| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2010-1905 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allow remote attackers to inject arbitrary web script or HTML via crafted input to ASP pages, as demonstrated using the backurl p
|
10-10-2018 - 19:57 | 12-05-2010 - 11:46 | |
| CVE-2010-1910 | 5.1 |
The Forgot Password implementation in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to reset passwords of accounts with blank Hint questions and Hint answers by sending an empty value for each of these two
|
10-10-2018 - 19:57 | 12-05-2010 - 11:46 | |
| CVE-2010-1906 | 7.2 |
tgsrv.exe in the Repair Service in Consona Dynamic Agent, Repair Manager, Subscriber Activation, and Subscriber Agent relies on a predictable timestamp field to validate input to the \\.\pipe\__RepairService_pipe__company named pipe, which allows rem
|
10-10-2018 - 19:57 | 12-05-2010 - 11:46 | |
| CVE-2010-1911 | 9.3 |
The site-locking implementation in the SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance relies on a list of server domain names to restrict execution of ActiveX controls, which makes it ea
|
10-10-2018 - 19:57 | 12-05-2010 - 11:46 |