Lucene search
K

6 matches found

OSV
OSV
added 2015/12/03 8:59 p.m.6 views

CVE-2015-0860

Off-by-one error in the extracthalf function in dpkg-deb/extract.c in the dpkg-deb component in Debian dpkg 1.16.x before 1.16.17 and 1.17.x before 1.17.26 allows remote attackers to execute arbitrary code via the archive magic version number in an "old-style" Debian binary package, which trigger...

9.7AI score
Exploits0References6
Cvelist
Cvelist
added 2015/12/03 8:0 p.m.22 views

CVE-2015-0860

Off-by-one error in the extracthalf function in dpkg-deb/extract.c in the dpkg-deb component in Debian dpkg 1.16.x before 1.16.17 and 1.17.x before 1.17.26 allows remote attackers to execute arbitrary code via the archive magic version number in an "old-style" Debian binary package, which trigger...

9.7AI score0.05035EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2015/12/03 8:0 p.m.42 views

CVE-2015-0860

Off-by-one error in the extracthalf function in dpkg-deb/extract.c in the dpkg-deb component in Debian dpkg 1.16.x before 1.16.17 and 1.17.x before 1.17.26 allows remote attackers to execute arbitrary code via the archive magic version number in an "old-style" Debian binary package, which trigger...

7.5CVSS9.8AI score0.05035EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.8 views

Vulnerabilities of the Debian GNU/Linux operating system, which allow a remote attacker to compromise the integrity and accessibility of protected information

The dpkg-dev package in the Debian GNU/Linux operating system has multiple vulnerabilities. Exploitation of these vulnerabilities may lead to damage to the integrity and accessibility of protected information. These vulnerabilities can be exploited remotely...

5.8CVSS5.5AI score0.02007EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2015/04/13 2:59 p.m.8 views

CVE-2015-0840

The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 allows remote attackers to bypass signature verification via a crafted Debian source control file .dsc...

6.4AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2012/05/10 12:0 a.m.38 views

Debian DSA-2466-1 : rails - XSS

Sergey Nartimov discovered that in Rails, a Ruby based framework for web development, when developers generate html options tags manually, user input concatenated with manually built tags may not be escaped and an attacker can inject arbitrary HTML into the document. %NASLMINLEVEL 70300 C Tenable...

4.3CVSS5.5AI score0.02504EPSS
Exploits0References4
Rows per page
Query Builder