Summary=======MSN World application for Android (version 1.4.2) stores sensitive information in cleartext within the SQLite database. CVE number: Not AssignedImpact: MediumVendor homepage: http://www.microsoft.com/Vendor notified: 12/13/2012Vendor fixed: 1/30/2013Credit: Christopher Emerson of […]
Summary=======My Xbox Live application for Android (version 1.0) stores sensitive information in cleartext within the SQLite database. Microsoft was originally notified of this issue November 29, 2012. The details of […]
Summary ========== Microsoft Lync 2010 fails to properly sanitize user-supplied input, which can lead to remote code execution. Microsoft was originally notified of this issue December 11, 2012. The details […]
Summary ========== WordPress 3.4.2 fails to invalidate a user’s sessions upon logout. WordPress was originally notified of this issue in November 15, 2012. CVE number: CVE-2012-5868 Impact: Medium Vendor homepage: […]
