CVE-2015-8277
published 2016-02-24CVE-2015-8277: Multiple buffer overflows in (1) lmgrd and (2) Vendor Daemon in Flexera FlexNet Publisher before 11.13.1.2 Security Update 1 allow remote attackers to execute…
PriorityP268critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
28.68%
97.9th percentile
Multiple buffer overflows in (1) lmgrd and (2) Vendor Daemon in Flexera FlexNet Publisher before 11.13.1.2 Security Update 1 allow remote attackers to execute arbitrary code via a crafted packet with opcode (a) 0x107 or (b) 0x10a.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| flexerasoftware | flexnet_publisher | <= 11.13.1.0 | — |
Detection & IOCsextracted from sources · hover to see the quote
bytes↗
2F C4 3A 1C 00 25 01 19 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
- →Detect crafted packets targeting FlexNet Publisher lmgrd/lmadmin with opcodes 0x107 or 0x10a; these opcodes in incoming packets to the license server port indicate exploitation attempts for CVE-2015-8277. ↗
- →Monitor for crafted packets beginning with byte sequence '2F C4 3A 1C 00 25 01 19' sent to lmadmin.exe; this is the proof-of-concept packet structure associated with the related DoS/RCE condition (opcode 0x2F). ↗
- →A custom string copying function in the license server manager (lmgrd/lmadmin) does not perform bounds checking; alert on unauthenticated remote connections sending oversized or malformed messages to the FlexNet Publisher license server port. ↗
- ·The Tenable advisory notes this may be a partial/incomplete fix for CVE-2015-8277 or a similar issue in a different binary (lmadmin.exe vs lmgrd.exe); detections should cover both processes. ↗
- ·No known public exploits specifically targeting CVE-2015-8277 were identified at time of CISA advisory publication; detection should focus on anomalous packet patterns rather than known exploit signatures. ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-pjj8-v87q-7v27: Multiple buffer overflows in (1) lmgrd and (2) Vendor Daemon in Flexera FlexNet Publisher before 11
ghsa_unreviewed·2022-05-14
CVE-2015-8277 [CRITICAL] CWE-119 GHSA-pjj8-v87q-7v27: Multiple buffer overflows in (1) lmgrd and (2) Vendor Daemon in Flexera FlexNet Publisher before 11
Multiple buffer overflows in (1) lmgrd and (2) Vendor Daemon in Flexera FlexNet Publisher before 11.13.1.2 Security Update 1 allow remote attackers to execute arbitrary code via a crafted packet with opcode (a) 0x107 or (b) 0x10a.
CISA ICS
AVEVA Wonderware License Server
cisa_ics·2018-07-31·CVSS 9.8
[CRITICAL] AVEVA Wonderware License Server
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
AVEVA Wonderware License Server
Last RevisedJuly 31, 2018
Alert CodeICSA-18-212-05
## 1. EXECUTIVE SUMMARY
-
CVSS v3 9.8
- ATTENTION: Exploitable remotely/Low skill level to exploit
- Vendor: AVEVA Software, LLC (AVEVA)
- Equipment: Wonderware License Server
- Vulnerability: Improper Restriction of Operations within the Bounds of a Memory Buffer
## 2. RISK EVALUATION
Successful exploitation of this vulnerability may result in remote code execution with administrative privileges.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following versions of Wonderware Licens
CISA ICS
Rockwell Automation FactoryTalk Activation Manager (Update B)
cisa_ics·2018-05-24
Rockwell Automation FactoryTalk Activation Manager (Update B)
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Rockwell Automation FactoryTalk Activation Manager (Update B)
Last RevisedMay 31, 2018
Alert CodeICSA-18-102-02
## 1. EXECUTIVE SUMMARY
-
CVSS v3 9.8
- ATTENTION: Exploitable remotely/low skill level to exploit
- Vendor: Rockwell Automation
- Equipment: Factory Talk Activation Manager
- Vulnerabilities: Cross-site Scripting, Improper Restriction of Operations within the Bounds of a Memory Buffer
## 2. UPDATE INFORMATION
This updated advisory is a follow-up to the updated advisory titled ICSA-18-102-02 Rockwell Automation FactoryTalk Activation Manager (Update A) that was p
No detection rules found.
No public exploits indexed.
Tenable
[R2] Citrix License Server / Flexera FlexNet Publisher lmadmin.exe 2F Packet Handling Remote DoS
blogs_tenable·2016-10-06
[R2] Citrix License Server / Flexera FlexNet Publisher lmadmin.exe 2F Packet Handling Remote DoS
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Wiz
CVE-2019-25313 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.8
CVE-2019-25313 [CRITICAL] CVE-2019-25313 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2019-25313 :
FlexNet Publisher vulnerability analysis and mitigation
FlexNet Publisher 11.12.1 contains a cross-site request forgery vulnerability that allows attackers to create administrative user accounts without authentication. Attackers can craft a malicious HTML form to trick authenticated users into submitting a request that creates a new local admin account with a predefined password.
Source : NVD
## 5.1
Score
Published February 11, 2026
Severity MEDIUM
CNA Score 5.1
Affected Technologies
FlexNet Publisher
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 5.9
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:flexerasoftware:flexnet_publisher
http://securitymumblings.blogspot.com/2016/02/cve-2015-8277.htmlhttp://support.citrix.com/article/CTX207824http://www.kb.cert.org/vuls/id/485744http://www.securityfocus.com/bid/83334http://www.securitytracker.com/id/1035266https://ics-cert.us-cert.gov/advisories/ICSA-18-102-02https://ics-cert.us-cert.gov/advisories/ICSA-18-212-05https://rockwellautomation.custhelp.com/app/answers/detail/a_id/1073133https://sw.aveva.com/hubfs/assets-2018/pdf/security-bulletin/SecurityBulletin_LFSec129.pdfhttps://www.securifera.com/advisories/cve-2015-8277http://securitymumblings.blogspot.com/2016/02/cve-2015-8277.htmlhttp://support.citrix.com/article/CTX207824http://www.kb.cert.org/vuls/id/485744http://www.securityfocus.com/bid/83334http://www.securitytracker.com/id/1035266https://ics-cert.us-cert.gov/advisories/ICSA-18-102-02https://ics-cert.us-cert.gov/advisories/ICSA-18-212-05https://rockwellautomation.custhelp.com/app/answers/detail/a_id/1073133https://sw.aveva.com/hubfs/assets-2018/pdf/security-bulletin/SecurityBulletin_LFSec129.pdfhttps://www.securifera.com/advisories/cve-2015-8277
2016-02-24
Published