|
267501
|
- |
|
mcafee
|
mcafee_enterprise_security_manager
|
McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), and Enterprise Security Manager/Receiver (ESMREC) 9.3.x before 9.3.2MR19, 9.4.x before 9.4.2MR9, and 9.5.x b…
|
CWE-78
OS Command
|
CVE-2015-8024
|
2024-11-21 11:37 |
2015-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267502
|
- |
|
valvesoftware
|
steam_client
|
Valve Steam 2.10.91.91 uses weak permissions (Users: read and write) for the Install folder, which allows local users to gain privileges via a Trojan horse steam.exe file.
|
CWE-276
Incorrect Default Permissions
|
CVE-2015-7985
|
2024-11-21 11:37 |
2015-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267503
|
- |
|
canonical
debian
redhat
libpng
|
ubuntu_linux
debian_linux
enterprise_linux_desktop
enterprise_linux_server_aus
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
enterprise_linux_ser…
|
The png_convert_to_rfc1123 function in png.c in libpng 1.0.x before 1.0.64, 1.2.x before 1.2.54, and 1.4.x before 1.4.17 allows remote attackers to obtain sensitive process memory information via cra…
|
CWE-200
Information Exposure
|
CVE-2015-7981
|
2024-11-21 11:37 |
2015-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267504
|
- |
|
canonical
nvidia
|
ubuntu_linux
gpu_driver
|
Multiple integer overflows in the kernel mode driver for the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows and R304 before 304.131, R340 before …
|
CWE-189
Numeric Errors
|
CVE-2015-7869
|
2024-11-21 11:37 |
2015-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267505
|
- |
|
nvidia
|
gpu_driver
|
Unquoted Windows search path vulnerability in the Smart Maximize Helper (nvSmartMaxApp.exe) in the Control Panel in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 bef…
|
NVD-CWE-Other
|
CVE-2015-7866
|
2024-11-21 11:37 |
2015-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267506
|
- |
|
nvidia
|
gpu_driver
|
nvSCPAPISvr.exe in the Stereoscopic 3D Driver Service in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows does not properly restrict access to …
|
CWE-284
Improper Access Control
|
CVE-2015-7865
|
2024-11-21 11:37 |
2015-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267507
|
- |
|
vbulletin
|
vbulletin
|
The vB_Api_Hook::decodeArguments method in vBulletin 5 Connect 5.1.2 through 5.1.9 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted seriali…
|
CWE-20
Improper Input Validation
|
CVE-2015-7808
|
2024-11-21 11:37 |
2015-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267508
|
- |
|
tibbo
|
aggregate
|
ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows local users to execute arbitrary Java code with SYSTEM privileges by using the Apache Axis AdminService …
|
NVD-CWE-Other
|
CVE-2015-7913
|
2024-11-21 11:37 |
2015-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267509
|
- |
|
tibbo
|
aggregate
|
The Ice Faces servlet in ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML do…
|
NVD-CWE-Other
|
CVE-2015-7912
|
2024-11-21 11:37 |
2015-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267510
|
- |
|
void_project
|
void
|
Cross-site scripting (XSS) vulnerability in index.php in JosephErnest Void before 2015-10-02 allows remote attackers to inject arbitrary web script or HTML via a crafted URI.
|
CWE-79
Cross-site Scripting
|
CVE-2015-7777
|
2024-11-21 11:37 |
2015-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
