본문 바로가기
IT 와 Social 이야기/Security

[US-CERT: Bulletin(SB15-187)] 2015년 6월 29일까지 발표된 보안 취약점

by manga0713 2015. 7. 8.

 

 

 

The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:

  • High - Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 - 10.0

  • Medium - Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 - 6.9

  • Low - Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9

Entries may include additional information provided by organizations and efforts sponsored by US-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of US-CERT analysis.

High Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
cisco -- ios Race condition in the IPv6-to-IPv4 functionality in Cisco IOS 15.3S in the Performance Routing Engine (PRE) module on UBR devices allows remote attackers to cause a denial of service (NULL pointer free and module crash) by triggering intermittent connectivity with many IPv6 CPE devices, aka Bug ID CSCug47366. 2015-06-27 7.1 CVE-2015-4199
CISCO(link is external)
cisco -- unified_ip_phones_9900_series_firmware The packet-storing feature on Cisco 9900 phones with firmware 9.3(2) does not properly support the RTP protocol, which allows remote attackers to cause a denial of service (device hang) by sending malformed RTP packets after a call is answered, aka Bug ID CSCur39976. 2015-06-30 7.1 CVE-2015-4226
CISCO(link is external)
cisco -- headend_system_release Memory leak in Cisco Headend System Release allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, aka Bug ID CSCus91838. 2015-06-30 7.8 CVE-2015-4227
CISCO(link is external)
emc -- unisphere EMC Unisphere for VMAX 8.x before 8.0.3.4 sets up the Java Debugging Wire Protocol (JDWP) service, which allows remote attackers to execute arbitrary code via unspecified vectors. 2015-06-29 10.0 CVE-2015-0545
BUGTRAQ
emc -- documentum_thumbnail_server Directory traversal vulnerability in EMC Documentum Thumbnail Server 6.7SP1 before P32, 6.7SP2 before P25, 7.0 before P19, 7.1 before P16, and 7.2 before P01 allows remote attackers to bypass intended Content Server access restrictions via unspecified vectors. 2015-06-28 8.5 CVE-2015-0550
BUGTRAQ
ibm -- infosphere_datastage IBM InfoSphere DataStage 8.1, 8.5, 8.7, 9.1, and 11.3 through 11.3.1.2 on UNIX allows local users to write to executable files, and consequently obtain root privileges, via unspecified vectors. 2015-06-29 7.2 CVE-2015-1900
CONFIRM(link is external)
AIXAPAR(link is external)
ibm -- tivoli_storage_manager_fastback Buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors. 2015-06-30 7.8 CVE-2015-1923
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1925, CVE-2015-1929, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965. 2015-06-30 7.8 CVE-2015-1924
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1929, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965. 2015-06-30 7.8 CVE-2015-1925
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1925, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965. 2015-06-30 7.8 CVE-2015-1929
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1925, CVE-2015-1929, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965. 2015-06-30 7.8 CVE-2015-1930
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2015-1986. 2015-06-30 10.0 CVE-2015-1938
