CVSS: 7.5EPSS: 82%CPEs: 2EXPL: 0CVE-2015-5419 – Hewlett-Packard KeyView IDOL GIF Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-5419
Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2879. Vulnerabilidad no especificada en HP KeyView en versiones anteriores a 10.23.0.1 y 10.24.x en versiones anteriores a 10.24.0.1, permite a atacantes remotos ejecutar código arbitrario a través de vectores desconocidos, también conocida como ZDI-CAN-2879. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard KeyView IDOL. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the handling of GIF images. It is possible to trigger an out-of-bounds write when handling malformed transparency data within a GIF. • http://www.securityfocus.com/bid/76457 http://www.securitytracker.com/id/1033362 http://www.zerodayinitiative.com/advisories/ZDI-15-402 https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04771027 •
CVSS: 7.5EPSS: 82%CPEs: 2EXPL: 0CVE-2015-5420 – Hewlett-Packard KeyView IDOL ODF Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-5420
Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2880. Vulnerabilidad no especificada en HP KeyView en versiones anteriores a 10.23.0.1 y 10.24.x en versiones anteriores a 10.24.0.1, permite a atacantes remotos ejecutar código arbitrario a través de vectores desconocidos, también conocida como ZDI-CAN-2880. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard KeyView IDOL. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the handling of ODF files. It is possible to trigger an out-of-bounds write when handling a malformed XML structure within an ODF. • http://www.securityfocus.com/bid/76457 http://www.securitytracker.com/id/1033362 http://www.zerodayinitiative.com/advisories/ZDI-15-404 https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04771027 •
CVSS: 7.5EPSS: 82%CPEs: 2EXPL: 0CVE-2015-5421 – Hewlett-Packard KeyView IDOL Lotus Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-5421
Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2881. Vulnerabilidad no especificada en HP KeyView en versiones anteriores a 10.23.0.1 y 10.24.x en versiones anteriores a 10.24.0.1, permite a atacantes remotos ejecutar código arbitrario a través de vectores desconocidos, también conocida como ZDI-CAN-2881. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard KeyView IDOL. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the handling of Lotus wk1 files. It is possible to trigger a buffer overflow when handling malformed data within a Lotus wk1 file. • http://www.securityfocus.com/bid/76457 http://www.securitytracker.com/id/1033362 http://www.zerodayinitiative.com/advisories/ZDI-15-400 https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04771027 •
CVSS: 7.5EPSS: 82%CPEs: 2EXPL: 0CVE-2015-5422 – Hewlett-Packard KeyView IDOL AutoCAD Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-5422
Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2883. Vulnerabilidad no especificada en HP KeyView en versiones anteriores a 10.23.0.1 y 10.24.x en versiones anteriores a 10.24.0.1, permite a atacantes remotos ejecutar código arbitrario a través de vectores desconocidos, también conocida como ZDI-CAN-2883. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard KeyView IDOL. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the handling of AutoCAD files. It is possible to trigger an out-of-bounds write when handling malformed header data within an AutoCAD file. • http://www.securityfocus.com/bid/76457 http://www.securitytracker.com/id/1033362 http://www.zerodayinitiative.com/advisories/ZDI-15-403 https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04771027 •
CVSS: 7.5EPSS: 82%CPEs: 2EXPL: 0CVE-2015-5423 – Hewlett-Packard KeyView IDOL HTML Parsing Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2015-5423
Unspecified vulnerability in HP KeyView before 10.23.0.1 and 10.24.x before 10.24.0.1 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2884. Vulnerabilidad no especificada en HP KeyView en versiones anteriores a 10.23.0.1 y 10.24.x en versiones anteriores a 10.24.0.1, permite a atacantes remotos ejecutar código arbitrario a través de vectores desconocidos, también conocida como ZDI-CAN-2884. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard KeyView IDOL. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the handling of HTML files. It is possible to trigger a buffer overflow handling table data within an HTML file. • http://www.securityfocus.com/bid/76457 http://www.securitytracker.com/id/1033362 http://www.zerodayinitiative.com/advisories/ZDI-15-399 https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04771027 •