19 matches found
EUVD-2006-6493
Malware in sbrugna...
EUVD-2006-6492
Malware in sbrugna...
EUVD-2018-10482
Malware in sbrugna...
Privilege escalation
An elevation of privilege vulnerability exists in the Call Dispatcher in Provisio SiteKiosk before 9.7.4905...
CVE-2018-18766
An elevation of privilege vulnerability exists in the Call Dispatcher in Provisio SiteKiosk before 9.7.4905...
CVE-2018-18766
An elevation of privilege vulnerability exists in the Call Dispatcher in Provisio SiteKiosk before 9.7.4905...
CVE-2018-18766
An elevation of privilege vulnerability exists in the Call Dispatcher in Provisio SiteKiosk before 9.7.4905...
CVE-2018-18766
CVE-2018-18766 affects Provisio SiteKiosk prior to version 9.7.4905, specifically the Call Dispatcher component. The vulnerability is described as an elevation of privilege. Public references in the connected documents consistently indicate the affected product and version, with no detailed explo...
sitekiosk-pwn.txt
Proviso SiteKiosk File Download Vulnerability x Vendor Information: "SiteKiosk is a software for public access internet terminals and lets you turn any computer into a secure multilanguage Internet terminal already 20 different languages included, allowing the user to access the Internet but...
Proviso SiteKiosk File Download Vulnerability
Proviso SiteKiosk File Download Vulnerability x Vendor Information: "SiteKiosk is a software for public access internet terminals and lets you turn any computer into a secure multilanguage Internet terminal already 20 different languages included, allowing the user to access the Internet but...
SiteKiosk < 6.5.150 Multiple Vulnerabilities
According to its version number, the installation of SiteKiosk on the remote host contains an unspecified ActiveX control that is marked as 'safe for scripting' yet exposes two dangerous methods that reading and downloading of any file from the kiosk. In addition, it fails to completely sanitize...
CVE-2006-6510
An unspecified ActiveX control in SiteKiosk before 6.5.150 is installed "safe for scripting", which allows local users to bypass security protections and read arbitrary files via certain functions...
CVE-2006-6509
Cross-site scripting XSS vulnerability in the skinning feature in SiteKiosk before 6.5.150 allows local users to bypass security protections and inject arbitrary web script or HTML via an ABOUT: URI, which is displayed in the title bar of the browser...
CVE-2006-6509
Cross-site scripting XSS vulnerability in the skinning feature in SiteKiosk before 6.5.150 allows local users to bypass security protections and inject arbitrary web script or HTML via an ABOUT: URI, which is displayed in the title bar of the browser...
CVE-2006-6510
SiteKiosk pre-6.5.150 contains an unspecified ActiveX control labeled “safe for scripting” that can bypass protections and read arbitrary files via certain functions. This is documented across CVE-2006-6510 sources (NVD), and corroborated by the Nessus entry noting additional locally exploitable ...
[SBDA] SiteKiosk - FileSystem Access
Still time before Christmas. ======================================================================== = SiteKiosk - FileSystem Access = = Vendor Website: = http://www.sitekiosk.com/ = = Affected Software: = SiteKiosk 6.5.150 = = Public disclosure on Tuesday December 12, 2006...
CVE-2006-6509
SiteKiosk
SiteKiosk security protection bypass
It's possible to access disk content with broser path ABOUT:helloa href=click here/a...
CVE-2006-6510
An unspecified ActiveX control in SiteKiosk before 6.5.150 is installed "safe for scripting", which allows local users to bypass security protections and read arbitrary files via certain functions...