|
290321
|
- |
|
mcafee
|
epolicy_orchestrator
|
The Import and Export Framework in McAfee ePolicy Orchestrator (ePO) before 4.6.7 Hotfix 940148 allows remote authenticated users with permissions to add dashboards to read arbitrary files by importi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2205
|
2024-11-21 11:05 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290322
|
- |
|
catfish_project
|
catfish
|
Untrusted search path vulnerability in Catfish 0.6.0 through 1.0.0 allows local users to gain privileges via a Trojan horse bin/catfish.py under the current working directory.
|
NVD-CWE-Other
|
CVE-2014-2096
|
2024-11-21 11:05 |
2014-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290323
|
- |
|
catfish_project
|
catfish
|
Untrusted search path vulnerability in Catfish 0.6.0 through 1.0.0, when a Fedora package such as 0.8.2-1 is not used, allows local users to gain privileges via a Trojan horse bin/catfish.pyc under t…
|
NVD-CWE-Other
|
CVE-2014-2095
|
2024-11-21 11:05 |
2014-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290324
|
- |
|
catfish_project
|
catfish
|
Untrusted search path vulnerability in Catfish through 0.4.0.3, when a Fedora package such as 0.4.0.2-2 is not used, allows local users to gain privileges via a Trojan horse catfish.pyc in the curren…
|
NVD-CWE-Other
|
CVE-2014-2094
|
2024-11-21 11:05 |
2014-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290325
|
- |
|
catfish_project
|
catfish
|
Untrusted search path vulnerability in Catfish through 0.4.0.3 allows local users to gain privileges via a Trojan horse catfish.py in the current working directory.
|
NVD-CWE-Other
|
CVE-2014-2093
|
2024-11-21 11:05 |
2014-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290326
|
- |
|
siemens
|
ruggedcom_rugged_operating_system
|
The SNMP implementation in Siemens RuggedCom ROS before 3.11, ROS 3.11 for RS950G, ROS 3.12 before 3.12.4, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (device outage)…
|
NVD-CWE-noinfo
|
CVE-2014-1966
|
2024-11-21 11:05 |
2014-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290327
|
- |
|
citrix
|
sharefile_mobile_for_tablets
sharefile_mobile
|
Citrix ShareFile Mobile and ShareFile Mobile for Tablets before 2.4.4 for Android do not verify X.509 certificates from SSL servers, which allow man-in-the-middle attackers to spoof servers and obtai…
|
CWE-310
Cryptographic Issues
|
CVE-2014-1910
|
2024-11-21 11:05 |
2014-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290328
|
- |
|
phpmyadmin
|
phpmyadmin
|
Cross-site scripting (XSS) vulnerability in import.php in phpMyAdmin before 4.1.7 allows remote authenticated users to inject arbitrary web script or HTML via a crafted filename in an import action.
|
CWE-79
Cross-site Scripting
|
CVE-2014-1879
|
2024-11-21 11:05 |
2014-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290329
|
- |
|
fine_free_file_project
php
canonical
debian
|
fine_free_file
php
ubuntu_linux
debian_linux
|
Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2014-1943
|
2024-11-21 11:05 |
2014-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290330
|
- |
|
php
|
php
|
ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check data types, which might allow remote attackers to obtain sensitive information by using a (1) string or (2) array data type in place of a numeric …
|
CWE-189
Numeric Errors
|
CVE-2014-2020
|
2024-11-21 11:05 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