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to read arbitrary files via a crafted TCP packet to an unspecified port. 2015-06-30 7.8 CVE-2015-1941
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to write to arbitrary files, and subsequently execute these files, via a crafted TCP packet to an unspecified port. 2015-06-30 9.3 CVE-2015-1942
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1925, CVE-2015-1929, CVE-2015-1930, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965. 2015-06-30 7.8 CVE-2015-1948
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to execute arbitrary commands with SYSTEM privileges via unspecified vectors. 2015-06-30 10.0 CVE-2015-1949
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1925, CVE-2015-1929, CVE-2015-1930, CVE-2015-1948, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965. 2015-06-30 7.8 CVE-2015-1953
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1925, CVE-2015-1929, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1962, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965. 2015-06-30 7.8 CVE-2015-1954
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1925, CVE-2015-1929, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1963, CVE-2015-1964, and CVE-2015-1965. 2015-06-30 7.8 CVE-2015-1962
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1925, CVE-2015-1929, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1964, and CVE-2015-1965. 2015-06-30 7.8 CVE-2015-1963
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1925, CVE-2015-1929, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, and CVE-2015-1965. 2015-06-30 7.8 CVE-2015-1964
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback Stack-based buffer overflow in the server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, a different vulnerability than CVE-2015-1924, CVE-2015-1925, CVE-2015-1929, CVE-2015-1930, CVE-2015-1948, CVE-2015-1953, CVE-2015-1954, CVE-2015-1962, CVE-2015-1963, and CVE-2015-1964. 2015-06-30 7.8 CVE-2015-1965
CONFIRM(link is external)
ibm -- tivoli_storage_manager_fastback The server in IBM Tivoli Storage Manager FastBack 6.1 before 6.1.12 allows remote attackers to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2015-1938. 2015-06-30 10.0 CVE-2015-1986
CONFIRM(link is external)
livelycart -- livelycart SQL injection vulnerability in LivelyCart 1.2.0 allows remote attackers to execute arbitrary SQL commands via the search_query parameter to product/search. 2015-06-30 7.5 CVE-2015-5148
EXPLOIT-DB(link is external)
novius-os -- novius_os Directory traversal vulnerability in Novius OS 5.0.1 (Elche) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tab parameter to admin/. 2015-07-01 7.5 CVE-2015-5353
BUGTRAQ(link is external)
MISC(link is external)
MISC
themepunch -- showbiz_pro The ThemePunch Slider Revolution (revslider) plugin before 3.0.96 for WordPress and Showbiz Pro plugin 1.7.1 and earlier for Wordpress does not properly restrict access to administrator AJAX functionality, which allows remote attackers to (1) upload and execute arbitrary files via an update_plugin action; (2) delete arbitrary sliders via a delete_slider action; and (3) create, (4) update, (5) import, or (6) export arbitrary sliders via unspecified vectors. 2015-06-30 7.5 CVE-2014-9735
MISC(link is external)
MISC(link is external)
MISC
MISC(link is external)
CONFIRM(link is external)
FULLDISC
Back to top

