|
276521
|
- |
|
okb.co.jp
|
smartphone_passbook
|
The Ogaki Kyoritsu Bank Smartphone Passbook application 1.0.0 for Android creates a log file containing input data from the user, which allows attackers to obtain sensitive information by reading a f…
|
CWE-200
Information Exposure
|
CVE-2015-0875
|
2024-11-21 11:23 |
2015-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276522
|
- |
|
emc
|
captiva_capture
|
The InputAccel Database (IADB) installation process in EMC Captiva Capture 7.0 before patch 25 and 7.1 before patch 13 places a cleartext InputAccel (IA) SQL password in a DAL log file, which allows …
|
CWE-200
Information Exposure
|
CVE-2015-0519
|
2024-11-21 11:23 |
2015-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276523
|
- |
|
emc
|
documentum_d2
|
The Properties service in the D2FS web-service component in EMC Documentum D2 3.1 through SP1, 4.0 and 4.1 before 4.1 P22, and 4.2 before P11 allows remote authenticated users to obtain superuser pri…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0518
|
2024-11-21 11:23 |
2015-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276524
|
- |
|
emc
|
documentum_d2
|
The D2-API component in EMC Documentum D2 3.1 through SP1, 4.0 and 4.1 before 4.1 P22, and 4.2 before P11 places the MD5 hash of an encryption passphrase in log files, which allows remote authenticat…
|
CWE-200
Information Exposure
|
CVE-2015-0517
|
2024-11-21 11:23 |
2015-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276525
|
- |
|
homepage_decorator
|
perltreebbs
|
Cross-site scripting (XSS) vulnerability in Homepage Decorator PerlTreeBBS 2.30 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0873
|
2024-11-21 11:23 |
2015-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276526
|
- |
|
cisco
|
ios
|
The Zone-Based Firewall implementation in Cisco IOS 12.4(122)T and earlier does not properly manage session-object structures, which allows remote attackers to cause a denial of service (device reloa…
|
CWE-399
Resource Management Errors
|
CVE-2015-0593
|
2024-11-21 11:23 |
2015-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276527
|
- |
|
cisco
|
adaptive_security_appliance_software
|
Memory leak in the embedded web server in the WebVPN subsystem in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to cause a denial of service (memory consumption and SSL out…
|
CWE-399
Resource Management Errors
|
CVE-2015-0619
|
2024-11-21 11:23 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276528
|
- |
|
cisco
|
telepresence_system_software_ix
|
The administrative web-management portal in Cisco IX 8 (.0.1) and earlier on Cisco TelePresence IX5000 devices does not properly restrict the device-recovery account's access, which allows remote aut…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0611
|
2024-11-21 11:23 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276529
|
- |
|
cisco
|
ios
|
Race condition in the object-group ACL feature in Cisco IOS 15.5(2)T and earlier allows remote attackers to bypass intended access restrictions via crafted network traffic that triggers improper hand…
|
CWE-362
Race Condition
|
CVE-2015-0610
|
2024-11-21 11:23 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276530
|
- |
|
cisco
|
ios
|
Race condition in the Measurement, Aggregation, and Correlation Engine (MACE) implementation in Cisco IOS 15.4(2)T3 and earlier allows remote attackers to cause a denial of service (device reload) vi…
|
CWE-362
Race Condition
|
CVE-2015-0608
|
2024-11-21 11:23 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
