|
1361
|
-
6.8
|
MEDIUM
|
The php_handler function in sapi/apache2handler/sapi_apache2.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, when the Apache HTTP Server 2.4.x is used, allows remote attackers to…
|
CWE-20
Improper Input Validation
|
CVE-2015-3330
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 11:29
2015-06-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1362
|
-
7.5
|
HIGH
|
Multiple stack-based buffer overflows in the phar_set_inode function in phar_internal.h in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allow remote attackers to execute arbitrary c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3329
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 11:29
2015-06-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1363
|
-
7.5
|
HIGH
|
The phar_parse_metadata function in ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service (heap metadata corruption) o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3307
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 11:29
2015-06-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1364
|
-
5.8
|
MEDIUM
|
ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (buffer over…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-2783
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 11:28
2015-06-10
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1365
|
-
7.7
|
HIGH
|
The Floppy Disk Controller (FDC) in QEMU, as used in Xen 4.5.x and earlier and KVM, allows local guest users to cause a denial of service (out-of-bounds write and guest crash) or possibly execute arb…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3456
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 11:29
2015-05-14
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1366
|
-
7.6
|
HIGH
|
Directory traversal vulnerability in GNU Mailman before 2.1.20, when not using a static alias, allows remote attackers to execute arbitrary files via a .. (dot dot) in a list name.
|
CWE-22
Path Traversal
|
CVE-2015-2775
|
cpe:2.3:o:redhat:enterprise_linux:7.0:*
|
|
|
|
|
2024-11-21 11:28
2015-04-13
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1367
|
-
6.8
|
MEDIUM
|
Use-after-free vulnerability in the mozilla::dom::IndexedDB::IDBObjectStore::CreateIndex function in Mozilla Firefox before 36.0, Firefox ESR 31.x before 31.5, and Thunderbird before 31.5 allows remo…
|
NVD-CWE-Other
|
CVE-2015-0831
|
cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux:5:*
|
|
|
|
|
2024-11-21 11:23
2015-02-25
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1368
|
-
10.0
|
HIGH
|
The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized st…
|
CWE-17
Code
|
CVE-2015-0240
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…
|
|
|
|
|
2024-11-21 11:22
2015-02-24
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1369
|
-
6.8
|
MEDIUM
|
Multiple stack-based buffer overflows in jpc_qmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 200…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8158
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 11:18
2015-01-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1370
|
-
7.5
|
HIGH
|
Off-by-one error in the jpc_dec_process_sot function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2…
|
CWE-189
Numeric Errors
|
CVE-2014-8157
|
cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*
|
|
|
|
|
2024-11-21 11:18
2015-01-27
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|