CVE-2016-0952
Adobe Photoshop CC 2014 before 15.2.4, Photoshop CC 2015 before 16.1.2, and Bridge CC before 6.2 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0951 and CVE-2016-0953.
Source: CVE-2016-0952
CVE-2016-0951
Adobe Photoshop CC 2014 before 15.2.4, Photoshop CC 2015 before 16.1.2, and Bridge CC before 6.2 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-0952 and CVE-2016-0953.
Source: CVE-2016-0951
CVE-2016-0950
Adobe Connect before 95.2 allows remote attackers to spoof the user interface via unspecified vectors.
Source: CVE-2016-0950
CVE-2016-0949
Adobe Connect before 95.2 allows remote attackers to have an unspecified impact via a crafted parameter in a URL.
Source: CVE-2016-0949
CVE-2016-0948
Cross-site request forgery (CSRF) vulnerability in Adobe Connect before 95.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Source: CVE-2016-0948
CVE-2015-7680
Ipswitch MOVEit DMZ before 8.2 provides different error messages for authentication attempts depending on whether the user account exists, which allows remote attackers to enumerate usernames via a series of SOAP requests to machine.aspx.
Source: CVE-2015-7680
CVE-2015-7679
Cross-site scripting (XSS) vulnerability in Ipswitch MOVEit Mobile before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the query string to mobile/.
Source: CVE-2015-7679
CVE-2015-7678
Multiple cross-site request forgery (CSRF) vulnerabilities in Ipswitch MOVEit Mobile 1.2.0.962 and earlier allow remote attackers to hijack the authentication of unspecified victims via unknown vectors.
Source: CVE-2015-7678
CVE-2015-7677 (moveit_dmz)
The MOVEitISAPI service in Ipswitch MOVEit DMZ before 8.2 provides different error messages depending on whether a FileID exists, which allows remote authenticated users to enumerate FileIDs via the X-siLock-FileID parameter in a download action to MOVEitISAPI/MOVEitISAPI.dll.
Source: CVE-2015-7677 (moveit_dmz)
CVE-2015-7675
The "Send as attachment" feature in Ipswitch MOVEit DMZ before 8.2 and MOVEit Mobile before 1.2.2 allow remote authenticated users to bypass authorization and read uploaded files via a valid FileID in the (1) serverFileIds parameter to mobile/sendMsg or (2) arg01 parameter to human.aspx.
Source: CVE-2015-7675