|
282431
|
- |
|
mozilla
|
firefox_esr
firefox
seamonkey
|
The asm.js implementation in Mozilla Firefox before 36.0.3, Firefox ESR 31.x before 31.5.2, and SeaMonkey before 2.33.1 does not properly determine the cases in which bounds checking may be safely sk…
|
CWE-17
Code
|
CVE-2015-0817
|
2024-11-21 11:23 |
2015-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282432
|
- |
|
emc
|
documentum_xcelerated_management_system
|
EMC Documentum xCelerated Management System (xMS) 1.1 before P14 stores cleartext Windows Service credentials in a batch file during Documentum Platform and xCelerated Composition Platform (xCP) prov…
|
CWE-200
Information Exposure
|
CVE-2015-0527
|
2024-11-21 11:23 |
2015-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282433
|
- |
|
futomi
|
mp_form_mail_cgi
|
futomi CGI Cafe MP Form Mail CGI eCommerce before 2.0.12 on Windows allows remote attackers to execute arbitrary Perl code via unspecified vectors.
|
CWE-94
Code Injection
|
CVE-2015-0898
|
2024-11-21 11:23 |
2015-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282434
|
- |
|
cisco
|
ios
|
The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 15.4S and 15.4(3)S allows remote attackers to modify configuration settings or cause a denial of service (partial service out…
|
CWE-20
Improper Input Validation
|
CVE-2015-0669
|
2024-11-21 11:23 |
2015-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282435
|
- |
|
cisco
|
spa500_firmware
spa_501g_8-line_ip_phone
spa_502g_1-line_ip_phone
spa_504g_4-line_ip_phone
spa_508g_8-line_ip_phone
spa_509g_12-line_ip_phone
spa_512g_1-line_ip_phone
spa_514g_4-…
|
The default configuration of Cisco Small Business IP phones SPA 300 7.5.5 and SPA 500 7.5.5 does not properly support authentication, which allows remote attackers to read audio-stream data or origin…
|
CWE-287
Improper Authentication
|
CVE-2015-0670
|
2024-11-21 11:23 |
2015-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282436
|
- |
|
cisco
|
videoscape_delivery_system_for_internet_streamer
|
The DNS implementation in Cisco Videoscape Distribution Suite for Internet Streaming (VDS-IS) 3.2(1) allows remote attackers to cause a denial of service (CPU consumption and network-resource consump…
|
CWE-399
Resource Management Errors
|
CVE-2015-0671
|
2024-11-21 11:23 |
2015-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282437
|
- |
|
cisco
|
webex_meetings_server
|
Cross-site scripting (XSS) vulnerability in the administration portal in Cisco WebEx Meetings Server 2.5 and 2.5.99.2 allows remote attackers to inject arbitrary web script or HTML via unspecified ve…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0668
|
2024-11-21 11:23 |
2015-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282438
|
- |
|
extplorer
|
extplorer
|
Multiple cross-site scripting (XSS) vulnerabilities in eXtplorer before 2.1.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0896
|
2024-11-21 11:23 |
2015-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282439
|
- |
|
cisco
|
content_services_switch_11500_firmware
|
The Management Interface on Cisco Content Services Switch (CSS) 11500 devices 8.20.4.02 and earlier allows remote attackers to bypass intended restrictions on local-network device access via crafted …
|
CWE-284
Improper Access Control
|
CVE-2015-0667
|
2024-11-21 11:23 |
2015-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282440
|
- |
|
cisco
|
anyconnect_secure_mobility_client
|
The IPC channel in Cisco AnyConnect Secure Mobility Client 4.0(.00051) and earlier allows local users to write to arbitrary userspace memory locations, and consequently gain privileges, via crafted m…
|
CWE-20
Improper Input Validation
|
CVE-2015-0664
|
2024-11-21 11:23 |
2015-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
