CVE-2015-2181

Опубликовано: 30 янв. 2017

Источник: debian

EPSS Низкий

Описание

Multiple buffer overflows in the DBMail driver in the Password plugin in Roundcube before 1.1.0 allow remote attackers to have unspecified impact via the (1) password or (2) username.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
roundcube	fixed	1.1.1+dfsg.1-2		package
roundcube	not-affected		wheezy	package

Примечания

http://trac.roundcube.net/ticket/1490261
http://advisories.mageia.org/MGASA-2015-0400.html
http://lists.opensuse.org/opensuse-updates/2015-07/msg00032.html

EPSS

Процентиль: 73%

0.00764

Низкий

Связанные уязвимости

CVE-2015-2181

CVSS3: 8.8

ubuntu

около 9 лет назад

Multiple buffer overflows in the DBMail driver in the Password plugin in Roundcube before 1.1.0 allow remote attackers to have unspecified impact via the (1) password or (2) username.

CVE-2015-2181

CVSS3: 8.8

nvd

около 9 лет назад

Multiple buffer overflows in the DBMail driver in the Password plugin in Roundcube before 1.1.0 allow remote attackers to have unspecified impact via the (1) password or (2) username.

GHSA-v2gp-p8mp-5q72

CVSS3: 8.8

github

больше 3 лет назад

Multiple buffer overflows in the DBMail driver in the Password plugin in Roundcube before 1.1.0 allow remote attackers to have unspecified impact via the (1) password or (2) username.

openSUSE-SU-2016:3038-1

suse-cvrf

около 9 лет назад

Security update for roundcubemail

openSUSE-SU-2016:2109-1

suse-cvrf

больше 9 лет назад

Security update for roundcubemail

EPSS

Процентиль: 73%

0.00764

Низкий