|
269471
|
8.1 |
HIGH
Network
|
freeradius
|
freeradius
|
The EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to have unspecified impact via a crafted (1) commit or (2) confirm message, which triggers an out-of-bounds read.
|
CWE-125
Out-of-bounds Read
|
CVE-2015-8763
|
2024-11-21 11:39 |
2017-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269472
|
5.9 |
MEDIUM
Network
|
freeradius
|
freeradius
|
The EAP-PWD module in FreeRADIUS 3.0 through 3.0.8 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a zero-length EAP-PWD packet.
|
CWE-476
NULL Pointer Dereference
|
CVE-2015-8762
|
2024-11-21 11:39 |
2017-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269473
|
5.9 |
MEDIUM
Network
|
gnu
|
glibc
|
The pop_fail_stack function in the GNU C Library (aka glibc or libc6) allows context-dependent attackers to cause a denial of service (assertion failure and application crash) via vectors related to …
|
CWE-19
Data Processing Errors
|
CVE-2015-8985
|
2024-11-21 11:39 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269474
|
5.9 |
MEDIUM
Network
|
gnu
|
glibc
|
The fnmatch function in the GNU C Library (aka glibc or libc6) before 2.22 might allow context-dependent attackers to cause a denial of service (application crash) via a malformed pattern, which trig…
|
CWE-125
Out-of-bounds Read
|
CVE-2015-8984
|
2024-11-21 11:39 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269475
|
8.1 |
HIGH
Network
|
gnu
|
glibc
|
Integer overflow in the _IO_wstr_overflow function in libio/wstrops.c in the GNU C Library (aka glibc or libc6) before 2.22 allows context-dependent attackers to cause a denial of service (applicatio…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2015-8983
|
2024-11-21 11:39 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269476
|
9.8 |
CRITICAL
Network
|
openinfosecfoundation
|
suricata
|
The MemcmpLowercase function in Suricata before 2.0.6 improperly excludes the first byte from comparisons, which might allow remote attackers to bypass intrusion-prevention functionality via a crafte…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8954
|
2024-11-21 11:39 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269477
|
9.8 |
CRITICAL
Network
|
podofo_project
|
podofo
|
Heap-based buffer overflow in the PdfParser::ReadXRefSubsection function in base/PdfParser.cpp in PoDoFo allows attackers to have unspecified impact via vectors related to m_offsets.size.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8981
|
2024-11-21 11:39 |
2017-03-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269478
|
8.1 |
HIGH
Network
|
gnu
|
glibc
|
Integer overflow in the strxfrm function in the GNU C Library (aka glibc or libc6) before 2.21 allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary co…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2015-8982
|
2024-11-21 11:39 |
2017-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269479
|
5.5 |
MEDIUM
Local
|
imagemagick
|
imagemagick
|
The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2015-8898
|
2024-11-21 11:39 |
2017-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269480
|
5.5 |
MEDIUM
Local
|
imagemagick
|
imagemagick
|
The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file.
|
CWE-125
Out-of-bounds Read
|
CVE-2015-8897
|
2024-11-21 11:39 |
2017-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
