Vulnerability & Exploit Database

Displaying all 6 entries

Results for: CVE-2015-3243 Back to search

SUSE: CVE-2015-3243: SUSE Linux Security Advisory Vulnerability

  • Severity: 2
  • Published: July 25, 2017

rsyslog uses weak permissions for generating log files, which allows local users to obtain sensitive information by reading files in /var/log/cron.

SUSE: CVE-2015-3451: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: May 12, 2015

The _clone function in XML::LibXML before 2.0119 does not properly set the expand_entities option, which allows remote attackers to conduct XML external entity (XXE) attacks via crafted XML data to the (1) new or (2) load_xml function.

Oracle Solaris 11: CVE-2015-3451 (11.3 SRU 1.5.0) Vulnerability

  • Severity: 5
  • Published: May 12, 2015

The _clone function in XML::LibXML before 2.0119 does not properly set the expand_entities option, which allows remote attackers to conduct XML external entity (XXE) attacks via crafted XML data to the (1) new or (2) load_xml function.

USN-2592-1: XML::LibXML vulnerability Vulnerability

  • Severity: 5
  • Published: May 04, 2015

The _clone function in XML::LibXML before 2.0119 does not properly set the expand_entities option, which allows remote attackers to conduct XML external entity (XXE) attacks via a crafted XML data to the (1) new or (2) load_xml function.

DSA-3243-1 libxml-libxml-perl -- security update Vulnerability

  • Severity: 5
  • Published: May 01, 2015

The _clone function in XML::LibXML before 2.0119 does not properly set the expand_entities option, which allows remote attackers to conduct XML external entity (XXE) attacks via a crafted XML data to the (1) new or (2) load_xml function.