|
270101
|
- |
|
emc
|
documentum_content_server
|
EMC Documentum Content Server before 7.1P20 and 7.2.x before 7.2P04 does not properly verify authorization for dm_job object access, which allows remote authenticated users to obtain superuser privil…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4544
|
2024-11-21 11:31 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270102
|
- |
|
emc
|
atmos
|
The XML parser in EMC Atmos before 2.2.3.426 and 2.3.x before 2.3.1.0 allows remote authenticated users to read arbitrary files or cause a denial of service (CPU and memory consumption) via an extern…
|
NVD-CWE-Other
|
CVE-2015-4538
|
2024-11-21 11:31 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270103
|
- |
|
mybb
|
mybb
|
Cross-site scripting (XSS) vulnerability in the quick edit function in xmlhttp.php in MyBB (aka MyBulletinBoard) before 1.8.5 allows remote attackers to inject arbitrary web script or HTML via the co…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4552
|
2024-11-21 11:31 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270104
|
- |
|
linux
|
linux_kernel
|
The bpf_int_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 4.0.6 allows local users to cause a denial of service (system crash) by creating a packet filter and then lo…
|
CWE-17
Code
|
CVE-2015-4700
|
2024-11-21 11:31 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270105
|
- |
|
tibco
|
rendezvous
rendezvous_network_server
messaging_appliance
substation_es
|
Buffer overflow in the HTTP administrative interface in TIBCO Rendezvous before 8.4.4, Rendezvous Network Server before 1.1.1, Substation ES before 2.9.0, and Messaging Appliance before 8.7.2 allows …
|
NVD-CWE-noinfo
|
CVE-2015-4555
|
2024-11-21 11:31 |
2015-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270106
|
- |
|
mozilla
|
firefox
|
The add-on installation feature in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to bypass an intended user-confirmation requirement by constructing a craft…
|
CWE-254
7PK - Security Features
|
CVE-2015-4498
|
2024-11-21 11:31 |
2015-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270107
|
- |
|
mozilla
|
firefox
|
Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by le…
|
NVD-CWE-Other
|
CVE-2015-4497
|
2024-11-21 11:31 |
2015-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270108
|
- |
|
emc
|
documentum_d2
|
Lockbox in EMC Documentum D2 before 4.5 uses a hardcoded passphrase when a server lacks a D2.Lockbox file, which makes it easier for remote authenticated users to decrypt admin tickets by locating th…
|
CWE-200
Information Exposure
|
CVE-2015-4537
|
2024-11-21 11:31 |
2015-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270109
|
- |
|
emc
|
documentum_content_server
|
EMC Documentum Content Server before 7.0 P20, 7.1 before P18, and 7.2 before P02, when RPC tracing is configured, stores certain obfuscated password data in a log file, which allows remote authentica…
|
CWE-200
Information Exposure
|
CVE-2015-4536
|
2024-11-21 11:31 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270110
|
- |
|
emc
|
documentum_content_server
|
Java Method Server (JMS) in EMC Documentum Content Server before 6.7SP1 P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P02, when __debug_trace__ is configured, allows remote a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4535
|
2024-11-21 11:31 |
2015-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
