☰

New CVE information avialable

CERT.LV is publishing new CVE information:

CVE-2015-8275

Vulnerable software:
- "eParakstitajs 3.0" (1.3.0)
- "edoc-libraries-2.5.4_01"

Software vendor: LVRTC http://www.lvrtc.lv

Short description: 
Possible to write arbitrary files to the filesystem by creating specifically crafted EDOC files (tested versions EDOC 1.01, EDOC 2.0).
 

CVE-2015-8276

Vulnerable software:
- "eParakstitajs 3.0" (1.3.0)
- "edoc-libraries-2.5.4_01"

Software vendor: LVRTC http://www.lvrtc.lv

Short description: 
Possible to read arbitrary files from the filesystem by creating specifically crafted EDOC files (tested versions EDOC 1.01, EDOC 2.0).