|
280221
|
- |
|
canonical
gnu
|
ubuntu_linux
glibc
|
The ADDW macro in stdio-common/vfscanf.c in the GNU C Library (aka glibc or libc6) before 2.21 does not properly consider data-type size during memory allocation, which allows context-dependent attac…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1472
|
2024-11-21 11:25 |
2015-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280222
|
- |
|
siemens
|
simatic_step_7
|
Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before 13 SP1 Upd1 improperly stores password data within project files, which makes it easier for local users to determine cleartext (1) protection-leve…
|
CWE-200
Information Exposure
|
CVE-2015-1602
|
2024-11-21 11:25 |
2015-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280223
|
- |
|
siemens
|
simatic_step_7
|
Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before 13 SP1 Upd1 allows man-in-the-middle attackers to obtain sensitive information or modify transmitted data via unspecified vectors.
|
CWE-254
7PK - Security Features
|
CVE-2015-1601
|
2024-11-21 11:25 |
2015-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280224
|
- |
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
The IPv4 implementation in the Linux kernel before 3.18.8 does not properly consider the length of the Read-Copy Update (RCU) grace period for redirecting lookups in the absence of caching, which all…
|
CWE-17
Code
|
CVE-2015-1465
|
2024-11-21 11:25 |
2015-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280225
|
- |
|
fedoraproject
mongodb
|
fedora
mongodb
|
MongoDB before 2.4.13 and 2.6.x before 2.6.8 allows remote attackers to cause a denial of service via a crafted UTF-8 string in a BSON request.
|
CWE-20
Improper Input Validation
|
CVE-2015-1609
|
2024-11-21 11:25 |
2015-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280226
|
- |
|
apple
php
|
mac_os_x
php
|
The build_tablename function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP through 5.6.7 does not validate token extraction for table names, which allows remote attackers to cause a denia…
|
NVD-CWE-Other
|
CVE-2015-1352
|
2024-11-21 11:25 |
2015-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280227
|
- |
|
oracle
apple
php
|
secure_backup
mac_os_x
php
solaris
linux
|
Use-after-free vulnerability in the _zend_shared_memdup function in zend_shared_alloc.c in the OPcache extension in PHP through 5.6.7 allows remote attackers to cause a denial of service or possibly …
|
CWE-416
Use After Free
|
CVE-2015-1351
|
2024-11-21 11:25 |
2015-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280228
|
- |
|
arubanetworks
|
arubaos
|
The "RAP console" feature in ArubaOS 5.x through 6.2.x, 6.3.x before 6.3.1.15, and 6.4.x before 6.4.2.4 on Aruba access points in Remote Access Point (AP) mode allows remote attackers to execute arbi…
|
CWE-78
OS Command
|
CVE-2015-1388
|
2024-11-21 11:25 |
2015-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280229
|
- |
|
linux
|
linux_kernel
|
The stack randomization feature in the Linux kernel before 3.19.1 on 64-bit platforms uses incorrect data types for the results of bitwise left-shift operations, which makes it easier for attackers t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1593
|
2024-11-21 11:25 |
2015-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280230
|
- |
|
linux
canonical
debian
|
linux_kernel
ubuntu_linux
debian_linux
|
Use-after-free vulnerability in the sctp_assoc_update function in net/sctp/associola.c in the Linux kernel before 3.18.8 allows remote attackers to cause a denial of service (slab corruption and pani…
|
NVD-CWE-Other
|
CVE-2015-1421
|
2024-11-21 11:25 |
2015-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
