Cyberthreat Blog, Author at Cyberthreat Blog from Fortify24x7 Page 27271 of 28407

CVE-2017-8516

Posted by Cyberthreat Blog | Aug 8, 2017 | CVE Notifications |

Microsoft SQL Server Analysis Services in Microsoft SQL Server 2012, Microsoft SQL Server 2014, and Microsoft SQL Server 2016 allows an information disclosure vulnerability when it improperly enforces permissions, aka...

CVE-2010-2245

Posted by Cyberthreat Blog | Aug 8, 2017 | CVE Notifications |

XML External Entity (XXE) vulnerability in Apache Wink 1.1.1 and earlier allows remote attackers to read arbitrary files or cause a denial of service via a crafted XML document.

CVE-2017-8591

Posted by Cyberthreat Blog | Aug 8, 2017 | CVE Notifications |

Windows Input Method Editor (IME) in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an remote code execution vulnerability when it fails to...

CVE-2012-0803

Posted by Cyberthreat Blog | Aug 8, 2017 | CVE Notifications |

The WS-SP UsernameToken policy in Apache CXF 2.4.5 and 2.5.1 allows remote attackers to bypass authentication by sending an empty UsernameToken as part of a SOAP request.

CVE-2010-3845

Posted by Cyberthreat Blog | Aug 8, 2017 | CVE Notifications |

libapache-authenhook-perl 2.00-04 stores usernames and passwords in plaintext in the vhost error log.

Author: Cyberthreat Blog

CVE-2017-8516

CVE-2010-2245

CVE-2017-8591

CVE-2012-0803

CVE-2010-3845