|
278621
|
- |
|
microsoft
|
windows_rt
windows_server_2012
windows_8.1
windows_server_2008
windows_7
windows_server_2003
windows_rt_8.1
windows_vista
windows_8
|
The User Profile Service (aka ProfSvc) in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0004
|
2024-11-21 11:22 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278622
|
- |
|
microsoft
|
windows_rt
windows_server_2012
windows_8.1
windows_server_2008
windows_7
windows_rt_8.1
windows_8
|
The AhcVerifyAdminContext function in ahcache.sys in the Application Compatibility component in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0002
|
2024-11-21 11:22 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278623
|
- |
|
microsoft
|
windows_rt
windows_server_2012
windows_8.1
windows_rt_8.1
windows_8
|
The Windows Error Reporting (WER) component in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to bypass the Protected Process Light …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0001
|
2024-11-21 11:22 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278624
|
- |
|
openssl
|
openssl
|
Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k allows remote attackers to cause a denial of service (memory consumption) by sending…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-0206
|
2024-11-21 11:22 |
2015-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278625
|
- |
|
openssl
|
openssl
|
The ssl3_get_cert_verify function in s3_srvr.c in OpenSSL 1.0.0 before 1.0.0p and 1.0.1 before 1.0.1k accepts client authentication with a Diffie-Hellman (DH) certificate without requiring a Certific…
|
CWE-310
Cryptographic Issues
|
CVE-2015-0205
|
2024-11-21 11:22 |
2015-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278626
|
- |
|
openssl
|
openssl
|
The ssl3_get_key_exchange function in s3_clnt.c in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote SSL servers to conduct RSA-to-EXPORT_RSA downgrade attacks and fa…
|
CWE-310
Cryptographic Issues
|
CVE-2015-0204
|
2024-11-21 11:22 |
2015-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278627
|
- |
|
xen
opensuse
|
xen
opensuse
|
Use-after-free vulnerability in Xen 4.2.x, 4.3.x, and 4.4.x allows remote domains to cause a denial of service (system crash) via a crafted hypercall during HVM guest teardown.
|
NVD-CWE-Other
|
CVE-2015-0361
|
2024-11-21 11:22 |
2015-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278628
|
7.5 |
HIGH
Network
|
2pisoftware
|
cmfive
|
system/classes/DbPDO.php in Cmfive through 2015-03-15, when database connectivity malfunctions, allows remote attackers to obtain sensitive information (username and password) via any request, such a…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2014-9702
|
2024-11-21 11:21 |
2020-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278629
|
6.1 |
MEDIUM
Network
|
netsweeper
|
netsweeper
|
Open redirect vulnerability in remotereporter/load_logfiles.php in Netsweeper before 4.0.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in t…
|
CWE-601
Open Redirect
|
CVE-2014-9617
|
2024-11-21 11:21 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278630
|
6.1 |
MEDIUM
Network
|
netsweeper
|
netsweeper
|
Cross-site scripting (XSS) vulnerability in Netsweeper 4.0.4 allows remote attackers to inject arbitrary web script or HTML via the url parameter to webadmin/deny/index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2014-9615
|
2024-11-21 11:21 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
