EUVD-2018-3363

Malware in sbrugna...

CVE-2018-11325

CVE-2018-11325 affects Joomla! Core prior to 3.8.8. The issue is that the web install application would autofill and display the administrator password in plaintext on the confirmation screen after a form validation error or returning to a previous install step. Connected documents corroborate th...

Design/Logic Flaw

The Web Install ActiveX control CSDWebInstaller in Cisco Secure Desktop CSD before 3.5.841 does not properly verify the signatures of downloaded programs, which allows remote attackers to force the download and execution of arbitrary files via a crafted web page, aka Bug ID CSCta25876...

CVE-2010-0589

CVE-2010-0589 affects Cisco Secure Desktop prior to version 3.5.841. The vulnerability lies in the Web Install ActiveX control (CSDWebInstaller) failing to properly verify signatures of downloaded executables, enabling a remote attacker to force a user to download and execute arbitrary files via ...

KLA10106 ACE vulnerability in Cisco Secure Desktop

An improperly downloaded files verification vulnerability was found in Cisco Security Desktop. By exploiting this vulnerability malicious users can Execute Arbitrary Code. This vulnerability can be exploited from the network at a point related to Web Install via a specially designed web page...

Trend Micro OfficeScan OfficeScanSetupINI.dll Remote Buffer Overflow

The remote host is running Trend Micro Antivirus, a commercial anti- virus software package for Windows. The remote version of the installed antivirus is vulnerable to a remote buffer overflow attack. The issue exists due a vulnerability in the ActiveX control installed by the OfficeScan server...