Published: 10/12/2013 Updated: 29/08/2017

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

VMScore: 312

Vector: AV:N/AC:M/Au:S/C:P/I:N/A:N

The ISL Desktop plugin for Windows prior to 1.4.7 for ISL Light 3.5.4 and previous versions allows remote authenticated users to obtain sensitive information by pasting the clipboard contents that have been copied by another user in the session.

Vulnerable Product	Search on Vulmon	Subscribe to Product
islonline isl_desktop_plugin
islonline isl_desktop_plugin 1.4.2
islonline isl_desktop_plugin 1.4.1
islonline isl_desktop_plugin 1.3.3
islonline isl_light

ISL Light - Desktop version 354 suffers from an information disclosure vulnerability In cases where a person is hosting a sharing session and allows a remote user to see what is happening on the local PC, it has been discovered that if you locally copy something like a hidden password to the local clipboard, then the remote user will be able to ...

CWE-200 http://packetstormsecurity.com/files/124274/ISL-Light-Desktop-3.5.4-Information-Disclosure.html http://seclists.org/fulldisclosure/2013/Dec/14 http://osvdb.org/100512 http://www.securityfocus.com/bid/64050 http://www.islonline.com/help/isl-releases-info/any/manual/?2013-11-29-rel-info-isl-light-desktop-plugin-1-4-7-win.htm https://exchange.xforce.ibmcloud.com/vulnerabilities/89399 https://nvd.nist.gov https://packetstormsecurity.com/files/124274/ISL-Light-Desktop-3.5.4-Information-Disclosure.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-6237

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect