|
277081
|
- |
|
mozilla
|
firefox
|
The PRNG implementation in the DNS resolver in Mozilla Firefox (aka Fennec) before 37.0 on Android does not properly generate random numbers for query ID values and UDP source ports, which makes it e…
|
CWE-200
Information Exposure
|
CVE-2015-0800
|
2024-11-21 11:23 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277082
|
- |
|
debian
dulwich_project
|
debian_linux
dulwich
|
Buffer overflow in the C implementation of the apply_delta function in _pack.c in Dulwich before 0.9.9 allows remote attackers to execute arbitrary code via a crafted pack file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-0838
|
2024-11-21 11:23 |
2015-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277083
|
- |
|
flashy_project
|
flashy
|
Cross-site scripting (XSS) vulnerability in the duwasai flashy theme 1.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0901
|
2024-11-21 11:23 |
2015-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277084
|
- |
|
nishishi
|
fumy_teachers_schedule_board
|
Cross-site scripting (XSS) vulnerability in schedule.cgi in Nishishi Factory Fumy Teacher's Schedule Board 1.10 through 2.21 allows remote attackers to inject arbitrary web script or HTML via a craft…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0900
|
2024-11-21 11:23 |
2015-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277085
|
- |
|
emc
|
isilon_onefs
|
The RPC daemon in EMC Isilon OneFS 6.5.x and 7.0.x before 7.0.2.13, 7.1.0 before 7.1.0.6, 7.1.1 before 7.1.1.2, and 7.2.0 before 7.2.0.1 allows local users to gain privileges by leveraging an ability…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0528
|
2024-11-21 11:23 |
2015-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277086
|
- |
|
cisco
|
unified_callmanager
|
Cisco Unified Call Manager (CM) 9.1(2.1000.28) does not properly restrict resource requests, which allows remote authenticated users to read arbitrary files via unspecified vectors, aka Bug ID CSCuq4…
|
CWE-200
Information Exposure
|
CVE-2015-0680
|
2024-11-21 11:23 |
2015-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277087
|
- |
|
cisco
|
wireless_lan_controller_software
|
The web-authentication functionality on Cisco Wireless LAN Controller (WLC) devices 7.3(103.8) and 7.4(110.0) allows remote attackers to cause a denial of service (device reload) via a malformed pass…
|
CWE-20
Improper Input Validation
|
CVE-2015-0679
|
2024-11-21 11:23 |
2015-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277088
|
- |
|
cisco
|
nx-os
|
The DHCP implementation in the PowerOn Auto Provisioning (POAP) feature in Cisco NX-OS does not properly restrict the initialization process, which allows remote attackers to execute arbitrary comman…
|
CWE-20
Improper Input Validation
|
CVE-2015-0658
|
2024-11-21 11:23 |
2015-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277089
|
- |
|
cisco
|
mobility_services_engine
|
Cisco Mobility Services Engine (MSE) 8.0(110.0) allows remote authenticated users to discover the passwords of arbitrary users by (1) reading log files or (2) using an unspecified GUI feature, aka Bu…
|
CWE-200
Information Exposure
|
CVE-2015-0673
|
2024-11-21 11:23 |
2015-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277090
|
- |
|
cisco
|
ios_xr
|
The DHCPv4 server in Cisco IOS XR 5.2.2 on ASR 9000 devices allows remote attackers to cause a denial of service (service outage) via a flood of crafted DHCP packets, aka Bug ID CSCup67822.
|
CWE-399
Resource Management Errors
|
CVE-2015-0672
|
2024-11-21 11:23 |
2015-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
