|
273661
|
10.0 |
CRITICAL
Network
|
radicale
|
radicale
|
The multifilesystem storage backend in Radicale before 1.1 allows remote attackers to read or write to arbitrary files via a crafted component name.
|
CWE-20
Improper Input Validation
|
CVE-2015-8747
|
2024-11-21 11:39 |
2016-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273662
|
6.5 |
MEDIUM
Network
|
libtiff
debian
|
libtiff
debian_linux
|
tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds reads) via a crafted TIFF image.
|
CWE-125
Out-of-bounds Read
|
CVE-2015-8783
|
2024-11-21 11:39 |
2016-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273663
|
6.5 |
MEDIUM
Network
|
debian
libtiff
|
debian_linux
libtiff
|
tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds writes) via a crafted TIFF image, a different vulnerability than CVE-2015-8781.
|
CWE-787
Out-of-bounds Write
|
CVE-2015-8782
|
2024-11-21 11:39 |
2016-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273664
|
6.5 |
MEDIUM
Network
|
debian
libtiff
|
debian_linux
libtiff
|
tif_luv.c in libtiff allows attackers to cause a denial of service (out-of-bounds write) via an invalid number of samples per pixel in a LogL compressed TIFF image, a different vulnerability than CVE…
|
CWE-787
Out-of-bounds Write
|
CVE-2015-8781
|
2024-11-21 11:39 |
2016-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273665
|
7.5 |
HIGH
Network
|
mcafee
|
file_lock
|
Stack-based buffer overflow in McPvDrv.sys 4.6.111.0 in McAfee File Lock 5.x in McAfee Total Protection allows attackers to cause a denial of service (system crash) via a long vault GUID in an ioctl …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8773
|
2024-11-21 11:39 |
2016-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273666
|
9.1 |
CRITICAL
Network
|
mcafee
|
file_lock
|
McPvDrv.sys 4.6.111.0 in McAfee File Lock 5.x in McAfee Total Protection allows local users to obtain sensitive information from kernel memory or cause a denial of service (system crash) via a large …
|
CWE-19
Data Processing Errors
|
CVE-2015-8772
|
2024-11-21 11:39 |
2016-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273667
|
6.5 |
MEDIUM
Network
|
roundcube
|
roundcube_webmail
|
Absolute path traversal vulnerability in program/steps/addressbook/photo.inc in Roundcube before 1.0.6 and 1.1.x before 1.1.2 allows remote authenticated users to read arbitrary files via a full path…
|
CWE-22
Path Traversal
|
CVE-2015-8794
|
2024-11-21 11:39 |
2016-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273668
|
6.1 |
MEDIUM
Network
|
roundcube
|
webmail
|
Cross-site scripting (XSS) vulnerability in program/include/rcmail.php in Roundcube before 1.0.6 and 1.1.x before 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the _mbox pa…
|
CWE-79
Cross-site Scripting
|
CVE-2015-8793
|
2024-11-21 11:39 |
2016-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273669
|
5.3 |
MEDIUM
Network
|
matroska
opensuse
|
libmatroska
leap
opensuse
|
The KaxInternalBlock::ReadData function in libMatroska before 1.4.4 allows context-dependent attackers to obtain sensitive information from process heap memory via crafted EBML lacing, which triggers…
|
CWE-119
CWE-200
Incorrect Access of Indexable Resource ('Range Error')
Information Exposure
|
CVE-2015-8792
|
2024-11-21 11:39 |
2016-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273670
|
4.3 |
MEDIUM
Network
|
matroska
|
libebml
|
The EbmlElement::ReadCodedSizeValue function in libEBML before 1.3.3 allows context-dependent attackers to obtain sensitive information from process heap memory via a crafted length value in an EBML …
|
CWE-200
Information Exposure
|
CVE-2015-8791
|
2024-11-21 11:39 |
2016-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
