UBUNTU-CVE-2015-4663

Bulletin has no description...

OpenSSL Multiple Vulnerabilities (20150319 - 2) - Windows

OpenSSL is prone to multiple vulnerabilities. Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OpenSSL Multiple Vulnerabilities (20150319 - 2) - Linux

OpenSSL is prone to multiple vulnerabilities. Copyright C 2015 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

wireshark: Dissector table crash (wnpa-sec-2015-23)

The dissector-table implementation in epan/packet.c in Wireshark 1.12.x before 1.12.7 mishandles table searches for empty strings, which allows remote attackers to cause a denial of service application crash via a crafted packet, related to the 1 dissectorgetstringhandle and 2...

systemd: freeze when PID 1 receives a zero-length message over notify socket

A flaw was found in the way systemd handled empty notification messages. A local attacker could use this flaw to make systemd freeze its execution, preventing further management of system services, system shutdown, or zombie process collection via systemd...

StrongSwan Security Mechanism Bypass Vulnerability

strongSwan is an open source IPsec-based VPN solution for Linux. The server implementation of the EAP-MSCHAPv2 protocol in strongSwan's eap-mschapv2 plugin fails to properly validate the local state, allowing a remote attacker to bypass authentication by sending an empty Success message in respon...

DEBIAN-CVE-2015-8023

The server implementation of the EAP-MSCHAPv2 protocol in the eap-mschapv2 plugin in strongSwan 4.2.12 through 5.x before 5.3.4 does not properly validate local state, which allows remote attackers to bypass authentication via an empty Success message in response to an initial Challenge message...

UBUNTU-CVE-2015-8023

The server implementation of the EAP-MSCHAPv2 protocol in the eap-mschapv2 plugin in strongSwan 4.2.12 through 5.x before 5.3.4 does not properly validate local state, which allows remote attackers to bypass authentication via an empty Success message in response to an initial Challenge message...

DEBIAN-CVE-2015-6855

hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...

ALPINE-CVE-2015-7697

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...

AZL-35337 CVE-2015-7697 affecting package unzip for versions less than 6.0-20

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...

DEBIAN-CVE-2015-7697

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...

AZL-6939 CVE-2015-7697 affecting package unzip for versions less than 6.0-19

Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service infinite loop via empty bzip2 data in a ZIP archive...

The vulnerability of the Firebird database management system allows a perpetrator to cause a service failure.

The vulnerability of the TraceManager component in the Firebird database management system is related to resource management errors. Exploiting this vulnerability allows an attacker to cause service failures by generating empty dynamic SQL queries from a remote location...

CVE-2015-6500

Directory traversal vulnerability in ownCloud Server before 8.0.6 and 8.1.x before 8.1.1 allows remote authenticated users to list directory contents and possibly cause a denial of service CPU consumption via a .. dot dot in the dir parameter to index.php/apps/files/ajax/scan.php...

The vulnerability of the Mac OS X operating system, which allows a perpetrator to gain access to protected information

The vulnerability of the “Secure Empty Trash” extension of the Finder component in the Mac OS X operating system is related to improper file deletion. Exploiting this vulnerability can allow an intruder, operating locally, to gain access to protected information by analyzing storage media...

Revive Adserver HTML_Quickform Library Security Bypass Vulnerability

Revive Adserver is an open source ad management system. Revive Adserver HTMLQuickform library has a security vulnerability that allows remote attackers can use empty tokens to bypass the CSRF protection mechanism...

python-django: Denial-of-service possibility in logout() view by filling session store

It was found that certain Django functions would, in certain circumstances, create empty sessions. A remote attacker could use this flaw to fill up the session store or cause other users' session records to be evicted by requesting a large number of new sessions...

Cross site request forgery (csrf)

The HTMLQuickform library, as used in Revive Adserver before 3.2.2, allows remote attackers to bypass the CSRF protection mechanism via an empty token...

CVE-2015-7364

CVE-2015-7364 affects Revive Adserver up to and including version 3.2.1, where the HTML_Quickform library allows bypassing CSRF protection by sending an empty token in POST data. This enables potential unauthorized actions such as modifying banners, zones, and settings. The entry is mitigated by ...