RSS   Podatności dla 'Worksite web'   RSS

2008-04-08
 
CVE-2008-1700

CWE-399
 

 
The Web TransferCtrl Class 8,2,1,4 (iManFile.cab), as used in WorkSite Web 8.2 before SP1 P2, allows remote attackers to cause a denial of service (memory consumption) via a large number of SendNrlLink directives, which opens a separate window for each directive.

 
 
CVE-2008-1617

CWE-189
 

 
Double free vulnerability in Web TransferCtrl Class 8,2,1,4 (iManFile.cab), as used in WorkSite Web 8.2 before SP1 P2, allows remote attackers to execute arbitrary code via JavaScript that sets the Server property to a string, then sets the string to null.

 


Copyright 2024, cxsecurity.com

 

Back to Top