Nyxgeek

**Name of the Vulnerable Software and Affected Versions** Nessus versions 8.11.0 and earlier **Description** The issue is related to improper session expiration, which could allow attackers with local access to login into an existing browser session. **Recommendations** For versions 8.11.0 and earlier, update to a version that properly expires sessions to prevent unauthorized access.

**Name of the Vulnerable Software and Affected Versions** Microsoft Lync for Mac 2011 **Description** A security feature bypass issue exists due to improper sanitization of specially crafted messages. This can be exploited by a remote attacker to redirect users to malicious sites or automatically download file types into the safe file types list using a specially formed message. **Recommendations** For Microsoft Lync for Mac 2011, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Skype for Business (affected versions not specified) **Description** The issue exists due to insufficient input validation in Microsoft Office and Skype for Business, allowing a remote attacker to execute arbitrary code using specially crafted content. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.