CVE-2015-0070
published 2015-02-11CVE-2015-0070: Microsoft Internet Explorer 6 through 11 allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka "Internet…
PriorityP425medium4.3CVSS 2.0
AVNACMAuNCPINAN
EPSS
16.22%
96.5th percentile
Microsoft Internet Explorer 6 through 11 allows remote attackers to read content from a different (1) domain or (2) zone via a crafted web site, aka "Internet Explorer Cross-domain Information Disclosure Vulnerability."
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
| microsoft | internet_explorer | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Zscaler
Zscaler detects IE & MS Office Vulnerabilities | 02-10-2015
blogs_zscaler·CVSS 6.8
[MEDIUM] Zscaler detects IE & MS Office Vulnerabilities | 02-10-2015
Provide users with seamless, secure, reliable access to applications and data.
Build and run secure cloud apps, enable zero trust cloud connectivity, and protect workloads from data center to cloud.
Provide zero trust connectivity for IoT and OT devices and secure remote access to OT systems.
Provide zero trust site-to-site connectivity and reliable access to B2B apps for partners.
Industry Report
Zscaler: A Leader in the 2025 Gartner® Magic Quadrant™ for Security Service Edge (SSE)
USE CASES
INDUSTRY & MARKET SOLUTIONS
PARTNERS
TECHNOLOGY PARTNERS
Resource Center
Events & Trainings
Security Research & Services
Tools
Community & Support
CXO REVOLUTIONARIES
Amplifying the voices of real-world digital and zero trust pioneers
Discover how it began and where it’s going
Meet o
Bugzilla
CVE-2015-7973 ntp: replay attack on authenticated broadcast mode
bugzilla·2016-01-20·CVSS 6.5
CVE-2015-7973 [MEDIUM] CVE-2015-7973 ntp: replay attack on authenticated broadcast mode
CVE-2015-7973 ntp: replay attack on authenticated broadcast mode
It was found that when NTP is configured in broadcast mode, a man-in-the-middle attacker or a malicious client could replay packets received from the broadcast server to all (other) clients. This could cause the time on affected clients to become out of sync over a longer period of time.
Upstream patches:
https://github.com/ntp-project/ntp/commit/c801a6a5f84d7f385a42e0073c94b2e0664f8ad2
https://github.com/ntp-project/ntp/commit/50ef2f62dc326bc9edac166b2b4ba5b5d8b4f7d4
Discussion:
External References:
http://support.ntp.org/bin/view/Main/SecurityNotice#January_2016_NTP_4_2_8p6_Securit
http://www.talosintel.com/reports/TALOS-2016-0070/
---
Created ntp tracking bugs for this issue:
Affects: fedora-all [bug 1300277]
---
Bugzilla
CVE-2015-7538 jenkins: CSRF protection ineffective (SECURITY-233)
bugzilla·2015-12-15·CVSS 8.8
CVE-2015-7538 [HIGH] CVE-2015-7538 jenkins: CSRF protection ineffective (SECURITY-233)
CVE-2015-7538 jenkins: CSRF protection ineffective (SECURITY-233)
Malicious users were able to circumvent CSRF protection on any URL by sending specially crafted POST requests. This could allow unprivileged attackers to circumvent CSRF protection.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-12-09
Discussion:
Created jenkins tracking bugs for this issue:
Affects: fedora-all [bug 1291799]
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com/errata/RHSA-2016:0070
---
This issue has been addressed in the following products:
Red Hat OpenShift Enterprise 2.2
Via RHSA-2016:0489 https://rhn.redhat.com/errata/RHSA-2016-0489.html
Bugzilla
CVE-2015-7537 jenkins: CSRF vulnerability in some administrative actions (SECURITY-225)
bugzilla·2015-12-15·CVSS 8.8
CVE-2015-7537 [HIGH] CVE-2015-7537 jenkins: CSRF vulnerability in some administrative actions (SECURITY-225)
CVE-2015-7537 jenkins: CSRF vulnerability in some administrative actions (SECURITY-225)
Several administration/configuration related URLs could be accessed using GET, which allowed attackers to circumvent CSRF protection. This could allow unprivileged attackers to perform some administrative actions via CSRF.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-12-09
Discussion:
Created jenkins tracking bugs for this issue:
Affects: fedora-all [bug 1291799]
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com/errata/RHSA-2016:0070
---
This issue has been addressed in the following products:
Red Hat OpenShift Enterprise 2.2
Via RHSA-2016:0
Bugzilla
CVE-2015-5323 jenkins: API tokens of other users available to admins (SECURITY-200)
bugzilla·2015-11-16·CVSS 6.5
CVE-2015-5323 [MEDIUM] CVE-2015-5323 jenkins: API tokens of other users available to admins (SECURITY-200)
CVE-2015-5323 jenkins: API tokens of other users available to admins (SECURITY-200)
The following flaw was found in Jenkins:
API tokens of other users were exposed to admins by default. On instances that don't implicitly grant RunScripts permission to admins, this allowed admins to run scripts with another user's credentials.
