|
273471
|
- |
|
apple
|
iphone_os
|
Springboard in Apple iOS before 8.2 allows physically proximate attackers to bypass an intended activation requirement and read the home screen by leveraging an application crash during the activatio…
|
CWE-200
Information Exposure
|
CVE-2015-1064
|
2024-11-21 11:24 |
2015-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273472
|
- |
|
apple
|
iphone_os
|
CoreTelephony in Apple iOS before 8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and device restart) via a Class 0 SMS message.
|
NVD-CWE-Other
|
CVE-2015-1063
|
2024-11-21 11:24 |
2015-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273473
|
- |
|
apple
|
tvos
iphone_os
|
MobileStorageMounter in Apple iOS before 8.2 and Apple TV before 7.1 does not delete invalid disk-image folders, which allows attackers to create folders in arbitrary filesystem locations via a craft…
|
CWE-19
Data Processing Errors
|
CVE-2015-1062
|
2024-11-21 11:24 |
2015-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273474
|
- |
|
apple
|
tvos
iphone_os
mac_os_x
|
IOSurface in Apple iOS before 8.2, Apple OS X through 10.10.2, and Apple TV before 7.1 allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages "type confus…
|
CWE-94
Code Injection
|
CVE-2015-1061
|
2024-11-21 11:24 |
2015-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273475
|
- |
|
zohocorp
|
manageengine_admanager_plus
|
Multiple cross-site scripting (XSS) vulnerabilities in ZOHO ManageEngine ADManager Plus before 6.2 Build 6270 allow remote attackers to inject arbitrary web script or HTML via the (1) technicianSearc…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1026
|
2024-11-21 11:24 |
2015-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273476
|
- |
|
apple
|
mac_os_x
tvos
iphone_os
|
Secure Transport in Apple iOS before 8.2, Apple OS X through 10.10.2, and Apple TV before 7.1 does not properly restrict TLS state transitions, which makes it easier for remote attackers to conduct c…
|
CWE-310
Cryptographic Issues
|
CVE-2015-1067
|
2024-11-21 11:24 |
2015-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273477
|
- |
|
fedoraproject
debian
bestpractical
|
fedora
debian_linux
request_tracker
|
RT (aka Request Tracker) 3.8.8 through 4.x before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to obtain sensitive RSS feed URLs and ticket data via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-1165
|
2024-11-21 11:24 |
2015-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273478
|
- |
|
google
|
chrome
|
Array index error in the MidiManagerUsb::DispatchSendMidiData function in media/midi/midi_manager_usb.cc in Google Chrome before 41.0.2272.76 allows remote attackers to cause a denial of service or p…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1232
|
2024-11-21 11:24 |
2015-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273479
|
- |
|
google
redhat
canonical
|
chrome
enterprise_linux_desktop_supplementary
enterprise_linux_workstation_supplementary
enterprise_linux_server_supplementary_eus
enterprise_linux_server
ubuntu_linux
|
Multiple unspecified vulnerabilities in Google Chrome before 41.0.2272.76 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2015-1231
|
2024-11-21 11:24 |
2015-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273480
|
- |
|
google
canonical
redhat
|
chrome
ubuntu_linux
enterprise_linux_desktop_supplementary
enterprise_linux_server_supplementary
enterprise_linux_workstation_supplementary
enterprise_linux_server_supplementary_eus
|
The getHiddenProperty function in bindings/core/v8/V8EventListenerList.h in Blink, as used in Google Chrome before 41.0.2272.76, has a name conflict with the AudioContext class, which allows remote a…
|
NVD-CWE-noinfo
|
CVE-2015-1230
|
2024-11-21 11:24 |
2015-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
