24 matches found
EUVD-2017-6260
Malware in sbrugna...
EUVD-2017-6263
Malware in sbrugna...
Skybox Manager Client Application Elevation of Privilege Vulnerability
Skybox Manager Client Application is a client-side management application of a network security risk analysis tool from Skybox Security, USA. An elevated privilege vulnerability exists in Skybox Manager Client Application versions prior to 8.5.501. A local attacker can exploit this vulnerability ...
Skybox Manager Client Application File Upload Vulnerability
Skybox Manager Client Application is a client-side management application of a network security risk analysis tool from Skybox Security, USA. An arbitrary file upload vulnerability exists in Skybox Manager Client Application versions prior to 8.5.501, where the program fails to adequately validat...
Skybox Manager Client Application Information Disclosure Vulnerability
Skybox Manager Client Application is a client-side management application of a network security risk analysis tool from Skybox Security, USA. An information disclosure vulnerability exists in Skybox Manager Client Application versions prior to 8.5.501. A local attacker can exploit this...
Skybox Manager Client Application Information Disclosure Vulnerability (CNVD-2017-32291)
Skybox Manager Client Application is a client-side management application of a network security risk analysis tool from Skybox Security, USA. An information disclosure vulnerability exists in Skybox Manager Client Application. A local attacker could exploit the vulnerability by analyzing error...
CVE-2017-14770
Skybox Manager Client Application prior to 8.5.501 is prone to an information disclosure vulnerability of user password hashes. A local authenticated attacker can access the password hashes in a debugger-pause state during the authentication process...
CVE-2017-14772
Skybox Manager Client Application is prone to information disclosure via a username enumeration attack. A local unauthenticated attacker could exploit the flaw to obtain valid usernames, by analyzing error messages upon valid and invalid account login attempts...
CVE-2017-14773
Skybox Manager Client Application prior to 8.5.501 is prone to an elevation of privileges vulnerability during authentication of a valid user in a debugger-pause state. The vulnerability can only be exploited by a local authenticated attacker...
CVE-2017-14770
Skybox Manager Client Application prior to 8.5.501 is prone to an information disclosure vulnerability of user password hashes. A local authenticated attacker can access the password hashes in a debugger-pause state during the authentication process...
CVE-2017-14771
Skybox Manager Client Application prior to 8.5.501 is prone to an arbitrary file upload vulnerability due to insufficient input validation of user-supplied files path when uploading files via the application. During a debugger-pause state, a local authenticated attacker can upload an arbitrary fi...
CVE-2017-14771
Skybox Manager Client Application prior to 8.5.501 is prone to an arbitrary file upload vulnerability due to insufficient input validation of user-supplied files path when uploading files via the application. During a debugger-pause state, a local authenticated attacker can upload an arbitrary fi...
CVE-2017-14773
Skybox Manager Client Application prior to 8.5.501 is prone to an elevation of privileges vulnerability during authentication of a valid user in a debugger-pause state. The vulnerability can only be exploited by a local authenticated attacker...
Input validation
Skybox Manager Client Application prior to 8.5.501 is prone to an arbitrary file upload vulnerability due to insufficient input validation of user-supplied files path when uploading files via the application. During a debugger-pause state, a local authenticated attacker can upload an arbitrary fi...
Information disclosure
Skybox Manager Client Application is prone to information disclosure via a username enumeration attack. A local unauthenticated attacker could exploit the flaw to obtain valid usernames, by analyzing error messages upon valid and invalid account login attempts...
Privilege escalation
Skybox Manager Client Application prior to 8.5.501 is prone to an elevation of privileges vulnerability during authentication of a valid user in a debugger-pause state. The vulnerability can only be exploited by a local authenticated attacker...
CVE-2017-14773
Skybox Manager Client Application prior to 8.5.501 is prone to an elevation of privileges vulnerability during authentication of a valid user in a debugger-pause state. The vulnerability can only be exploited by a local authenticated attacker...
CVE-2017-14770
Skybox Manager Client Application prior to 8.5.501 is prone to an information disclosure vulnerability of user password hashes. A local authenticated attacker can access the password hashes in a debugger-pause state during the authentication process...
CVE-2017-14771
Skybox Manager Client Application prior to 8.5.501 is prone to an arbitrary file upload vulnerability due to insufficient input validation of user-supplied files path when uploading files via the application. During a debugger-pause state, a local authenticated attacker can upload an arbitrary fi...
CVE-2017-14773
Skybox Manager Client Application (before 8.5.501) has an elevation of privileges vulnerability during authentication in a debugger-pause state. Exploitation requires a local authenticated attacker. Root cause details are not further specified in the provided documents. Remediation: upgrade to ve...