In very specific circumstances, it allows admins to gain permissions they would not otherwise have.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-11-11
Discussion:
Fixed in Fedora in:
jenkins-1.609.3-3.fc22
jenkins-1.625.2-2.fc23
jenkins-1.625.2-2.fc24
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com/errata/
Bugzilla
CVE-2015-5326 jenkins: Stored XSS vulnerability in slave offline status message (SECURITY-214)
bugzilla·2015-11-16·CVSS 4.3
CVE-2015-5326 [MEDIUM] CVE-2015-5326 jenkins: Stored XSS vulnerability in slave offline status message (SECURITY-214)
CVE-2015-5326 jenkins: Stored XSS vulnerability in slave offline status message (SECURITY-214)
The following flaw was found in Jenkins:
Users with the permission to take slave nodes offline can enter arbitrary HTML that gets shown unescaped to users visiting the slave overview page.
This flaw allows admins and users with significant privileges to circumvent XSS protection.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-11-11
Discussion:
Fixed in Fedora in:
jenkins-1.609.3-3.fc22
jenkins-1.625.2-2.fc23
jenkins-1.625.2-2.fc24
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com/errata/RHSA-2016:0070
---
This issue has been addressed i
Bugzilla
CVE-2015-5317 jenkins: Project name disclosure via fingerprints (SECURITY-153)
bugzilla·2015-11-16·CVSS 7.5
CVE-2015-5317 [HIGH] CVE-2015-5317 jenkins: Project name disclosure via fingerprints (SECURITY-153)
CVE-2015-5317 jenkins: Project name disclosure via fingerprints (SECURITY-153)
The following flaw was found in Jenkins:
The Jenkins UI allowed users to see the names of jobs and builds otherwise inaccessible to them on the "Fingerprints" pages if those shared file fingerprints with fingerprinted files in accessible jobs.
Users have no control over which information they see, and the kind of information revealed is very limited.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-11-11
Discussion:
Fixed in Fedora in:
jenkins-1.609.3-3.fc22
jenkins-1.625.2-2.fc23
jenkins-1.625.2-2.fc24
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com/err
Bugzilla
CVE-2015-5322 jenkins: Local file inclusion vulnerability (SECURITY-195)
bugzilla·2015-11-16·CVSS 5.0
CVE-2015-5322 [MEDIUM] CVE-2015-5322 jenkins: Local file inclusion vulnerability (SECURITY-195)
CVE-2015-5322 jenkins: Local file inclusion vulnerability (SECURITY-195)
The following flaw was found in Jenkins:
Access to the /jnlpJars/ URL was not limited to the specific JAR files users needed to access, allowing browsing directories and downloading other files in the Jenkins servlet resources, such as web.xml.
