In Zammad 5.0.2, agents can configure "out of office" periods and substitute persons. Starting with version 1.7.0.0 and ending with version 1.7.8.3, an attacker is able to inject twig code inside the back office when using the legacy layout. PrestaShop is an Open Source e-commerce platform. Microsoft Office Remote Code Execution Vulnerability. Microsoft Office Visio Remote Code Execution Vulnerability. Microsoft Office Graphics Remote Code Execution Vulnerability. Microsoft Office ClickToRun Remote Code Execution Vulnerability. Microsoft Office Information Disclosure Vulnerability. The following products are affected: Acronis Cyber Protect 15 (Windows) before build 28035, Acronis Agent (Windows) before build 27147, Acronis Cyber Protect Home Office (Windows) before build 39612, Acronis True Image 2021 (Windows) before build 39287 Local privilege escalation due to excessive permissions assigned to child processes. The following products are affected: Acronis Cyber Protect Home Office (macOS) before build 39605, Acronis True Image 2021 (macOS) before build 39287 Local privilege escalation due to race condition on application startup. Local privilege escalation due to unrestricted loading of unsigned libraries. SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter. Microsoft Office Word Tampering Vulnerability. The installer of WPS Office for Windows versions prior to v11.8 fails to configure properly the ACL for the directory where the service program is installed. The kernel mode driver kwatch3 of KINGSOFT Internet Security 9 Plus Version 2010.06.23.247 fails to properly handle crafted inputs, leading to stack-based buffer overflow. insecurely load VERSION.DLL (or some other DLLs), allowing an attacker to execute arbitrary code with the privilege of the user invoking the installer. insecurely load shcore.dll, allowing an attacker to execute arbitrary code with the privilege of the user invoking the installer. pps files('current directory type' DLL loading). insecurely load d3dx9_41.dll when opening.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |