CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

OSV•added 2016/03/17 2:38 p.m.•6 views

SUSE-SU-2016:0807-1 Security update for clamsap

This update fixes the following security issues: CVE-2015-2278: The LZH decompression implementation allows context-dependent attackers to cause a denial of service out-of-bounds read via unspecified vectors, related to look-ups of non-simple codes. CVE-2015-2282: Stack-based buffer overflow in t...

7.5CVSS8.2AI score0.00915EPSS

Exploits2References4

CVE•added 2015/06/02 2:0 p.m.•54 views

CVE-2015-2282

CVE-2015-2282 is a stack-based buffer overflow in SAP’s LZC/LZH decompression code used across SAP MaxDB 7.5/7.6, NetWeaver AS ABAP/Java, RFC/GUI SDKs, SAPCAR, and related tools. The flaw (CsObjectInt::CsDecomprLZC and related LZH handling) can cause denial of service (crash) and may allow arbitr...

7.5CVSS8.5AI score0.00915EPSS

Exploits1References6Affected Software6

securityvulns•added 2015/05/17 12:0 a.m.•47 views

[CORE-2015-0009] - SAP LZC/LZH Compression Multiple Vulnerabilities

Advisory Information Title: SAP LZC/LZH Compression Multiple Vulnerabilities Advisory ID: CORE-2015-0009 Advisory URL: http://www.coresecurity.com/advisories/sap-lzc-lzh-compression-multiple-vulnerabilities Date published: 2015-05-12 Date of last update: 2015-05-12 Vendors contacted: SAP Release...

7.5CVSS0.00915EPSS

Exploits2

myhack58•added 2015/05/17 12:0 a.m.•17 views

SAP encryption algorithm vulnerability can lead to remote code execution or denial of service-vulnerability warning-the black bar safety net

Now, there is a widely used Protocol appeared unexpected vulnerability, SAP encryption algorithm of the data compression software can lead to remote code execution vulnerability and denial of service vulnerabilities. These problems arise because the SAP encryption algorithm of coding uses a popul...

1.4AI score

Exploits0

securityvulns•added 2015/05/17 12:0 a.m.•32 views

SAP applications buffer overflow

Buffer overflow in LZC/LZH implementation...

7.5CVSS3.2AI score0.00915EPSS

Exploits1References1

Core Security•added 2015/05/12 12:0 a.m.•564 views

SAP LZC/LZH Compression Multiple Vulnerabilities

Advisory ID Internal CORE-2015-0009 1. Advisory Information Title: SAP LZC/LZH Compression Multiple Vulnerabilities Advisory ID: CORE-2015-0009 Advisory URL:https://www.coresecurity.com/core-labs/advisories/sap-lzc-lzh-compression-multiple-vulnerabilities Date published: 2015-05-12 Date of last...

7.5CVSS7.9AI score0.00915EPSS

Exploits2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by