26 matches found
Viproy CUCDM IP Phone XML Services - Call Forwarding Tool
The BVSMWeb portal in the web framework in Cisco Unified Communications Domain Manager CDM 10 does not properly implement access control, which allows remote attackers to modify user information. This module exploits the vulnerability to configure unauthorized call forwarding. This module require...
Microsoft Windows multiple security vulnerabilities
XML services information leakage, IPv6 DoS, Direct2D memory corruption, .Net privilege escalation, VBScript code execution...
VLC Web Interface XML Services XSS
The VLC media player install on the remote host is affected by a cross-site scripting vulnerability because it fails to sanitize input passed via XML services in the web interface. Note that the install is likely to be affected by additional vulnerabilities as well, although Nessus has not tested...
VLC < 2.0.7 Multiple Vulnerabilities
The version of VLC media player installed on the remote host is earlier than 2.0.7 and is, therefore, affected by the following vulnerabilities: - The web interface contains a flaw that does not validate input passed via XML services resulting in a cross-site scripting vulnerability. - A flaw...
MSXML 3.0 Remote Code Execution Vulnerability
A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input. An attacker who successfully exploited the vulnerability could run malicious code remotely to take control of the user’s system. To exploit the vulnerability, an attacker could hos...
Security Update for Microsoft XML Core Services 6.0 Service Pack 2 (KB954459)
A security issue has been identified in Microsoft XML Core Services MSXML that could allow an attacker to compromise your Windows-based system and gain control over it. You can help protect your computer by installing this update from Microsoft. After you install this item, you may have to restar...