|
271171
|
- |
|
adnovum
|
nevisauth
|
The SAML 2.0 implementation in AdNovum nevisAuth 4.13.0.0 before 4.18.3.1, when using SAML POST-Binding, does not match all attributes of the X.509 certificate embedded in the assertion against the c…
|
CWE-287
Improper Authentication
|
CVE-2015-5372
|
2024-11-21 11:32 |
2015-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271172
|
- |
|
qemu
|
qemu
|
Heap-based buffer overflow in the ne2000_receive function in hw/net/ne2000.c in QEMU before 2.4.0.1 allows guest OS users to cause a denial of service (instance crash) or possibly execute arbitrary c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5279
|
2024-11-21 11:32 |
2015-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271173
|
- |
|
endian_firewall
|
endian_firewall
|
Endian Firewall before 3.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) NEW_PASSWORD_1 or (2) NEW_PASSWORD_2 parameter to cgi-bin/chpasswd.cgi.
|
CWE-77
Command Injection
|
CVE-2015-5082
|
2024-11-21 11:32 |
2015-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271174
|
- |
|
redhat
|
openshift
|
rubygem-openshift-origin-console in Red Hat OpenShift 2.2 allows remote authenticated users to execute arbitrary commands via a crafted request to the Broker.
|
CWE-77
Command Injection
|
CVE-2015-5274
|
2024-11-21 11:32 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271175
|
- |
|
hp
|
loadrunner
|
Unspecified vulnerability in HP LoadRunner Controller before 12.50 allows local users to gain privileges via unknown vectors, aka ZDI-CAN-2756.
|
NVD-CWE-noinfo
|
CVE-2015-5426
|
2024-11-21 11:32 |
2015-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271176
|
- |
|
ibm
|
http_server
|
Stack-based buffer overflow in the Administration Server in IBM HTTP Server 6.1.0.x through 6.1.0.47, 7.0.0.x before 7.0.0.39, 8.0.0.x before 8.0.0.12, and 8.5.x before 8.5.5.7, as used in WebSphere …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4947
|
2024-11-21 11:32 |
2015-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271177
|
- |
|
ibm
|
websphere_commerce
|
Unspecified vulnerability in IBM WebSphere Commerce 7.0.0.6 through 7.0.0.9 allows remote authenticated users to obtain sensitive personal information via unknown vectors.
|
CWE-200
Information Exposure
|
CVE-2015-4980
|
2024-11-21 11:32 |
2015-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271178
|
- |
|
redhat
|
openshift_origin
|
The API server in OpenShift Origin 1.0.5 allows remote attackers to cause a denial of service (master process crash) via crafted JSON data.
|
CWE-20
Improper Input Validation
|
CVE-2015-5250
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271179
|
- |
|
libvdpau_project
canonical
|
libvdpau
ubuntu_linux
|
The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2015-5200
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271180
|
- |
|
canonical
libvdpau_project
|
ubuntu_linux
libvdpau
|
Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAU_DRIVER environment variable.
|
CWE-22
Path Traversal
|
CVE-2015-5199
|
2024-11-21 11:32 |
2015-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
