Oracle

Solaris

555 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 12.84%
  • Veröffentlicht 08.04.2015 18:59:01
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The (1) mod_dav_svn and (2) svnserve servers in Subversion 1.6.0 through 1.7.19 and 1.8.0 through 1.8.11 allow remote attackers to cause a denial of service (assertion failure and abort) via crafted parameter combinations related to dynamically evalu...

  • EPSS 2.24%
  • Veröffentlicht 08.04.2015 10:59:00
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The Reader mode feature in Mozilla Firefox before 37.0.1 on Android, and Desktop Firefox pre-release, does not properly handle privileged URLs, which makes it easier for remote attackers to execute arbitrary JavaScript code with chrome privileges by ...

Exploit
  • EPSS 8.71%
  • Veröffentlicht 30.03.2015 10:59:07
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Use-after-free vulnerability in the _zend_shared_memdup function in zend_shared_alloc.c in the OPcache extension in PHP through 5.6.7 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

  • EPSS 4.99%
  • Veröffentlicht 25.03.2015 14:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The utils.http.is_safe_url function in Django before 1.4.20, 1.5.x, 1.6.x before 1.6.11, 1.7.x before 1.7.7, and 1.8.x before 1.8c1 does not properly validate URLs, which allows remote attackers to conduct cross-site scripting (XSS) attacks via a con...

  • EPSS 4.96%
  • Veröffentlicht 25.03.2015 14:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The utils.html.strip_tags function in Django 1.6.x before 1.6.11, 1.7.x before 1.7.7, and 1.8.x before 1.8c1, when using certain versions of Python, allows remote attackers to cause a denial of service (infinite loop) by increasing the length of the ...

  • EPSS 7.82%
  • Veröffentlicht 24.03.2015 17:59:08
  • Zuletzt bearbeitet 06.05.2026 22:30:45

The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

  • EPSS 3.52%
  • Veröffentlicht 08.03.2015 02:59:04
  • Zuletzt bearbeitet 06.05.2026 22:30:45

epan/proto.c in Wireshark 1.12.x before 1.12.4 does not properly handle integer data types greater than 32 bits in size, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted packet that is ...

  • EPSS 4.6%
  • Veröffentlicht 08.03.2015 02:59:03
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Off-by-one error in the pcapng_read function in wiretap/pcapng.c in the pcapng file parser in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via...

  • EPSS 4.42%
  • Veröffentlicht 08.03.2015 02:59:02
  • Zuletzt bearbeitet 06.05.2026 22:30:45

epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 does not properly initialize a data structure, which allows remote attackers to cause a denial of service (out-of-bounds read and applicatio...

  • EPSS 6.03%
  • Veröffentlicht 25.02.2015 11:59:10
  • Zuletzt bearbeitet 06.05.2026 22:30:45

Buffer overflow in libstagefright in Mozilla Firefox before 36.0 allows remote attackers to execute arbitrary code via a crafted MP4 video that is improperly handled during playback.