|
272331
|
- |
|
hp
|
support_solution_framework
|
HP Support Solution Framework before 11.51.0049 allows remote attackers to download an arbitrary program onto a client machine and execute this program via unspecified vectors.
|
CWE-254
7PK - Security Features
|
CVE-2015-2114
|
2024-11-21 11:26 |
2015-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272332
|
- |
|
hp
|
easy_tools
|
Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t52…
|
NVD-CWE-noinfo
|
CVE-2015-2113
|
2024-11-21 11:26 |
2015-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272333
|
- |
|
hp
|
easy_tools
|
Unspecified vulnerability in HP Easy Deploy, as distributed standalone and in HP Easy Tools before 3.0.1.1650, on HP Thin Client t5540, t5740, and t5740e devices and HP Flexible Thin Client t510, t52…
|
NVD-CWE-noinfo
|
CVE-2015-2112
|
2024-11-21 11:26 |
2015-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272334
|
- |
|
redhat
|
openstack
|
The puppet manifests in the Red Hat openstack-puppet-modules package before 2014.2.13-2 uses a default password of CHANGEME for the pcsd daemon, which allows remote attackers to execute arbitrary she…
|
CWE-255
Credentials Management
|
CVE-2015-1842
|
2024-11-21 11:26 |
2015-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272335
|
- |
|
ntp
|
ntp
|
The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 3.x and 4.x before 4.2.8p2 performs state-variable updates upon receiving certain invalid packets, which makes it easie…
|
CWE-17
Code
|
CVE-2015-1799
|
2024-11-21 11:26 |
2015-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272336
|
- |
|
ntp
|
ntp
|
The symmetric-key feature in the receive function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p2 requires a correct MAC only if the MAC field has a nonzero length, which makes it easier for man-in-…
|
CWE-17
Code
|
CVE-2015-1798
|
2024-11-21 11:26 |
2015-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272337
|
- |
|
apache
|
flex
|
Cross-site scripting (XSS) vulnerability in asdoc/templates/index.html in Apache Flex before 4.14.1 allows remote attackers to inject arbitrary web script or HTML by providing a crafted URI to JavaSc…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1773
|
2024-11-21 11:26 |
2015-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272338
|
- |
|
ericsson
|
drutt_mobile_service_delivery_platform
|
Open redirect vulnerability in the 3PI Manager in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote attackers to redirect users to arbitrary web sites and conduct phish…
|
NVD-CWE-Other
|
CVE-2015-2167
|
2024-11-21 11:26 |
2015-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272339
|
- |
|
ericsson
|
drutt_mobile_service_delivery_platform
|
Directory traversal vulnerability in the Instance Monitor in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote attackers to read arbitrary files via a ..%2f (dot dot en…
|
CWE-22
Path Traversal
|
CVE-2015-2166
|
2024-11-21 11:26 |
2015-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272340
|
- |
|
redhat
|
docker
|
The Red Hat docker package before 1.5.0-28, when using the --add-registry option, falls back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to condu…
|
CWE-20
Improper Input Validation
|
CVE-2015-1843
|
2024-11-21 11:26 |
2015-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
