EUVD-2015-7248

Malware in sbrugna...

SA40054 - 2015-09: Security Advisory: Secure Meeting (Pulse Collaboration) issue may allow authenticated users to bypass meeting authorization (CVE-2015-7323)

Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. An authorization bypass issue has been discovered in Secure Meeting Pulse Collaboration. This issue could allow an authenticated user to log into meetings that they do not have...

SA40053 - 2015-09: Security Advisory: Secure Meeting (Pulse Collaboration) information disclosure vulnerability (CVE-2015-7322)

Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. An information disclosure issue has been discovered in Secure Meeting Pulse Collaboration. This issue could allow an attacker to enumerate currently in progress meetings on the device...

CVE-2015-7323

The Secure Meeting Pulse Collaboration in Pulse Connect Secure formerly Juniper Junos Pulse before 7.1R22.1, 7.4, 8.0 before 8.0R11, and 8.1 before 8.1R3 allows remote authenticated users to bypass intended access restrictions and log into arbitrary meetings by leveraging a meeting id and...

Design/Logic Flaw

The Secure Meeting Pulse Collaboration in Pulse Connect Secure formerly Juniper Junos Pulse before 7.1R22.1, 7.4, 8.0 before 8.0R11, and 8.1 before 8.1R3 allows remote authenticated users to bypass intended access restrictions and log into arbitrary meetings by leveraging a meeting id and...

Code injection

The Secure Meeting Pulse Collaboration in Pulse Connect Secure formerly Juniper Junos Pulse before 7.1R22.1, 7.4, 8.0 before 8.0R11, and 8.1 before 8.1R3 provides different messages for attempts to join a meeting depending on the status of the meeting, which allows remote attackers to enumerate...

CVE-2015-7323

The Secure Meeting Pulse Collaboration in Pulse Connect Secure formerly Juniper Junos Pulse before 7.1R22.1, 7.4, 8.0 before 8.0R11, and 8.1 before 8.1R3 allows remote authenticated users to bypass intended access restrictions and log into arbitrary meetings by leveraging a meeting id and...

CVE-2015-7322

The CVE-2015-7322 issue affects Pulse Connect Secure’s Secure Meeting (Pulse Collaboration). Affected releases expose different join-meeting messages based on meeting status, enabling remote attackers to enumerate valid meeting IDs by issuing a sequence of requests. This is an information-disclos...

Pulse Connect Secure Secure Meeting Component Access Control Vulnerability

Pulse Connect Secure is an SSL-based VPN for businesses. Access control exists for the Pulse Connect Secure Secure Meeting component, allowing an attacker to exploit a vulnerability to join a meeting unauthorized...

Junos Pulse Secure Meeting 8.0.5 Access Bypass Vulnerability

Junos Pulse Secure Meeting version 8.0.5 allows an attacker to enter "secure" meetings without knowledge of the password and the invitation link using the java fat client meetingAppSun.jar. Vulnerablity Title ================== Secure Meeting Pulse Collaboration issue may allow authenticated user...

Juniper Junos Pulse Secure Access Service IVE OS (SSL VPN) XSS (JSA10617)

According to its self-reported version, the version of Juniper Junos Pulse Secure Access Service IVE OS running on the remote host is affected by an unspecified cross-site scripting vulnerability that is present within the Pulse Collaboration Secure Meeting user pages. An attacker could exploit...