|
272131
|
- |
|
ibm
|
optim_workload_replay
|
Cross-site request forgery (CSRF) vulnerability in IBM InfoSphere Optim Workload Replay 2.x before 2.1.0.3 allows remote attackers to hijack the authentication of arbitrary users for requests that in…
|
CWE-352
Origin Validation Error
|
CVE-2015-1894
|
2024-11-21 11:26 |
2015-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272132
|
- |
|
ibm
|
domino
|
Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and 9.0 before 9.0.1 FP3 IF3 allows remote attackers to execute arbitrary code via a crafted BMP image, aka SPR KLYH9TSN3Y.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1903
|
2024-11-21 11:26 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272133
|
- |
|
ibm
|
domino
|
Stack-based buffer overflow in IBM Domino 8.5 before 8.5.3 FP6 IF7 and 9.0 before 9.0.1 FP3 IF3 allows remote attackers to execute arbitrary code via a crafted BMP image, aka SPR KLYH9TSMLA.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1902
|
2024-11-21 11:26 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272134
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 6.1 through 6.1.0.47, 7.0 before 7.0.0.39, 8.0 before 8.0.0.11, and 8.5 before 8.5.5.6 allows remote attackers to execute arbitrary code by sending crafted inst…
|
CWE-284
Improper Access Control
|
CVE-2015-1920
|
2024-11-21 11:26 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272135
|
- |
|
unzoo
|
unzoo
|
unzoo allows remote attackers to cause a denial of service (infinite loop and resource consumption) via unspecified vectors to the (1) ExtrArch or (2) ListArch function, related to pointer handling.
|
CWE-399
Resource Management Errors
|
CVE-2015-1846
|
2024-11-21 11:26 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272136
|
- |
|
unzoo
|
unzoo
|
Buffer overflow in the EntrReadArch function in unzoo might allow remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1845
|
2024-11-21 11:26 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272137
|
- |
|
powerdns
fedoraproject
|
authoritative
fedora
recursor
|
The label decompression functionality in PowerDNS Recursor 3.5.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.2 and Authoritative (Auth) Server 3.2.x, 3.3.x before 3.3.2, and 3.4.x before 3.4.4 allows r…
|
CWE-399
Resource Management Errors
|
CVE-2015-1868
|
2024-11-21 11:26 |
2015-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272138
|
- |
|
fedora
redhat
|
pacemaker_configuration_system
enterprise_linux_resilient_storage_eus
enterprise_linux_high_availability_eus
enterprise_linux_high_availability
enterprise_linux_resilient_storage
|
The pcs daemon (pcsd) in PCS 0.9.137 and earlier does not set the secure flag for a cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its t…
|
CWE-310
Cryptographic Issues
|
CVE-2015-1848
|
2024-11-21 11:26 |
2015-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272139
|
- |
|
canonical
clamav
|
ubuntu_linux
clamav
|
The upx decoder in ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted file.
|
CWE-399
Resource Management Errors
|
CVE-2015-2170
|
2024-11-21 11:26 |
2015-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272140
|
- |
|
fortinet
|
fortios
|
Cross-site scripting (XSS) vulnerability in the sslvpn login page in Fortinet FortiOS 5.2.x before 5.2.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-1880
|
2024-11-21 11:26 |
2015-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
