2 matches found
CVE-2018-8474
CVE-2018-8474 affects Microsoft Lync for Mac 2011. The vulnerability stems from improper sanitization of specially crafted messages, enabling a security feature bypass that can cause the target to browse to an attacker-controlled website or download files listed as safe, without user interaction....
CVE-2017-0129
CVE-2017-0129 is a certificate-validation vulnerability in Microsoft Lync for Mac 2011. The flaw stems from improper X.509 certificate validation, enabling a remote attacker to tamper with TLS-secured communications (man‑in‑the‑middle) between server and client. Connected sources confirm the vuln...