|
266761
|
7.5 |
HIGH
Network
|
xmlsoft
canonical
debian
|
libxml2
ubuntu_linux
debian_linux
|
dict.c in libxml2 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via an unexpected character immediately after the "<!DOCTYPE html" substring…
|
NVD-CWE-noinfo
|
CVE-2015-8806
|
2024-11-21 11:39 |
2016-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266762
|
6.5 |
MEDIUM
Network
|
libtiff
debian
|
libtiff
debian_linux
|
The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image, as demonstrated by libtiff5.tif.
|
CWE-787
Out-of-bounds Write
|
CVE-2015-8784
|
2024-11-21 11:39 |
2016-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266763
|
6.1 |
MEDIUM
Network
|
fedoraproject
horde
debian
|
fedora
groupware
debian_linux
|
Cross-site scripting (XSS) vulnerability in the _renderVarInput_number function in horde/framework/Core/lib/Horde/Core/Ui/VarRenderer/Html.php in Horde Groupware before 5.2.12 and Horde Groupware Web…
|
CWE-79
Cross-site Scripting
|
CVE-2015-8807
|
2024-11-21 11:39 |
2016-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266764
|
7.4 |
HIGH
Local
|
foxitsoftware
|
foxit_reader
|
The Foxit Cloud Update Service (FoxitCloudUpdateService) in Foxit Reader 6.1 through 6.2.x and 7.x before 7.2.2, when an update to the Cloud plugin is available, allows local users to gain privileges…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8843
|
2024-11-21 11:39 |
2016-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266765
|
9.8 |
CRITICAL
Network
|
eset
|
nod32
|
Heap-based buffer overflow in the Archive support module in ESET NOD32 before update 11861 allows remote attackers to execute arbitrary code via a large number of languages in an EPOC installation fi…
|
CWE-787
Out-of-bounds Write
|
CVE-2015-8841
|
2024-11-21 11:39 |
2016-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266766
|
9.8 |
CRITICAL
Network
|
cypherpunks
|
pidgin-otr
|
Use-after-free vulnerability in the create_smp_dialog function in gtk-dialog.c in the Off-the-Record Messaging (OTR) pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbit…
|
NVD-CWE-Other
|
CVE-2015-8833
|
2024-11-21 11:39 |
2016-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266767
|
9.8 |
CRITICAL
Network
|
xmlsoft
debian
|
libxml2
debian_linux
|
The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to obtain sensitive information, cause a denial of service (out-of-bounds heap memory access and application crash), or possi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8710
|
2024-11-21 11:39 |
2016-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266768
|
7.3 |
HIGH
Network
|
claws-mail
|
claws-mail
|
Stack-based buffer overflow in the conv_euctojis function in codeconv.c in Claws Mail 3.13.1 allows remote attackers to have unspecified impact via a crafted email, involving Japanese character set c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8708
|
2024-11-21 11:39 |
2016-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266769
|
8.8 |
HIGH
Network
|
sap
|
netweaver_application_server_java
|
The XML Data Archiving Service (XML DAS) in SAP NetWeaver AS Java does not check authorization, which allows remote authenticated users to obtain sensitive information, gain privileges, or possibly h…
|
CWE-862
Missing Authorization
|
CVE-2015-8840
|
2024-11-21 11:39 |
2016-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266770
|
7.3 |
HIGH
Local
|
fuseiso_project
debian
fedoraproject
|
fuseiso
debian_linux
fedora
|
Stack-based buffer overflow in the isofs_real_readdir function in isofs.c in FuseISO 20070708 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8837
|
2024-11-21 11:39 |
2016-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
