|
289431
|
- |
|
linuxfoundation
|
cups-filters
|
The process_browse_data function in utils/cups-browsed.c in cups-browsed in cups-filters before 1.0.53 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4337
|
2024-11-21 11:09 |
2014-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289432
|
- |
|
linuxfoundation
|
cups-filters
|
The generate_local_queue function in utils/cups-browsed.c in cups-browsed in cups-filters before 1.0.53 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the host n…
|
CWE-77
Command Injection
|
CVE-2014-4336
|
2024-11-21 11:09 |
2014-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289433
|
- |
|
webmin
|
usermin
|
Usermin before 1.600 allows remote attackers to execute arbitrary operating-system commands via unspecified vectors related to a user action.
|
CWE-78
OS Command
|
CVE-2014-3883
|
2024-11-21 11:09 |
2014-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289434
|
- |
|
barracudadrive
|
barracudadrive
|
Multiple cross-site scripting (XSS) vulnerabilities in BarracudaDrive 6.7.2 allow remote attackers to inject arbitrary web script or HTML via the (1) host or (2) password parameter to rtl/protected/a…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4335
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289435
|
- |
|
ubi
|
rayman_legends
|
Stack-based buffer overflow in Ubisoft Rayman Legends before 1.3.140380 allows remote attackers to execute arbitrary code via a long string in the "second connection" to TCP port 1001.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4334
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289436
|
- |
|
boonex
|
dolphin
|
Cross-site request forgery (CSRF) vulnerability in administration/profiles.php in Dolphin 7.1.4 and earlier allows remote attackers to hijack the authentication of administrators for requests that co…
|
CWE-352
Origin Validation Error
|
CVE-2014-4333
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289437
|
- |
|
zte
|
zxv10_w300_firmware
zxv10_w300
|
Cross-site request forgery (CSRF) vulnerability in the ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK allows remote attackers to hijack the authentication of administrators for requests that …
|
CWE-352
Origin Validation Error
|
CVE-2014-4155
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289438
|
- |
|
ntop
|
ntopng
|
Cross-site scripting (XSS) vulnerability in lua/host_details.lua in ntopng 1.1 allows remote attackers to inject arbitrary web script or HTML via the host parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4329
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289439
|
- |
|
alienvault
|
open_source_security_information_management
|
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to read arbitrary files via a crafted get_file request.
|
CWE-200
Information Exposure
|
CVE-2014-4153
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289440
|
- |
|
alienvault
|
open_source_security_information_management
|
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to execute arbitrary code via a crafted remote_task request, related to injecting an ssh public key.
|
CWE-94
Code Injection
|
CVE-2014-4152
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
