Yuto Iso

Researcher fromNTT Security (Japan) KK
#7139of 53,632
38.2Total CVSS
Vulnerabilities · 5
Medium
2
High
3
PT-2018-8919
9.3
2018-04-16
Phishwall · Phishwall Client Internet Explorer Edition · CVE-2018-0561
**Name of the Vulnerable Software and Affected Versions** PhishWall Client Internet Explorer edition versions 3.7.15 and earlier **Description** The issue concerns an untrusted search path vulnerability in the installer. This vulnerability allows an attacker to gain privileges by using a Trojan horse DLL in an unspecified directory. **Recommendations** For versions 3.7.15 and earlier, update to a version later than 3.7.15 to resolve the issue.
PT-2018-8910
7.8
2018-03-22
Phishwall · Phishwall Client · CVE-2018-0552
**Name of the Vulnerable Software and Affected Versions** PhishWall Client Firefox and Chrome edition for Windows version 5.1.26 and earlier **Description** The issue concerns an untrusted search path vulnerability in the installer. This vulnerability allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. **Recommendations** For versions 5.1.26 and earlier, update to a version later than 5.1.26 to resolve the issue.
PT-2017-11579
9.3
2017-11-13
Hyper · Hyper Sbi · CVE-2017-10885
**Name of the Vulnerable Software and Affected Versions** HYPER SBI versions 2.2 and earlier **Description** The issue allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. **Recommendations** For HYPER SBI versions 2.2 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.
PT-2017-15172
5.9
2017-04-28
Tver · Tver App For Android · CVE-2017-2105
**Name of the Vulnerable Software and Affected Versions** TVer App for Android versions 3.2.7 and earlier **Description** The issue allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate because the TVer App for Android does not verify X.509 certificates from SSL servers. **Recommendations** For versions 3.2.7 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2017-7936
5.9
2017-04-21
Photopt · Photopt · CVE-2016-1198
**Name of the Vulnerable Software and Affected Versions** Photopt for Android versions prior to 2.0.1 **Description** The issue is related to the failure of the application to verify SSL certificates. This could potentially allow for man-in-the-middle attacks. **Recommendations** For versions prior to 2.0.1, update to version 2.0.1 or later to resolve the issue.