Orange Business Services
Vigil@nce Vigil@nce Vigil@nce
we track for your security since 1999
  home presentation vulnerabilities documentation contact  
subscriber area subscriber area
free access free access
The Vigil@nce team watches vulnerabilities impacting your computers, and then offers solutions, a database and tools to correct them.
recent vulnerabilities recent vulnerabilities
tracked products tracked products
RSS feed RSS feed
vulnerable product
Vulnerabilities of Lync

Lync vulnerability: use after free
An attacker can use a freed memory area in Microsoft Lync and Communicator, in order to trigger a denial of service, and possibly to execute code.

Lync vulnerability: privilege elevation via HTML Sanitization
An attacker can invite the victim to display a malicious HTML document with Microsoft InfoPath, Communicator, Lync or SharePoint, in order to execute JavaScript code with victim's privileges.

Lync vulnerability: Cross Site Scripting via User-Agent
When an attacker can modify the User-Agent header sent by victim's web browser, he can trigger a Cross Site Scripting, in order to execute JavaScript code in the context of the web site of Microsoft Lync Server.

Lync vulnerability: code execution
An attacker can use four vulnerabilities of Microsoft Lync, in order to execute code.

Display other vulnerabilities of Lync described by Vigil@nce...

Display information about Lync:



















Copyright 1999-2013 Vigil@nce. Vigil@nce is a service from Orange Business Services. Site map. Legal notice. Version française