CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
91.9%
Atte Kettunen discovered that ICU incorrectly handled certain converter
names. If an application using ICU processed crafted data, a remote
attacker could possibly cause it to crash. (CVE-2015-1270)
It was discovered that ICU incorrectly handled certain memory operations
when processing data. If an application using ICU processed crafted data,
a remote attacker could possibly cause it to crash or potentially execute
arbitrary code with the privileges of the user invoking the program.
(CVE-2015-2632, CVE-2015-4760)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 15.04 | noarch | libicu52 | < 52.1-8ubuntu0.2 | UNKNOWN |
Ubuntu | 15.04 | noarch | icu-devtools | < 52.1-8ubuntu0.2 | UNKNOWN |
Ubuntu | 15.04 | noarch | icu-devtools-dbgsym | < 52.1-8ubuntu0.2 | UNKNOWN |
Ubuntu | 15.04 | noarch | icu-doc | < 52.1-8ubuntu0.2 | UNKNOWN |
Ubuntu | 15.04 | noarch | libicu-dev | < 52.1-8ubuntu0.2 | UNKNOWN |
Ubuntu | 15.04 | noarch | libicu-dev-dbgsym | < 52.1-8ubuntu0.2 | UNKNOWN |
Ubuntu | 15.04 | noarch | libicu52-dbg | < 52.1-8ubuntu0.2 | UNKNOWN |
Ubuntu | 15.04 | noarch | libicu52-dbgsym | < 52.1-8ubuntu0.2 | UNKNOWN |
Ubuntu | 14.04 | noarch | libicu52 | < 52.1-3ubuntu0.4 | UNKNOWN |
Ubuntu | 14.04 | noarch | icu-devtools | < 52.1-3ubuntu0.4 | UNKNOWN |