CVE-2015-8277

Multiple buffer overflows in (1) lmgrd and (2) Vendor Daemon in Flexera FlexNet Publisher before 11.13.1.2 Security Update 1 allow remote attackers to execute arbitrary code via a crafted packet with opcode (a) 0x107 or (b) 0x10a.

Published: Feb 24, 2016
Updated: Apr 13, 2023
CVE: CVE-2015-8277
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
flexerasoftware / flexnet_publisher	-	11.13.1.0.x

http://securitymumblings.blogspot.com/2016/02/cve-2015-8277.html
http://support.citrix.com/article/CTX207824
http://www.kb.cert.org/vuls/id/485744
http://www.securityfocus.com/bid/83334
http://www.securitytracker.com/id/1035266
https://ics-cert.us-cert.gov/advisories/ICSA-18-102-02
https://ics-cert.us-cert.gov/advisories/ICSA-18-212-05
https://rockwellautomation.custhelp.com/app/answers/detail/a_id/1073133
https://sw.aveva.com/hubfs/assets-2018/pdf/security-bulletin/SecurityBulletin_LFSec129.pdf
https://www.securifera.com/advisories/cve-2015-8277

Vulnerability Database

289,697

CVE-2015-8277