A spoofing vulnerability exists when a Skype for Business Server does not properly sanitize a specially crafted request, aka 'Skype for Business Server Spoofing Vulnerability'.
References
Link | Resource |
---|---|
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1490 | Patch Vendor Advisory |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1490 | Patch Vendor Advisory |
Configurations
History
21 Nov 2024, 04:36
Type | Values Removed | Values Added |
---|---|---|
References | () https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1490 - Patch, Vendor Advisory |
Information
Published : 2019-12-10 22:15
Updated : 2024-11-21 04:36
NVD link : CVE-2019-1490
Mitre link : CVE-2019-1490
CVE.ORG link : CVE-2019-1490
JSON object : View
Products Affected
microsoft
- skype_for_business
CWE
CWE-74
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')