Medium Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
cagintranetworks -- getsimple_cms Multiple cross-site scripting (XSS) vulnerabilities in GetSimple CMS before 3.3.6 allow remote attackers to inject arbitrary web script or HTML via the (1) post-content or (2) post-title parameter to admin/edit.php. 2015-07-01 4.3 CVE-2015-5355
CONFIRM(link is external)
CONFIRM(link is external)
MISC(link is external)
cagintranetworks -- getsimple_cms Cross-site scripting (XSS) vulnerability in admin/filebrowser.php in GetSimple CMS before 3.3.6 allows remote attackers to inject arbitrary web script or HTML via the func parameter. 2015-07-01 4.3 CVE-2015-5356
CONFIRM(link is external)
CONFIRM(link is external)
CONFIRM(link is external)
cisco -- nx-os Cisco Application Policy Infrastructure Controller (APIC) 1.0(1.110a) and 1.0(1e) on Nexus 9000 devices does not properly implement RBAC health scoring, which allows remote authenticated users to obtain sensitive information via unspecified vectors, aka Bug ID CSCuq77485. 2015-06-27 4.0 CVE-2015-4225
CISCO(link is external)
cisco -- digital_content_manager Cisco Digital Content Manager (DCM) 15.0.0 might allow remote ad servers to cause a denial of service (reboot) via malformed ad messages, aka Bug ID CSCur13999. 2015-07-02 5.4 CVE-2015-4228
CISCO(link is external)
cisco -- unified_communications_domain_manager The web framework in Cisco Unified Communications Domain Manager 8.1(4)ER1 allows remote attackers to obtain sensitive information by visiting a bvsmweb URL, aka Bug ID CSCuq22589. 2015-06-30 5.0 CVE-2015-4229
CISCO(link is external)
cisco -- unified_meetingplace SQL injection vulnerability in Cisco Unified MeetingPlace 8.6(1.2) allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuu54037. 2015-07-02 6.5 CVE-2015-4233
CISCO(link is external)
cisco -- adaptive_security_appliance_software The SNMP implementation in Cisco Adaptive Security Appliance (ASA) Software 8.4(7) and 8.6(1.2) allows remote authenticated users to cause a denial of service (device reload) by sending many SNMP requests during a time of high network traffic, aka Bug ID CSCul02601. 2015-07-02 6.8 CVE-2015-4238
CISCO(link is external)
cryptopp -- crypto++_library The InvertibleRWFunction::CalculateInverse function in rw.cpp in libcrypt++ 5.6.2 does not properly blind private key operations for the Rabin-Williams digital signature algorithm, which allows remote attackers to obtain private keys via a timing attack. 2015-07-01 5.0 CVE-2015-2141
CONFIRM(link is external)
DEBIAN
CONFIRM(link is external)
debian -- unattended-upgrades unattended-upgrades before 0.86.1 does not properly authenticate packages when the (1) force-confold or (2) force-confnew dpkg options are enabled in the DPkg::Options::* apt configuration, which allows remote man-in-the-middle attackers to upload and execute arbitrary packages via unspecified vectors. 2015-07-01 6.8 CVE-2015-1330
UBUNTU(link is external)
DEBIAN
CONFIRM
droidwareuk -- explorer+_file_manager Directory traversal vulnerability in the Droidware UK Explorer+ File Manager application before 2.3.3 for Android allows remote attackers to write to arbitrary files via unspecified vectors. 2015-06-30 6.4 CVE-2015-2966
JVNDB(link is external)
JVN(link is external)
ibm -- security_network_protection_firmware Cross-site request forgery (CSRF) vulnerability in IBM Security Network Protection 5.3 before 5.3.1 allows remote attackers to hijack the authentication of arbitrary users. 2015-06-28 6.8 CVE-2014-6198
CONFIRM(link is external)
ibm -- leads Cross-site request forgery (CSRF) vulnerability in IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to hijack the authentication of customer accounts. 2015-06-28 6.0 CVE-2015-0115
CONFIRM(link is external)
ibm -- integration_bus IBM WebSphere Message Broker Toolkit 7 before 7007 IF2 and 8 before 8005 IF1 and Integration Toolkit 9 before 9003 IF1 are distributed with MQ client JAR files that support only weak TLS ciphers, which might make it easier for remote attackers to obtain sensitive information by sniffing the network during a connection to an Integration Bus node. 2015-06-28 4.3 CVE-2015-0118
CONFIRM(link is external)
AIXAPAR(link is external)