The information gained is very limited, and it requires a specific setup to gain any non-public information this way.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-11-11
Discussion:
Fixed in Fedora in:
jenkins-1.609.3-3.fc22
jenkins-1.625.2-2.fc23
jenkins-1.625.2-2.fc24
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com
Bugzilla
CVE-2015-5325 jenkins: JNLP slaves not subject to slave-to-master access control (SECURITY-206)
bugzilla·2015-11-16·CVSS 6.8
CVE-2015-5325 [MEDIUM] CVE-2015-5325 jenkins: JNLP slaves not subject to slave-to-master access control (SECURITY-206)
CVE-2015-5325 jenkins: JNLP slaves not subject to slave-to-master access control (SECURITY-206)
The following flaw was found in Jenkins:
Slaves connecting via JNLP were not subject to the optional slave-to-master access control documented at http://jenkins-ci.org/security-144 (CVE-2014-3665).
This flaw allows to circumvent the major protection against less trusted node admins.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-11-11
Discussion:
Fixed in Fedora in:
jenkins-1.609.3-3.fc22
jenkins-1.625.2-2.fc23
jenkins-1.625.2-2.fc24
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com/errata/RHSA-2016:0070
---
This issue has been address
Bugzilla
CVE-2015-5321 jenkins: Information disclosure via sidepanel (SECURITY-192)
bugzilla·2015-11-16·CVSS 5.0
CVE-2015-5321 [MEDIUM] CVE-2015-5321 jenkins: Information disclosure via sidepanel (SECURITY-192)
CVE-2015-5321 jenkins: Information disclosure via sidepanel (SECURITY-192)
The following flaw was found in Jenkins:
The CLI command overview and help pages in Jenkins were accessible without Overall/Read permission, resulting in disclosure of the names of configured slaves (and contents of other sidepanel widgets, if present) to unauthorized users.
While the amount of information disclosed is very limited, it is trivial to exploit this flaw.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-11-11
Discussion:
Fixed in Fedora in:
jenkins-1.609.3-3.fc22
jenkins-1.625.2-2.fc23
jenkins-1.625.2-2.fc24
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.
Bugzilla
CVE-2015-5318 jenkins: Public value used for CSRF protection salt (SECURITY-169)
bugzilla·2015-11-16·CVSS 6.8
CVE-2015-5318 [MEDIUM] CVE-2015-5318 jenkins: Public value used for CSRF protection salt (SECURITY-169)
CVE-2015-5318 jenkins: Public value used for CSRF protection salt (SECURITY-169)
The following flaw was found in Jenkins:
The salt used to generate the CSRF protection tokens was a publicly accessible value, allowing malicious users to circumvent CSRF protection by generating the correct token.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-11-11
Discussion:
Fixed in Fedora in:
jenkins-1.609.3-3.fc22
jenkins-1.625.2-2.fc23
jenkins-1.625.2-2.fc24
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com/errata/RHSA-2016:0070
---
This issue has been addressed in the following products:
Red Hat OpenShift Enterprise 2.2
Via RHSA-2016:0489 h
Bugzilla
CVE-2015-5324 jenkins: Queue API did show items not visible to the current user (SECURITY-186)
bugzilla·2015-11-16·CVSS 5.0
CVE-2015-5324 [MEDIUM] CVE-2015-5324 jenkins: Queue API did show items not visible to the current user (SECURITY-186)
CVE-2015-5324 jenkins: Queue API did show items not visible to the current user (SECURITY-186)
The following flaw was found in Jenkins:
The /queue/api URL could return information about items not accessible to the current user (such as parameter names and values, build names, project descriptions, ...).
Low privileged users can gain some limited information about items they should not have access to.
External References:
https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2015-11-11
Discussion:
Fixed in Fedora in:
jenkins-1.609.3-3.fc22
jenkins-1.625.2-2.fc23
jenkins-1.625.2-2.fc24
---
This issue has been addressed in the following products:
RHEL 7 Version of OpenShift Enterprise 3.1
Via RHSA-2016:0070 https://access.redhat.com/errata/RHSA-2016:0070
---
Thi
http://www.securityfocus.com/bid/72480http://www.securitytracker.com/id/1031723https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-009http://www.securityfocus.com/bid/72480http://www.securitytracker.com/id/1031723https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-009
2015-02-11
Published