|
290921
|
- |
|
php
debian
|
php
debian_linux
|
The cdf_read_property_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service (infinite loop or out-of-bound…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0238
|
2024-11-21 11:01 |
2014-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290922
|
- |
|
php
debian
|
php
debian_linux
|
The cdf_unpack_summary_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service (performance degradation) by …
|
CWE-399
Resource Management Errors
|
CVE-2014-0237
|
2024-11-21 11:01 |
2014-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290923
|
- |
|
apache
|
tomcat
|
Apache Tomcat before 6.0.40, 7.x before 7.0.54, and 8.x before 8.0.6 does not properly constrain the class loader that accesses the XML parser used with an XSLT stylesheet, which allows remote attack…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0119
|
2024-11-21 11:01 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290924
|
- |
|
apache
|
tomcat
|
Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4, when operated behind a reverse proxy, allows remote attackers t…
|
CWE-189
Numeric Errors
|
CVE-2014-0099
|
2024-11-21 11:01 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290925
|
- |
|
apache
|
tomcat
|
java/org/apache/catalina/servlets/DefaultServlet.java in the default servlet in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 does not properly restrict XSLT stylesheets, which…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0096
|
2024-11-21 11:01 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290926
|
- |
|
apache
|
tomcat
|
java/org/apache/coyote/ajp/AbstractAjpProcessor.java in Apache Tomcat 8.x before 8.0.4 allows remote attackers to cause a denial of service (thread consumption) by using a "Content-Length: 0" AJP req…
|
CWE-20
Improper Input Validation
|
CVE-2014-0095
|
2024-11-21 11:01 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290927
|
- |
|
apache
|
tomcat
|
Integer overflow in the parseChunkHeader function in java/org/apache/coyote/http11/filters/ChunkedInputFilter.java in Apache Tomcat before 6.0.40, 7.x before 7.0.53, and 8.x before 8.0.4 allows remot…
|
CWE-189
Numeric Errors
|
CVE-2014-0075
|
2024-11-21 11:01 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290928
|
- |
|
redhat
|
rhevm-dwh
|
The setup script in ovirt-engine-dwh, as used in the Red Hat Enterprise Virtualization Manager data warehouse (rhevm-dwh) package before 3.3.3, stores the history database password in cleartext, whic…
|
CWE-255
Credentials Management
|
CVE-2014-0202
|
2024-11-21 11:01 |
2014-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290929
|
- |
|
sosreport_project
|
sosreport
|
SOSreport stores the md5 hash of the GRUB bootloader password in an archive, which allows local users to obtain sensitive information by reading the archive.
|
CWE-255
Credentials Management
|
CVE-2014-0246
|
2024-11-21 11:01 |
2014-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290930
|
- |
|
redhat
|
rhevm-reports
|
ovirt-engine-reports, as used in the Red Hat Enterprise Virtualization reports package (rhevm-reports) before 3.3.3, uses world-readable permissions on configuration files, which allows local users t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0201
|
2024-11-21 11:01 |
2014-05-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
