|
277331
|
- |
|
emc
|
atmos
|
The XML parser in EMC Atmos before 2.2.3.426 and 2.3.x before 2.3.1.0 allows remote authenticated users to read arbitrary files or cause a denial of service (CPU and memory consumption) via an extern…
|
NVD-CWE-Other
|
CVE-2015-4538
|
2024-11-21 11:31 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277332
|
- |
|
mybb
|
mybb
|
Cross-site scripting (XSS) vulnerability in the quick edit function in xmlhttp.php in MyBB (aka MyBulletinBoard) before 1.8.5 allows remote attackers to inject arbitrary web script or HTML via the co…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4552
|
2024-11-21 11:31 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277333
|
- |
|
linux
|
linux_kernel
|
The bpf_int_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 4.0.6 allows local users to cause a denial of service (system crash) by creating a packet filter and then lo…
|
CWE-17
Code
|
CVE-2015-4700
|
2024-11-21 11:31 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277334
|
- |
|
tibco
|
rendezvous
rendezvous_network_server
messaging_appliance
substation_es
|
Buffer overflow in the HTTP administrative interface in TIBCO Rendezvous before 8.4.4, Rendezvous Network Server before 1.1.1, Substation ES before 2.9.0, and Messaging Appliance before 8.7.2 allows …
|
NVD-CWE-noinfo
|
CVE-2015-4555
|
2024-11-21 11:31 |
2015-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277335
|
- |
|
mozilla
|
firefox
|
The add-on installation feature in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to bypass an intended user-confirmation requirement by constructing a craft…
|
CWE-254
7PK - Security Features
|
CVE-2015-4498
|
2024-11-21 11:31 |
2015-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277336
|
- |
|
mozilla
|
firefox
|
Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by le…
|
NVD-CWE-Other
|
CVE-2015-4497
|
2024-11-21 11:31 |
2015-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277337
|
- |
|
emc
|
documentum_d2
|
Lockbox in EMC Documentum D2 before 4.5 uses a hardcoded passphrase when a server lacks a D2.Lockbox file, which makes it easier for remote authenticated users to decrypt admin tickets by locating th…
|
CWE-200
Information Exposure
|
CVE-2015-4537
|
2024-11-21 11:31 |
2015-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277338
|
- |
|
emc
|
documentum_content_server
|
EMC Documentum Content Server before 7.0 P20, 7.1 before P18, and 7.2 before P02, when RPC tracing is configured, stores certain obfuscated password data in a log file, which allows remote authentica…
|
CWE-200
Information Exposure
|
CVE-2015-4536
|
2024-11-21 11:31 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277339
|
- |
|
emc
|
documentum_content_server
|
Java Method Server (JMS) in EMC Documentum Content Server before 6.7SP1 P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P02, when __debug_trace__ is configured, allows remote a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4535
|
2024-11-21 11:31 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277340
|
- |
|
emc
|
documentum_content_server
|
Java Method Server (JMS) in EMC Documentum Content Server before 6.7SP1 P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P02 allows remote authenticated users to execute arbitra…
|
CWE-20
Improper Input Validation
|
CVE-2015-4534
|
2024-11-21 11:31 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
