|
289811
|
- |
|
mozilla
|
network_security_services
firefox_esr
thunderbird
firefox
|
Use-after-free vulnerability in the CERT_DestroyCertificate function in libnss3.so in Mozilla Network Security Services (NSS) 3.x, as used in Firefox before 31.0, Firefox ESR 24.x before 24.7, and Th…
|
NVD-CWE-Other
|
CVE-2014-1544
|
2024-11-21 11:04 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289812
|
- |
|
bestpractical
email\
|
rt
\
|
Algorithmic complexity vulnerability in Email::Address::List before 0.02, as used in RT 4.2.0 through 4.2.2, allows remote attackers to cause a denial of service (CPU consumption) via a string withou…
|
CWE-189
Numeric Errors
|
CVE-2014-1474
|
2024-11-21 11:04 |
2014-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289813
|
- |
|
microsoft
|
windows_server_2012
windows_rt
windows_7
windows_8.1
windows_server_2008
windows_server_2003
windows_rt_8.1
windows_vista
windows_8
|
Double free vulnerability in the Ancillary Function Driver (AFD) in afd.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Win…
|
CWE-415
Double Free
|
CVE-2014-1767
|
2024-11-21 11:04 |
2014-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289814
|
- |
|
apple
|
tvos
|
Apple TV before 6.1.2 allows remote authenticated users to bypass an intended password requirement for iTunes Store purchase transactions via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1383
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289815
|
- |
|
apple
|
safari
tvos
iphone_os
|
WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (m…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1382
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289816
|
- |
|
apple
|
mac_os_x
|
Thunderbolt in Apple OS X before 10.9.4 does not properly restrict IOThunderBoltController API calls, which allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds memo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1381
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289817
|
- |
|
apple
|
mac_os_x
|
The Security - Keychain component in Apple OS X before 10.9.4 does not properly implement keystroke observers, which allows physically proximate attackers to bypass the screen-lock protection mechani…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1380
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289818
|
- |
|
apple
|
mac_os_x
|
Graphics Drivers in Apple OS X before 10.9.4 allows attackers to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via a 32-bit executable file for a crafted ap…
|
NVD-CWE-Other
|
CVE-2014-1379
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289819
|
- |
|
apple
|
mac_os_x
|
IOGraphicsFamily in Apple OS X before 10.9.4 allows local users to bypass the ASLR protection mechanism by leveraging read access to a kernel pointer in an IOKit object.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1378
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289820
|
- |
|
apple
|
mac_os_x
|
Array index error in IOAcceleratorFamily in Apple OS X before 10.9.4 allows attackers to execute arbitrary code via a crafted application.
|
NVD-CWE-Other
|
CVE-2014-1377
|
2024-11-21 11:04 |
2014-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
