|
270991
|
- |
|
montala
|
resourcespace
|
Directory traversal vulnerability in pages/setup.php in Montala Limited ResourceSpace before 7.2.6727 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the de…
|
CWE-22
Path Traversal
|
CVE-2015-3648
|
2024-11-21 11:29 |
2015-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270992
|
- |
|
ektron
|
ektron_content_management_system
|
Cross-site request forgery (CSRF) vulnerability in Test/WorkArea/DmsMenu/menuActions/MenuActions.aspx in Ektron Content Management System (CMS) before 9.10 SP1 (Build 9.1.0.184.1.120) allows remote a…
|
CWE-352
Origin Validation Error
|
CVE-2015-3624
|
2024-11-21 11:29 |
2015-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270993
|
- |
|
zarafa
|
zarafa_collaboration_platform
|
provider/server/ECServer.cpp in Zarafa Collaboration Platform (ZCP) before 7.1.13 and 7.2.x before 7.2.1 allows local users to write to arbitrary files via a symlink attack on /tmp/zarafa-upgrade-loc…
|
CWE-59
Link Following
|
CVE-2015-3436
|
2024-11-21 11:29 |
2015-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270994
|
- |
|
netapp
|
oncommand_workflow_automation
|
The installer in NetApp OnCommand Workflow Automation before 2.2.1P1 and 3.x before 3.0P1 sets up the Java Debugging Wire Protocol (JDWP) service, which allows remote attackers to execute arbitrary c…
|
CWE-17
Code
|
CVE-2015-3292
|
2024-11-21 11:29 |
2015-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270995
|
- |
|
linux
debian
|
linux_kernel
debian_linux
|
Race condition in the prepare_binprm function in fs/exec.c in the Linux kernel before 3.19.6 allows local users to gain privileges by executing a setuid program at a time instant when a chown to root…
|
CWE-362
Race Condition
|
CVE-2015-3339
|
2024-11-21 11:29 |
2015-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270996
|
- |
|
debian
linux
|
debian_linux
linux_kernel
|
A certain backport in the TCP Fast Open implementation for the Linux kernel before 3.18 does not properly maintain a count value, which allow local users to cause a denial of service (system crash) v…
|
CWE-399
Resource Management Errors
|
CVE-2015-3332
|
2024-11-21 11:29 |
2015-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270997
|
- |
|
linux
debian
canonical
|
linux_kernel
debian_linux
ubuntu_linux
|
The __driver_rfc4106_decrypt function in arch/x86/crypto/aesni-intel_glue.c in the Linux kernel before 3.19.3 does not properly determine the memory locations used for encrypted data, which allows co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3331
|
2024-11-21 11:29 |
2015-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270998
|
- |
|
wireshark
|
wireshark
|
The detect_version function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not check the length of the payload, which allows remote attackers to cause a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3815
|
2024-11-21 11:29 |
2015-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270999
|
- |
|
oracle
wireshark
|
solaris
wireshark
|
The (1) dissect_tfs_request and (2) dissect_tfs_response functions in epan/dissectors/packet-ieee80211.c in the IEEE 802.11 dissector in Wireshark 1.10.x before 1.10.14 and 1.12.x before 1.12.5 inter…
|
CWE-189
Numeric Errors
|
CVE-2015-3814
|
2024-11-21 11:29 |
2015-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271000
|
- |
|
wireshark
|
wireshark
|
The fragment_add_work function in epan/reassemble.c in the packet-reassembly feature in Wireshark 1.12.x before 1.12.5 does not properly determine the defragmentation state in a case of an insufficie…
|
CWE-399
Resource Management Errors
|
CVE-2015-3813
|
2024-11-21 11:29 |
2015-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
