|
269621
|
- |
|
moxa
|
eds-405a_firmware
eds-408a_firmware
|
The administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to bypass a read-only protection mechanism by using Firefox with a w…
|
NVD-CWE-noinfo
|
CVE-2015-6464
|
2024-11-21 11:35 |
2015-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269622
|
- |
|
auto-exchanger
|
auto-exchanger
|
Cross-site request forgery (CSRF) vulnerability in Auto-Exchanger 5.1.0 allows remote attackers to hijack the authentication of users for requests that change a password via a request to signup.php.
|
CWE-352
Origin Validation Error
|
CVE-2015-6827
|
2024-11-21 11:35 |
2015-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269623
|
- |
|
sprymedia
|
datatables
|
Cross-site scripting (XSS) vulnerability in the DataTables plugin 1.10.8 and earlier for jQuery allows remote attackers to inject arbitrary web script or HTML via the scripts parameter to media/unit_…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6584
|
2024-11-21 11:35 |
2015-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269624
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.2.0.162 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-6…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-6681
|
2024-11-21 11:35 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269625
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.2.0.162 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-6…
|
NVD-CWE-noinfo
|
CVE-2015-6680
|
2024-11-21 11:35 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269626
|
- |
|
canonical
ffmpeg
|
ubuntu_linux
ffmpeg
|
The ff_rv34_decode_init_thread_copy function in libavcodec/rv34.c in FFmpeg before 2.7.2 does not initialize certain structure members, which allows remote attackers to cause a denial of service (inv…
|
CWE-20
Improper Input Validation
|
CVE-2015-6826
|
2024-11-21 11:35 |
2015-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269627
|
- |
|
ffmpeg
|
ffmpeg
|
The ff_frame_thread_init function in libavcodec/pthread_frame.c in FFmpeg before 2.7.2 mishandles certain memory-allocation failures, which allows remote attackers to cause a denial of service (inval…
|
CWE-20
Improper Input Validation
|
CVE-2015-6825
|
2024-11-21 11:35 |
2015-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269628
|
- |
|
ffmpeg
canonical
|
ffmpeg
ubuntu_linux
|
The sws_init_context function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service (segmentation…
|
CWE-20
Improper Input Validation
|
CVE-2015-6824
|
2024-11-21 11:35 |
2015-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269629
|
- |
|
ffmpeg
|
ffmpeg
|
The allocate_buffers function in libavcodec/alac.c in FFmpeg before 2.7.2 does not initialize certain context data, which allows remote attackers to cause a denial of service (segmentation violation)…
|
CWE-17
Code
|
CVE-2015-6823
|
2024-11-21 11:35 |
2015-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269630
|
- |
|
ffmpeg
|
ffmpeg
|
The destroy_buffers function in libavcodec/sanm.c in FFmpeg before 2.7.2 does not properly maintain height and width values in the video context, which allows remote attackers to cause a denial of se…
|
CWE-17
Code
|
CVE-2015-6822
|
2024-11-21 11:35 |
2015-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
