|
289511
|
- |
|
sap
|
netweaver
|
SAP NetWeaver 7.20 and earlier allows remote attackers to read arbitrary SAP Central User Administration (SAP CUA) tables via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2014-3787
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289512
|
- |
|
intel
|
indeo_video
|
ir41_32.ax 4.51.16.3 for Intel Indeo Video 4.5 allows remote attackers to cause a denial of service (crash) via a crafted .avi file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3735
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289513
|
- |
|
xen
|
xen
|
Xen 4.4.x does not properly validate the load address for 64-bit ARM guest kernels, which allows local users to read system memory or cause a denial of service (crash) via a crafted kernel, which tri…
|
CWE-20
Improper Input Validation
|
CVE-2014-3717
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289514
|
- |
|
xen
|
xen
|
Xen 4.4.x does not properly check alignment, which allows local users to cause a denial of service (crash) via an unspecified field in a DTB header in a 32-bit guest kernel.
|
CWE-20
Improper Input Validation
|
CVE-2014-3716
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289515
|
- |
|
xen
|
xen
|
Buffer overflow in Xen 4.4.x allows local users to read system memory or cause a denial of service (crash) via a crafted 32-bit guest kernel, related to searching for an appended DTB.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3715
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289516
|
- |
|
xen
|
xen
|
The ARM image loading functionality in Xen 4.4.x does not properly validate kernel length, which allows local users to read system memory or cause a denial of service (crash) via a crafted 32-bit ARM…
|
CWE-20
Improper Input Validation
|
CVE-2014-3714
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289517
|
- |
|
juniper
|
network_and_security_manager_software
nsm3000
nsmexpress
|
Unspecified vulnerability in the NSM XDB service in Juniper NSM before 2012.2R8 allows remote attackers to execute arbitrary code via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2014-3411
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289518
|
- |
|
flag_module_project
|
flag
|
Eval injection vulnerability in the flag_import_form_validate function in includes/flag.export.inc in the Flag module 7.x-3.0, 7.x-3.5, and earlier for Drupal allows remote authenticated administrato…
|
CWE-94
Code Injection
|
CVE-2014-3453
|
2024-11-21 11:08 |
2014-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289519
|
- |
|
spumko_project
|
hapi_server_framework
|
The hapi server framework 2.0.x and 2.1.x before 2.2.0 for Node.js allows remote attackers to cause a denial of service (file descriptor consumption and process crash) via unspecified vectors.
|
CWE-399
Resource Management Errors
|
CVE-2014-3742
|
2024-11-21 11:08 |
2014-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289520
|
- |
|
canonical
djangoproject
opensuse
debian
|
ubuntu_linux
django
opensuse
debian_linux
|
The django.util.http.is_safe_url function in Django 1.4 before 1.4.13, 1.5 before 1.5.8, 1.6 before 1.6.5, and 1.7 before 1.7b4 does not properly validate URLs, which allows remote attackers to condu…
|
CWE-20
Improper Input Validation
|
CVE-2014-3730
|
2024-11-21 11:08 |
2014-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
