|
292411
|
- |
|
cisco
|
unified_communications_manager
|
Cisco Unified Communications Manager (UCM) does not require authentication for reading WAR files, which allows remote attackers to obtain sensitive information via unspecified access to a "file stora…
|
CWE-287
Improper Authentication
|
CVE-2014-0725
|
2024-11-21 11:02 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292412
|
- |
|
cisco
|
unified_communications_manager
|
The bulk administration interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to bypass authentication and read arbitrary files by using an unspecified p…
|
CWE-20
Improper Input Validation
|
CVE-2014-0724
|
2024-11-21 11:02 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292413
|
- |
|
cisco
|
unified_communications_manager
|
Cross-site scripting (XSS) vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2014-0723
|
2024-11-21 11:02 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292414
|
- |
|
cisco
|
unified_communications_manager
|
The log4jinit web application in Cisco Unified Communications Manager (UCM) does not properly validate authentication, which allows remote attackers to cause a denial of service (performance degradat…
|
CWE-287
Improper Authentication
|
CVE-2014-0722
|
2024-11-21 11:02 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292415
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0501
|
2024-11-21 11:02 |
2014-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292416
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0500
|
2024-11-21 11:02 |
2014-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292417
|
- |
|
ibm
|
lotus_domino
|
The IMAP server in IBM Domino 8.5.x before 8.5.3 FP6 IF1 and 9.0.x before 9.0.1 FP1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, aka SPR KLYH9F4S2Z.
|
NVD-CWE-noinfo
|
CVE-2014-0822
|
2024-11-21 11:02 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292418
|
- |
|
opera
|
opera_browser
|
The intent: URL implementation in Opera before 18 on Android allows attackers to read local files by leveraging an interaction error, as demonstrated by reading stored cookies.
|
CWE-200
Information Exposure
|
CVE-2014-0815
|
2024-11-21 11:02 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292419
|
- |
|
emc
|
documentum_foundation_services
|
The web service in EMC Documentum Foundation Services (DFS) 6.5 through 6.7 before 6.7 SP1 P22, 6.7 SP2 before P08, 7.0 before P12, and 7.1 before P01 does not properly implement content uploading, w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0622
|
2024-11-21 11:02 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292420
|
- |
|
rockwellautomation
|
rslogix_5000_design_and_configuration_software
|
Rockwell Automation RSLogix 5000 7 through 20.01, and 21.0, does not properly implement password protection for .ACD files (aka project files), which allows local users to obtain sensitive informatio…
|
CWE-255
Credentials Management
|
CVE-2014-0755
|
2024-11-21 11:02 |
2014-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