ibm -- leads IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to bypass intended file-upload restrictions via a modified extension. 2015-06-28 6.5 CVE-2015-0126
CONFIRM(link is external)
ibm -- websphere_mq_internet_pass_thru The HTTP connection-management functionality in Internet Pass-Thru (IPT) before 2.1.0.2 in IBM WebSphere MQ, when HTTPS is disabled, does not properly generate MQIPT Session IDs, which makes it easier for remote attackers to bypass intended restrictions on MQ message data by predicting an ID value. 2015-06-28 4.3 CVE-2015-0173
CONFIRM(link is external)
ibm -- websphere_commerce CRLF injection vulnerability in IBM WebSphere Commerce 6.0 through 6.0.0.11 and 7.0 before 7.0.0.8 Cumulative iFix 2 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a crafted URL. 2015-06-29 5.0 CVE-2015-0196
CONFIRM(link is external)
AIXAPAR(link is external)
AIXAPAR(link is external)
ibm -- business_process_manager Directory traversal vulnerability in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 through 8.5.5.0 and WebSphere Lombardi Edition (WLE) 7.2 through 7.2.0.5 allows remote authenticated users to read arbitrary files via a crafted internationalization-file URL. 2015-06-28 4.0 CVE-2015-1884
CONFIRM(link is external)
AIXAPAR(link is external)
ibm -- rational_test_virtualization_server Rational Test Control Panel in IBM Rational Test Workbench and Rational Test Virtualization Server 8.0.0.x before 8.0.0.5, 8.0.1.x before 8.0.1.6, 8.5.0.x before 8.5.0.4, 8.5.1.x before 8.5.1.5, 8.6.0.x before 8.6.0.4, and 8.7.0.x before 8.7.0.2 uses the MD5 algorithm for password hashing, which makes it easier for remote attackers to bypass authentication via unspecified vectors. 2015-06-30 5.0 CVE-2015-1913
CONFIRM(link is external)
ibm -- security_qradar_incident_forensics Cross-site scripting (XSS) vulnerability in IBM Security QRadar Incident Forensics before 7.2.5 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. 2015-06-30 4.3 CVE-2015-1919
CONFIRM(link is external)
ibm -- powervc IBM PowerVC Standard Edition 1.2.2.1 through 1.2.2.2 does not require authentication for access to the Python interpreter with nova credentials, which allows KVM guest OS users to discover certain PowerVC credentials and bypass intended access restrictions via unspecified Python code. 2015-07-01 4.6 CVE-2015-1950
AIXAPAR(link is external)
CONFIRM(link is external)
ibm -- tivoli_directory_server IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 does not properly restrict encrypted files, which allows local users to obtain sensitive information or possibly have unspecified other impact via a (1) download or (2) upload action. 2015-06-28 4.6 CVE-2015-1959
CONFIRM(link is external)
ibm -- websphere_mq MQ Explorer in IBM WebSphere MQ before 8.0.0.3 does not recognize the absence of the compatibility-mode option, which allows remote attackers to obtain sensitive information by sniffing the network for a session in which TLS is not used. 2015-07-01 4.3 CVE-2015-1967
CONFIRM(link is external)
ibm -- tivoli_directory_server IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 allows remote attackers to obtain sensitive error-log information via a crafted POST request. 2015-06-28 4.3 CVE-2015-1972
CONFIRM(link is external)
ibm -- tivoli_directory_server The web administration tool in IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 allows remote authenticated users to bypass intended command restrictions via unspecified vectors. 2015-06-28 6.5 CVE-2015-1974
CONFIRM(link is external)
ibm -- tivoli_directory_server Cross-site scripting (XSS) vulnerability in IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. 2015-06-28 4.3 CVE-2015-1978
CONFIRM(link is external)
icsgmbh -- pactware PACTware 4.1 SP3 allows remote attackers to cause a denial of service (application crash) via a crafted file that triggers an internal error. 2015-06-28 4.3 CVE-2015-0989
MISC
impresscms -- impresscms Absolute path traversal vulnerability in htdocs/libraries/image-editor/image-edit.php in ImpressCMS before 1.3.6 allows remote attackers to delete arbitrary files via a full pathname in the image_path parameter in a cancel action. 2015-07-01 6.4 CVE-2014-1836
