|
282911
|
7.5 |
HIGH
Network
|
dest-unreach
|
socat
|
The signal handler implementations in socat before 1.7.3.0 and 2.0.0-b8 allow remote attackers to cause a denial of service (process freeze or crash).
|
CWE-20
Improper Input Validation
|
CVE-2015-1379
|
2024-11-21 11:25 |
2017-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282912
|
7.5 |
HIGH
Network
|
google
|
android
|
Integer overflow in soundtrigger/ISoundTriggerHwService.cpp in Android allows attacks to cause a denial of service via unspecified vectors.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2015-1529
|
2024-11-21 11:25 |
2017-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282913
|
7.5 |
HIGH
Network
|
bro
|
bro
|
analyzer/protocol/dnp3/DNP3.cc in Bro before 2.3.2 does not reject certain non-zero values of a packet length, which allows remote attackers to cause a denial of service (buffer overflow or buffer ov…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1522
|
2024-11-21 11:25 |
2017-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282914
|
7.5 |
HIGH
Network
|
bro
|
bro
|
analyzer/protocol/dnp3/DNP3.cc in Bro before 2.3.2 does not properly handle zero values of a packet length, which allows remote attackers to cause a denial of service (buffer overflow or buffer over-…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1521
|
2024-11-21 11:25 |
2017-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282915
|
7.5 |
HIGH
Network
|
opendaylight
|
openflow
|
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to the reuse of LLDP packets, aka "LLDP Relay."
|
CWE-20
Improper Input Validation
|
CVE-2015-1612
|
2024-11-21 11:25 |
2017-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282916
|
7.5 |
HIGH
Network
|
opendaylight
|
openflow
|
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to "fake LLDP injection."
|
CWE-20
Improper Input Validation
|
CVE-2015-1611
|
2024-11-21 11:25 |
2017-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282917
|
5.3 |
MEDIUM
Network
|
opendaylight
|
l2switch
|
hosttracker in OpenDaylight l2switch allows remote attackers to change the host location information by spoofing the MAC address, aka "topology spoofing."
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1610
|
2024-11-21 11:25 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282918
|
7.8 |
HIGH
Local
|
canonical
linux
|
ubuntu_linux
linux_kernel
|
The overlayfs implementation in the linux (aka Linux kernel) package before 3.19.0-21.21 in Ubuntu through 15.04 does not properly check permissions for file creation in the upper filesystem director…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1328
|
2024-11-21 11:25 |
2016-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282919
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The nft_flush_table function in net/netfilter/nf_tables_api.c in the Linux kernel before 3.18.5 mishandles the interaction between cross-chain jumps and ruleset flushes, which allows local users to c…
|
CWE-19
Data Processing Errors
|
CVE-2015-1573
|
2024-11-21 11:25 |
2016-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282920
|
5.5 |
MEDIUM
Local
|
linux
redhat
|
linux_kernel
enterprise_linux
enterprise_mrg
|
The VFS subsystem in the Linux kernel 3.x provides an incomplete set of requirements for setattr operations that underspecifies removing extended privilege attributes, which allows local users to cau…
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2015-1350
|
2024-11-21 11:25 |
2016-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
