7 matches found
EUVD-2015-3486
Malware in sbrugna...
CVE-2015-3442
Soreco Xpert.Line 3.0 allows local users to spoof users and consequently gain privileges by intercepting a Windows API call...
Code injection
Soreco Xpert.Line 3.0 allows local users to spoof users and consequently gain privileges by intercepting a Windows API call...
CVE-2015-3442
Soreco Xpert.Line 3.0 allows local users to spoof users and consequently gain privileges by intercepting a Windows API call...
CVE-2015-3442
CVE-2015-3442 affects Xpert.Line 3.0 (Xpert.Center) from Soreco AG. The vulnerability arises from a client‑side authentication mechanism that uses the Windows API getUserNameA from advapi32.dll to authenticate the user. An attacker who can intercept this API call can impersonate other users and g...
CVE-2015-3442 Authentication Bypass in Xpert.Line Version 3.0
COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html Product: Xpert.Line Vendor: Soreco AG 1 CVE ID: CVE-2015-3442 Subject: Authentication Bypass Risk: Critical Effect: Remotely exploitable Authors: Alessandro Zala [email protected] Andreas Hunkeler...
Soreco AG Xpert.Line 3.0 Authentication Bypass
COMPASS SECURITY ADVISORY http://www.csnc.ch/en/downloads/advisories.html Product: Xpert.Line Vendor: Soreco AG 1 CVE ID: CVE-2015-3442 Subject: Authentication Bypass Risk: Critical Effect: Remotely exploitable Author: Alessandro Zala [email protected] Andreas Hunkeler...