[Systems Affected]
Product :Confluence
Company:Atlassian
Versions (1):5.2 / 5.8.14 / 5.8.15
CVSS Score (1) :6.1 / Medium (classified by vendor)
Versions (2):5.9.1 / 5.8.14 / 5.8.15
CVSS Score (2) :7.7 / High
Hi @ll,
quite some utilities offered for free by Kaspersky Lab load and execute
rogue/bogus DLLs (UXTheme.dll, HNetCfg.dll, RichEd20.dll, RASAdHlp.dll,
SetupAPI.dll, ClbCatQ.dll, XPSP2Res.dll, CryptNet.dll, OLEAcc.dll etc.)
eventually found in the directory they are started from (the "application
Hello,
Please find a text-only version below sent to security mailing-lists.
The html version on analysing the vulnerabilities in Ganeti is posted here:
https://pierrekim.github.io/blog/2016-01-05-Ganeti-Info-Leak-DoS.html
=== text-version of the advisory ===
-BEGIN PGP SIGNED