|
289511
|
- |
|
qemu
|
qemu
|
hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary code via crafted savevm data, which triggers a heap-based buffer overflow, related to "USB post load checks."
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3461
|
2024-11-21 11:08 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289512
|
- |
|
xmlsoft
canonical
debian
redhat
apple
|
libxml2
ubuntu_linux
debian_linux
enterprise_linux
mac_os_x
|
parser.c in libxml2 before 2.9.2 does not properly prevent entity expansion even when entity substitution has been disabled, which allows context-dependent attackers to cause a denial of service (CPU…
|
NVD-CWE-Other
|
CVE-2014-3660
|
2024-11-21 11:08 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289513
|
- |
|
katello
|
katello
|
Katello allows remote attackers to cause a denial of service (memory consumption) via the (1) mode parameter in the setup_utils function in content_search_controller.rb or (2) action parameter in the…
|
CWE-399
Resource Management Errors
|
CVE-2014-3712
|
2024-11-21 11:08 |
2014-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289514
|
- |
|
redhat
suse
|
spacewalk-java
satellite
satellite_with_embedded_oracle
manager_server
manager
|
Multiple cross-site scripting (XSS) vulnerabilities in spacewalk-java 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.5 and 5.6 allow remote attackers to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2014-3654
|
2024-11-21 11:08 |
2014-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289515
|
- |
|
rsyslog
sysklogd_project
|
rsyslog
sysklogd
|
Integer overflow in rsyslog before 7.6.7 and 8.x before 8.4.2 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash) via a large priority (PRI) value. NOTE: this v…
|
CWE-189
Numeric Errors
|
CVE-2014-3683
|
2024-11-21 11:08 |
2014-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289516
|
- |
|
sysklogd_project
rsyslog
|
sysklogd
rsyslog
|
rsyslog before 7.6.6 and 8.x before 8.4.1 and sysklogd 1.5 and earlier allows remote attackers to cause a denial of service (crash), possibly execute arbitrary code, or have other unspecified impact …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3634
|
2024-11-21 11:08 |
2014-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289517
|
- |
|
qemu
debian
redhat
canonical
opensuse
|
qemu
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_tus
enterprise_linux_server_aus
enterprise_linux_eus
op…
|
The VGA emulator in QEMU allows local guest users to read host memory by setting the display to a high resolution.
|
CWE-200
Information Exposure
|
CVE-2014-3615
|
2024-11-21 11:08 |
2014-11-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289518
|
- |
|
openstack
opensuse
|
horizon
opensuse
|
Cross-site scripting (XSS) vulnerability in the Users panel (admin/users/) in OpenStack Dashboard (Horizon) before 2013.2.4, 2014.1 before 2014.1.2, and Juno before Juno-2 allows remote administrator…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3475
|
2024-11-21 11:08 |
2014-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289519
|
- |
|
openstack
opensuse
|
horizon
opensuse
|
Cross-site scripting (XSS) vulnerability in horizon/static/horizon/js/horizon.instances.js in the Launch Instance menu in OpenStack Dashboard (Horizon) before 2013.2.4, 2014.1 before 2014.1.2, and Ju…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3474
|
2024-11-21 11:08 |
2014-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289520
|
- |
|
openstack
opensuse
|
horizon
opensuse
|
Cross-site scripting (XSS) vulnerability in the Orchestration/Stack section in the Horizon Orchestration dashboard in OpenStack Dashboard (Horizon) before 2013.2.4, 2014.1 before 2014.1.2, and Juno b…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3473
|
2024-11-21 11:08 |
2014-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