MISC(link is external)
BID(link is external)
FULLDISC
OSVDB
CONFIRM
libreswan -- libreswan libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value set to ISAKMP_NEXT_SAK. 2015-07-01 5.0 CVE-2015-3204
CONFIRM
REDHAT(link is external)
limesurvey -- limesurvey SQL injection vulnerability in the insert function in application/controllers/admin/dataentry.php in LimeSurvey 2.06+ allows remote authenticated users to execute arbitrary SQL commands via the closedate parameter. 2015-06-28 6.5 CVE-2015-5078
CONFIRM(link is external)
CONFIRM
CONFIRM
nokia_maps_&_places_project -- nokia_maps_&_places Open redirect vulnerability in nokia-mapsplaces.php in the Nokia Maps & Places plugin 1.6.6 for WordPress allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the href parameter to page/place.html. NOTE: this was originally reported as cross-site scripting (XSS) vulnerability, but this may be inaccurate. 2015-07-01 5.8 CVE-2014-1750
CONFIRM
CONFIRM
BID(link is external)
MLIST
MLIST
novius-os -- novius_os Open redirect vulnerability in Novius OS 5.0.1 (Elche) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect parameter to admin/nos/login. 2015-07-01 5.8 CVE-2015-5354
BUGTRAQ(link is external)
MISC(link is external)
oscommerce -- oscommerce Directory traversal vulnerability in osCommerce Japanese 2.2ms1j-R8 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors. 2015-06-28 4.0 CVE-2015-2965
MISC(link is external)
JVNDB(link is external)
JVN(link is external)
siemens -- climatix_bacnet/ip Cross-site scripting (XSS) vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware before 10.34 allows remote attackers to inject arbitrary web script or HTML via a crafted URL. 2015-06-28 4.3 CVE-2015-4174
MISC
CONFIRM(link is external)
symantec -- data_loss_prevention Cross-site scripting (XSS) vulnerability in the administration console in the Enforce Server in Symantec Data Loss Prevention (DLP) before 12.5.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. 2015-06-28 4.3 CVE-2014-9230
CONFIRM(link is external)
BID(link is external)
symantec -- data_loss_prevention Cross-site request forgery (CSRF) vulnerability in the administration console in the Enforce Server in Symantec Data Loss Prevention (DLP) before 12.5.2 allows remote attackers to hijack the authentication of administrators. 2015-06-28 6.8 CVE-2015-1485
CONFIRM(link is external)
BID(link is external)
themepunch -- slider_revolution Directory traversal vulnerability in the Slider Revolution (revslider) plugin before 4.2 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the img parameter in a revslider_show_image action to wp-admin/admin-ajax.php. 2015-06-30 5.0 CVE-2014-9734
MISC
MISC(link is external)
CONFIRM(link is external)
EXPLOIT-DB(link is external)
MISC(link is external)
MISC(link is external)
MISC(link is external)
themepunch -- slider_revolution Cross-site scripting (XSS) vulnerability in the Slider Revolution (revslider) plugin 4.2.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the client_action parameter in a revslider_ajax_action action to wp-admin/admin-ajax.php. 2015-06-30 4.3 CVE-2015-5151
MISC(link is external)
wvware -- libwmf Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image. 2015-07-01 6.8 CVE-2015-0848
MLIST(link is external)
SUSE
SUSE
FEDORA
wvware -- libwmf Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file. 2015-07-01 6.8 CVE-2015-4588
CONFIRM(link is external)
MLIST(link is external)
MLIST(link is external)
SUSE
SUSE
FEDORA
wvware -- libwmf meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WMF file. 2015-07-01 5.0 CVE-2015-4695
CONFIRM
MLIST(link is external)
MLIST(link is external)
wvware -- libwmf Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command. 2015-07-01 4.3 CVE-2015-4696
CONFIRM
MLIST(link is external)
MLIST(link is external)
zohocorp -- manageengine_supportcenter_plus Directory traversal vulnerability in Zoho ManageEngine SupportCenter Plus 7.90 allows remote authenticated users to write to arbitrary files via a .. (dot dot) in the component parameter in the Request component to workorder/Attachment.jsp. 2015-06-30 5.5 CVE-2015-5149
EXPLOIT-DB(link is external)
MISC(link is external)
MISC(link is external)
Back to top

