|
266931
|
8.8 |
HIGH
Network
|
adobe
|
flash_player
air_sdk
air_sdk_\&_compiler
air
|
Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8460
|
2024-11-21 11:38 |
2015-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266932
|
10.0 |
CRITICAL
Network
|
adobe
|
air_sdk
air_sdk_\&_compiler
air
flash_player
|
Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8459
|
2024-11-21 11:38 |
2015-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266933
|
8.8 |
HIGH
Network
|
adobe
|
flash_player
air_sdk
air_sdk_\&_compiler
air
|
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S…
|
NVD-CWE-Other
|
CVE-2015-8638
|
2024-11-21 11:38 |
2015-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266934
|
8.8 |
HIGH
Network
|
adobe
|
flash_player
air
air_sdk
air_sdk_\&_compiler
|
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S…
|
NVD-CWE-Other
|
CVE-2015-8635
|
2024-11-21 11:38 |
2015-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266935
|
8.8 |
HIGH
Network
|
adobe
|
flash_player
air_sdk
air_sdk_\&_compiler
air
|
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S…
|
NVD-CWE-Other
|
CVE-2015-8634
|
2024-11-21 11:38 |
2015-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266936
|
6.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The ovl_setattr function in fs/overlayfs/inode.c in the Linux kernel through 4.3.3 attempts to merge distinct setattr operations, which allows local users to bypass intended access restrictions and m…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8660
|
2024-11-21 11:38 |
2015-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266937
|
2.3 |
LOW
Local
|
linux
|
linux_kernel
|
The (1) pptp_bind and (2) pptp_connect functions in drivers/net/ppp/pptp.c in the Linux kernel through 4.3.3 do not verify an address length, which allows local users to obtain sensitive information …
|
CWE-200
Information Exposure
|
CVE-2015-8569
|
2024-11-21 11:38 |
2015-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266938
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol families, which allows local users …
|
NVD-CWE-Other
|
CVE-2015-8543
|
2024-11-21 11:38 |
2015-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266939
|
4.0 |
MEDIUM
Local
|
linux
|
linux_kernel
|
fs/btrfs/inode.c in the Linux kernel before 4.3.3 mishandles compressed inline extents, which allows local users to obtain sensitive pre-truncation information from a file via a clone action.
|
CWE-200
Information Exposure
|
CVE-2015-8374
|
2024-11-21 11:38 |
2015-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266940
|
8.6 |
HIGH
Network
|
netgear
|
wnr1000v3_firmware
wnr1000v3
|
NETGEAR WNR1000v3 devices with firmware 1.0.2.68 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the de…
|
NVD-CWE-Other
|
CVE-2015-8263
|
2024-11-21 11:38 |
2015-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
