CVE-2017-10815

MaLion for Windows 5.2.1 and earlier (only when “Remote Control” is installed) and MaLion for Mac 4.0.1 to 5.2.1 (only when “Remote Control” is installed) have an authentication-bypass vulnerability that allows remote attackers to execute arbitrary commands on the Terminal Agent. The connected CN...

CVE-2017-10816

Affected products: Intercom MaLion for Windows and MaLion for Mac (versions 5.0.0–5.2.1). Vulnerability: SQL injection via the Relay Service Server. Impact (as stated): remote attacker can execute arbitrary SQL commands. This vulnerability is documented across multiple sources (CNVD/NVD) with the...

CVE-2017-10818

CVE-2017-10818 affects Intercom MaLion for Windows and Mac (versions 3.2.1–5.2.1). The vulnerability stems from a hard-coded cryptographic key, which may allow an attacker to alter the Terminal Agent’s connection settings and spoof the Relay Service. The NVD entry documents a high/critical risk p...

CVE-2017-10819

CVE-2017-10819 concerns MaLion for Mac, affected versions 4.3.0 to 5.2.1. The root cause is improper certificate validation in the application, which could allow an attacker to eavesdrop on encrypted communications. The linked CNVD/NVD entries confirm the same impact. There is no explicit remedia...

CVE-2017-10817

MaLion for Windows and Mac (versions 5.0.0–5.2.1) contains an authentication bypass vulnerability that allows remote attackers to change settings in the Relay Service Server. The issue is documented in CVE-2017-10817 and is reflected in NVD entries with high to critical impact (CVSSv3.1: base sco...