Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.1
CVSSv3

CVE-2015-2310

Published: 09/08/2017 Updated: 11/12/2019
CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10
CVSS v3 Base Score: 9.1 | Impact Score: 5.2 | Exploitability Score: 3.9
VMScore: 570
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P
Subscribe to Capnproto

Vulnerability Summary

Integer overflow in layout.c++ in Sandstorm Cap'n Proto prior to 0.4.1.1 and 0.5.x prior to 0.5.1.1 allows remote peers to cause a denial of service or possibly obtain sensitive information from memory via a crafted message, related to pointer validation.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

capnproto capnproto

Vendor Advisories

Debian CVElist Bug Report Logs: capnproto: CVE-2015-2310: Integer overflow in pointer validation
Debian Bug report logs - #780565 capnproto: CVE-2015-2310: Integer overflow in pointer validation Package: capnproto; Maintainer for capnproto is Tom Lee <debian@tomleeco>; Source for capnproto is src:capnproto (PTS, buildd, popcon) Reported by: Tom Lee <debian@tomleeco> Date: Mon, 16 Mar 2015 04:36:01 UTC Severit ...
Debian CVElist Bug Report Logs: capnproto: CVE-2015-2313: CPU usage amplification attack #2
Debian Bug report logs - #780568 capnproto: CVE-2015-2313: CPU usage amplification attack #2 Package: capnproto; Maintainer for capnproto is Tom Lee <debian@tomleeco>; Source for capnproto is src:capnproto (PTS, buildd, popcon) Reported by: Tom Lee <debian@tomleeco> Date: Mon, 16 Mar 2015 04:48:06 UTC Severity: gr ...
Debian CVElist Bug Report Logs: capnproto: CVE-2015-2312: CPU usage amplification attack
Debian Bug report logs - #780567 capnproto: CVE-2015-2312: CPU usage amplification attack Package: capnproto; Maintainer for capnproto is Tom Lee <debian@tomleeco>; Source for capnproto is src:capnproto (PTS, buildd, popcon) Reported by: Tom Lee <debian@tomleeco> Date: Mon, 16 Mar 2015 04:48:01 UTC Severity: grave ...
Debian CVElist Bug Report Logs: capnproto: CVE-2015-2311: Integer underflow in pointer validation
Debian Bug report logs - #780566 capnproto: CVE-2015-2311: Integer underflow in pointer validation Package: capnproto; Maintainer for capnproto is Tom Lee <debian@tomleeco>; Source for capnproto is src:capnproto (PTS, buildd, popcon) Reported by: Tom Lee <debian@tomleeco> Date: Mon, 16 Mar 2015 04:45:02 UTC Severi ...

References

CWE-190https://github.com/capnproto/capnproto/commit/f343f0dbd0a2e87f17cd74f14186ed73e3fbdbfahttps://github.com/capnproto/capnproto/blob/master/security-advisories/2015-03-02-0-c%2B%2B-integer-overflow.mdhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780565http://www.openwall.com/lists/oss-security/2015/03/17/3https://nvd.nist.govhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780565
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30051remoteCVE-2024-27954CVE-2023-51483CVE-2023-47782SSRFCVE-2024-24715CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook