60 matches found
EUVD-2005-0613
Malware in sbrugna...
EUVD-2010-4277
Malware in sbrugna...
EUVD-2010-3039
Malware in sbrugna...
EUVD-2010-4276
Malware in sbrugna...
EUVD-2010-4278
Malware in sbrugna...
EUVD-2010-4275
Malware in sbrugna...
CVE-2010-4305
Cisco Unified Videoconferencing UVC System 3545, 5110, 5115, and 5230; Unified Videoconferencing 3527 Primary Rate Interface PRI Gateway; Unified Videoconferencing 3522 Basic Rate Interfaces BRI Gateway; and Unified Videoconferencing 3515 Multipoint Control Unit MCU improperly use cookies for...
CVE-2010-4304
The web interface in Cisco Unified Videoconferencing UVC System 3545, 5110, 5115, and 5230; Unified Videoconferencing 3527 Primary Rate Interface PRI Gateway; Unified Videoconferencing 3522 Basic Rate Interfaces BRI Gateway; and Unified Videoconferencing 3515 Multipoint Control Unit MCU uses...
CVE-2010-4303
Cisco Unified Videoconferencing UVC System 5110 and 5115, when the Linux operating system is used, uses world-readable permissions for the /etc/shadow file, which allows local users to discover encrypted passwords by reading this file, aka Bug ID CSCti54043...
CVE-2010-4302
/opt/rv/Versions/CurrentVersion/Mcu/Config/Mcu.val in Cisco Unified Videoconferencing UVC System 5110 and 5115, when the Linux operating system is used, uses a weak hashing algorithm for the 1 administrator and 2 operator passwords, which makes it easier for local users to obtain sensitive...
PT-2024-41418 · Ооо "Ивс" · Videograce
Уязвимость программного обеспечения видеоконференцсвязи VideoGrace связана с недостаточной проверкой входных данных. Эксплуатация уязвимости может позволить нарушителю вызвать отказ в обслуживании...
PT-2024-61: OS Command Injection in Vinteo Videoconferencing Server
The vulnerability was identified in Vinteo Videoconferencing Server, version 29.2.18. The discovered vulnerability can be exploited by an attacker to execute commands with superuser privileges. Vulnerability status: Confirmed by vendor Recommendations: Update to version v29.3.6 or higher...
PT-2024-62: SQL Injection in Vinteo Videoconferencing Server
The vulnerability was identified in Vinteo Videoconferencing Server, version 29.2.18. The discovered vulnerability can be exploited by an authorized attacker to execute arbitrary SQL queries, which can lead to the possibility of executing arbitrary commands with superuser rights. Vulnerability...
Stunner - Tool To Test And Exploit STUN, TURN And TURN Over TCP Servers
Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers. TURN is a protocol mostly used in videoconferencing and audio chats WebRTC. If you find a misconfigured server you can use this tool to open a local socks proxy that relays all traffic via the TURN protocol into the...
MCU system 跨站脚本漏洞
MCUsystem is a multipoint videoconferencing control system from Taiwan Enshiyo Technology Co. MCUsystem suffers from a cross-site scripting vulnerability that stems from the login page not filtering special characters, which can be exploited by a remote attacker to inject JavaScript without...
Command Execution Vulnerability in Videoconferencing Management System of Zhejiang Dahua Technology Co.(CNVD-2021-41013)
Video Conference Management System is a video cloud conferencing service software developed specifically for small and medium-sized businesses. A command execution vulnerability exists in the Video Conference Management System of Zhejiang Dahua Technology Co. Ltd, which can be exploited by an...
Videoconferencing Enterprise Edition Server Administration Background Exists Arbitrary File Download Vulnerability
Videoconferencing Enterprise Edition Server Management Backend is a web-based videoconferencing product. An arbitrary file download vulnerability exists in the Video Conferencing Enterprise Edition server administration backend, which can be exploited by attackers to obtain sensitive information...
Porn Clip Disrupts Virtual Court Hearing for Alleged Twitter Hacker
Perhaps fittingly, a Web-streamed court hearing for the 17-year-old alleged mastermind of the July 15 mass hack against Twitter was cut short this morning after mischief makers injected a pornographic video clip into the proceeding. 17-year-old Graham Clark of Tampa, Fla. was among those charged ...
Microsoft Teams Patch Bypass Allows RCE
COVID-19 has spurred the use of videoconferencing for businesses worldwide – and this expanded threat surface has lured attackers like moths to a flame. Adding insult to injury, researchers have recently discovered a workaround for a previous patch issued for Microsoft Teams, that would allow a...
Remote Workers Pose New Security Risks
The sudden and massive shift to a work-from-home workforce has left millions of employees ill-prepared to handle the new cybersecurity challenges they face, a new study has found. Though many people had no previous work-at-home experience until this year, they were sent home to navigate the...