Vulnerabilities > Kodak

DATE CVE VULNERABILITY TITLE RISK
2017-11-14 CVE-2017-9085 Cross-site Scripting vulnerability in Kodak Insite
Multiple cross-site scripting (XSS) vulnerabilities in Kodak InSite 6.5 to 8.0 allow remote attackers to inject arbitrary web script via the (1) "paramFile" parameter to /Site/Troubleshooting/DiagnosticReport.asp, or (2) "paramFile" parameter to /Site/Troubleshooting/SpeedTest.asp.
network
kodak CWE-79
4.3
2011-03-15 CVE-2011-1427 Cross-Site Scripting vulnerability in Kodak Insite 5.5.2
Multiple cross-site scripting (XSS) vulnerabilities in Kodak InSite 5.5.2 allow remote attackers to inject arbitrary web script or HTML via the (1) Language parameter to Pages/login.aspx, (2) HeaderWarning parameter to Troubleshooting/DiagnosticReport.asp, or (3) User-Agent header to troubleshooting/speedtest.asp.
network
kodak CWE-79
4.3
2007-10-09 CVE-2007-2217 Code Injection vulnerability in Kodak Image Viewer
Kodak Image Viewer in Microsoft Windows 2000 SP4, and in some cases XP SP2 and Server 2003 SP1 and SP2, allows remote attackers to execute arbitrary code via crafted image files that trigger memory corruption, as demonstrated by a certain .tif (TIFF) file.
network
microsoft kodak CWE-94
critical
9.3