traffic. The appliance offers features such as a dedicated encrypted traffic...