|
272411
|
- |
|
linux
|
linux_kernel
|
The vhost_dev_ioctl function in drivers/vhost/vhost.c in the Linux kernel before 4.1.5 allows local users to cause a denial of service (memory consumption) via a VHOST_SET_LOG_FD ioctl call that trig…
|
CWE-399
Resource Management Errors
|
CVE-2015-6252
|
2024-11-21 11:34 |
2015-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272412
|
- |
|
cisco
|
asr_5000_software
|
Cisco ASR 5000 and 5500 devices with software 18.0.0.57828 and 19.0.M0.61045 allow remote attackers to cause a denial of service (vpnmgr process restart) via a crafted header in a TACACS packet, aka …
|
CWE-20
Improper Input Validation
|
CVE-2015-6334
|
2024-11-21 11:34 |
2015-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272413
|
- |
|
cisco
|
application_policy_infrastructure_controller
|
Cisco Application Policy Infrastructure Controller (APIC) 1.1j allows local users to gain privileges via vectors involving addition of an SSH key, aka Bug ID CSCuw46076.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6333
|
2024-11-21 11:34 |
2015-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272414
|
- |
|
qnap
|
qts
|
Directory traversal vulnerability in QNAP QTS before 4.1.4 build 0910 and 4.2.x before 4.2.0 RC2 build 0910, when AFP is enabled, allows remote attackers to read or write to arbitrary files by levera…
|
CWE-22
Path Traversal
|
CVE-2015-6003
|
2024-11-21 11:34 |
2015-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272415
|
- |
|
microsoft
|
jscript
vbscript
internet_explorer
|
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to obtain sensitive information from p…
|
CWE-200
Information Exposure
|
CVE-2015-6059
|
2024-11-21 11:34 |
2015-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272416
|
- |
|
microsoft
|
edge
|
Microsoft Edge mishandles HTML attributes in HTTP responses, which allows remote attackers to bypass a cross-site scripting (XSS) protection mechanism via unspecified vectors, aka "Microsoft Edge XSS…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6058
|
2024-11-21 11:34 |
2015-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272417
|
- |
|
microsoft
|
edge
|
Microsoft Edge allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Microsoft Edge Information Disclosure Vulnerability."
|
CWE-200
Information Exposure
|
CVE-2015-6057
|
2024-11-21 11:34 |
2015-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272418
|
- |
|
microsoft
|
jscript
vbscript
|
The (1) JScript and (2) VBScript engines in Microsoft Internet Explorer 9 through 11 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted we…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-6056
|
2024-11-21 11:34 |
2015-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272419
|
- |
|
microsoft
|
jscript
vbscript
|
The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code or cause a d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-6055
|
2024-11-21 11:34 |
2015-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272420
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 11 allows remote attackers to obtain sensitive information from process memory via crafted parameters in an ArrayBuffer.slice call, aka "Internet Explorer Information Disc…
|
CWE-200
Information Exposure
|
CVE-2015-6053
|
2024-11-21 11:34 |
2015-10-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
