|
271001
|
- |
|
schneider-electric
|
bmxnoe0110h
bmxpra0100
bmxnoc0401
bmxnor0200h
bmxnoe0100
bmxnor0200
bmxnoe0110
bmxnoe0100h
modicon_m340_bmxp342020
modicon_m340_bmxp342030
modicon_m340_bmxp3420302
mo…
|
Stack-based buffer overflow in the GoAhead Web Server on Schneider Electric Modicon M340 PLC BMXNOx and BMXPx devices allows remote attackers to execute arbitrary code via a long password in HTTP Bas…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7937
|
2024-11-21 11:37 |
2015-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271002
|
10.0 |
CRITICAL
Network
|
searchblox
|
searchblox
|
SearchBlox 8.3 before 8.3.1 allows remote attackers to write to the config file, and consequently cause a denial of service (application crash), via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-7919
|
2024-11-21 11:37 |
2015-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271003
|
- |
|
honeywell
|
midas_firmware
midas_black_firmware
|
Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 allow remote attackers to discover cleartext passwords by sniffing the network.
|
CWE-200
Information Exposure
|
CVE-2015-7908
|
2024-11-21 11:37 |
2015-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271004
|
8.6 |
HIGH
Network
|
honeywell
|
midas_black_firmware
midas_firmware
|
Directory traversal vulnerability in the web server on Honeywell Midas gas detectors before 1.13b3 and Midas Black gas detectors before 2.13b3 allows remote attackers to bypass authentication, and wr…
|
CWE-22
Path Traversal
|
CVE-2015-7907
|
2024-11-21 11:37 |
2015-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271005
|
- |
|
loytec
|
l-switch_and_l-ip_firmware
|
LOYTEC LIP-3ECTB 6.0.1, LINX-100, LVIS-3E100, and LIP-ME201 devices allow remote attackers to read a password-hash backup file via unspecified vectors.
|
CWE-255
Credentials Management
|
CVE-2015-7906
|
2024-11-21 11:37 |
2015-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271006
|
- |
|
juniper
|
screenos
|
The encryption implementation in Juniper ScreenOS 6.2.0r15 through 6.2.0r18, 6.3.0r12 before 6.3.0r12b, 6.3.0r13 before 6.3.0r13b, 6.3.0r14 before 6.3.0r14b, 6.3.0r15 before 6.3.0r15b, 6.3.0r16 befor…
|
CWE-310
Cryptographic Issues
|
CVE-2015-7756
|
2024-11-21 11:37 |
2015-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271007
|
- |
|
oracle
isc
|
linux
solaris
vm_server
bind
|
db.c in named in ISC BIND 9.x before 9.9.8-P2 and 9.10.x before 9.10.3-P2 allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit) via a malformed class attrib…
|
CWE-20
Improper Input Validation
|
CVE-2015-8000
|
2024-11-21 11:37 |
2015-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271008
|
- |
|
schneider-electric
|
proclima
|
Multiple buffer overflows in the F1BookView ActiveX control in F1 Bookview in Schneider Electric ProClima before 6.2 allow remote attackers to execute arbitrary code via the (1) Attach, (2) DefinedNa…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7918
|
2024-11-21 11:37 |
2015-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271009
|
- |
|
apple
php
|
mac_os_x
php
|
Off-by-one error in the phar_parse_zipfile function in ext/phar/zip.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (uninitialized pointer derefere…
|
CWE-189
Numeric Errors
|
CVE-2015-7804
|
2024-11-21 11:37 |
2015-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271010
|
- |
|
php
apple
|
php
mac_os_x
|
The phar_get_entry_data function in ext/phar/util.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) …
|
NVD-CWE-Other
|
CVE-2015-7803
|
2024-11-21 11:37 |
2015-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