Low Vulnerabilities

Primary
Vendor -- Product
Description Published CVSS Score Source & Patch Info
emc -- documentum_d2 Cross-site scripting (XSS) vulnerability in EMC Documentum D2 before 4.5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. 2015-06-28 3.5 CVE-2015-0549
BUGTRAQ
ibm -- uefi IBM Unified Extensible Firmware Interface (UEFI) on Flex System x880 X6, System x3850 X6, and System x3950 X6 devices allows remote authenticated users to cause an unspecified temporary denial of service by using privileged access to enable a legacy boot mode. 2015-06-28 2.1 CVE-2014-4768
CONFIRM(link is external)
ibm -- leads IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 does not properly restrict the additional of links, which makes it easier for remote authenticated users to conduct cross-site request forgery (CSRF) attacks via unspecified vectors. 2015-06-28 3.5 CVE-2015-0116
CONFIRM(link is external)
ibm -- leads IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 does not properly restrict use of FRAME elements, which allows remote authenticated users to conduct phishing attacks via a crafted web site. 2015-06-28 3.5 CVE-2015-0127
CONFIRM(link is external)
ibm -- leads Cross-site scripting (XSS) vulnerability in IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. 2015-06-28 3.5 CVE-2015-0131
CONFIRM(link is external)
ibm -- infosphere_information_server The installer in IBM InfoSphere Information Server 8.5 through 11.3 before 11.3.1.2 allows local users to obtain sensitive information via unspecified commands. 2015-06-28 1.9 CVE-2015-1901
CONFIRM(link is external)
AIXAPAR(link is external)
ibm -- maximo_asset_management IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX001, and 7.6.0 before 7.6.0.0 IFIX005 does not prevent caching of HTTPS responses, which allows physically proximate attackers to obtain sensitive local-cache information by leveraging an unattended workstation. 2015-07-01 2.1 CVE-2015-1951
CONFIRM(link is external)
ibm -- domino Cross-site scripting (XSS) vulnerability in the web server in IBM Domino 8.5.x before 8.5.3 FP6 IF8 and 9.x before 9.0.1 FP4, when Webmail is enabled, allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka SPR KLYH9WYPR5. 2015-06-28 2.1 CVE-2015-1981
CONFIRM(link is external)
ibm -- tivoli_directory_server IBM Tivoli Security Directory Server 6.0 before iFix 75, 6.1 before iFix 68, 6.2 before iFix 44, 6.3 before iFix 37, 6.3.1 before iFix 11, and 6.4 before iFix 2 does not preventing caching of documents retrieved in SSL sessions, which allows physically proximate attackers to obtain sensitive information by leveraging an unattended workstation. 2015-06-28 2.1 CVE-2015-2019
CONFIRM(link is external)
thycotic -- secret_server Cross-site scripting (XSS) vulnerability in the basic dashboard in Thycotic Secret Server 8.6.x, 8.7.x, and 8.8.x before 8.8.000005 allows remote authenticated users to inject arbitrary web script or HTML via a password entry, which is not properly handled when toggling the password mask. 2015-07-02 3.5 CVE-2015-3443
BUGTRAQ(link is external)
MISC(link is external)
CONFIRM(link is external)
x.org -- xorg-server The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket. 2015-07-01 3.6 CVE-2015-3164
SUSE
MLIST
zohocorp -- manageengine_supportcenter_plus Multiple cross-site scripting (XSS) vulnerabilities in Zoho ManageEngine SupportCenter Plus 7.90 allow remote authenticated users to inject arbitrary web script or HTML via the (1) query parameter in the run_query_editor_query module to CustomReportHandler.do, (2) compAcct parameter to jsp/ResetADPwd.jsp, or (3) redirectTo parameter to jsp/CacheScreenWidth.jsp. 2015-06-30 3.5 CVE-2015-5150
EXPLOIT-DB(link is external)
MISC(link is external)
MISC(link is external)
zurmo -- zurmo_crm Cross-site scripting (XSS) vulnerability in Zurmo CRM 3.0.2 allows remote authenticated users to inject arbitrary web script or HTML via the "What's going on?" profile field. 2015-07-02 3.5 CVE-2015-5365
MISC

 

기사원문확인하기: [US-CERT: Bulletin(SB15-187)] 2015년 6월 29일까지 발표된 보안 취약점