|
290481
|
- |
|
apple
|
mac_os_x
|
iBooks Commerce in Apple OS X before 10.9.4 places Apple ID credentials in the iBooks log, which allows local users to obtain sensitive information by reading this file.
|
CWE-200
Information Exposure
|
CVE-2014-1317
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290482
|
- |
|
linux
canonical
suse
|
linux_kernel
ubuntu_linux
suse_linux_enterprise_desktop
suse_linux_enterprise_server
linux_enterprise_high_availability_extension
|
The media_device_enum_entities function in drivers/media/media-device.c in the Linux kernel before 3.14.6 does not initialize a certain data structure, which allows local users to obtain sensitive in…
|
CWE-200
Information Exposure
|
CVE-2014-1739
|
2024-11-21 11:04 |
2014-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290483
|
- |
|
symantec
|
web_gateway
|
Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unsp…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1652
|
2024-11-21 11:04 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290484
|
- |
|
symantec
|
web_gateway
|
SQL injection vulnerability in clientreport.php in the management console in Symantec Web Gateway (SWG) before 5.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2014-1651
|
2024-11-21 11:04 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290485
|
- |
|
symantec
|
web_gateway
|
SQL injection vulnerability in user.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vector…
|
CWE-89
SQL Injection
|
CVE-2014-1650
|
2024-11-21 11:04 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290486
|
- |
|
mozilla
|
netscape_portable_runtime
|
Mozilla Netscape Portable Runtime (NSPR) before 4.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via vectors involving the sprintf and conso…
|
NVD-CWE-Other
|
CVE-2014-1545
|
2024-11-21 11:04 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290487
|
- |
|
mozilla
|
firefox
|
Multiple heap-based buffer overflows in the navigator.getGamepads function in the Gamepad API in Mozilla Firefox before 30.0 allow remote attackers to execute arbitrary code by using non-contiguous a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1543
|
2024-11-21 11:04 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290488
|
- |
|
opensuse_project
opensuse
mozilla
oracle
|
opensuse
firefox
solaris
|
Buffer overflow in the Speex resampler in the Web Audio subsystem in Mozilla Firefox before 30.0 allows remote attackers to execute arbitrary code via vectors related to a crafted AudioBuffer channel…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1542
|
2024-11-21 11:04 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290489
|
- |
|
mozilla
|
thunderbird
firefox
firefox_esr
|
Use-after-free vulnerability in the RefreshDriverTimer::TickDriver function in the SMIL Animation Controller in Mozilla Firefox before 30.0, Firefox ESR 24.x before 24.6, and Thunderbird before 24.6 …
|
NVD-CWE-Other
|
CVE-2014-1541
|
2024-11-21 11:04 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290490
|
- |
|
mozilla
|
firefox
|
Use-after-free vulnerability in the nsEventListenerManager::CompileEventHandlerInternal function in the Event Listener Manager in Mozilla Firefox before 30.0 allows remote attackers to execute arbitr…
|
NVD-CWE-Other
|
CVE-2014-1540
|
2024-11-21 11:04 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
