|
269731
|
- |
|
ibm
|
http_server
|
Stack-based buffer overflow in the Administration Server in IBM HTTP Server 6.1.0.x through 6.1.0.47, 7.0.0.x before 7.0.0.39, 8.0.0.x before 8.0.0.12, and 8.5.x before 8.5.5.7, as used in WebSphere …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4947
|
2024-11-21 11:32 |
2015-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269732
|
- |
|
ibm
|
websphere_commerce
|
Unspecified vulnerability in IBM WebSphere Commerce 7.0.0.6 through 7.0.0.9 allows remote authenticated users to obtain sensitive personal information via unknown vectors.
|
CWE-200
Information Exposure
|
CVE-2015-4980
|
2024-11-21 11:32 |
2015-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269733
|
- |
|
redhat
|
openshift_origin
|
The API server in OpenShift Origin 1.0.5 allows remote attackers to cause a denial of service (master process crash) via crafted JSON data.
|
CWE-20
Improper Input Validation
|
CVE-2015-5250
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269734
|
- |
|
libvdpau_project
canonical
|
libvdpau
ubuntu_linux
|
The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2015-5200
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269735
|
- |
|
canonical
libvdpau_project
|
ubuntu_linux
libvdpau
|
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAU_DRIVER environment variable.
|
CWE-22
Path Traversal
|
CVE-2015-5199
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269736
|
- |
|
libvdpau_project
canonical
|
libvdpau
ubuntu_linux
|
libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAU_DRIVER_PATH environment variable.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-5198
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269737
|
- |
|
pacemaker\/corosync_configuration_system_project
|
pacemaker\/corosync_configuration_system
|
The pcsd web UI in PCS 0.9.139 and earlier allows remote authenticated users to execute arbitrary commands via "escape characters" in a URL.
|
CWE-77
Command Injection
|
CVE-2015-5190
|
2024-11-21 11:32 |
2015-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269738
|
- |
|
pacemaker\/corosync_configuration_system_project
|
pacemaker\/corosync_configuration_system
|
Race condition in pcsd in PCS 0.9.139 and earlier uses a global variable to validate usernames, which allows remote authenticated users to gain privileges by sending a command that is checked for sec…
|
CWE-362
Race Condition
|
CVE-2015-5189
|
2024-11-21 11:32 |
2015-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269739
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux_server_aus
|
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 provide inappropriate -EAGAIN return values, which allows remote attackers to cause a denial of service (EPOLLET e…
|
CWE-399
Resource Management Errors
|
CVE-2015-5366
|
2024-11-21 11:32 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269740
|
- |
|
linux
redhat
debian
canonical
|
linux_kernel
enterprise_linux_server_aus
debian_linux
ubuntu_linux
|
The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 do not properly consider yielding a processor, which allows remote attackers to cause a denial of service (system …
|
CWE-399
Resource Management Errors
|
CVE-2015-5364
|
2024-11-21 11:32 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
