|
292651
|
- |
|
cisco
|
context_directory_agent
|
Cisco Context Directory Agent (CDA) allows remote authenticated users to trigger the omission of certain user-interface data via crafted field values, aka Bug ID CSCuj45353.
|
CWE-20
Improper Input Validation
|
CVE-2014-0656
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292652
|
- |
|
cisco
|
adaptive_security_appliance
|
The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to change the user-cache contents via a replay attack involving crafted RADIUS C…
|
CWE-20
Improper Input Validation
|
CVE-2014-0655
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292653
|
- |
|
cisco
|
context_directory_agent
|
Cisco Context Directory Agent (CDA) allows remote attackers to modify the cache via a replay attack involving crafted RADIUS accounting messages, aka Bug ID CSCuj45383.
|
CWE-20
Improper Input Validation
|
CVE-2014-0654
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292654
|
- |
|
cisco
|
adaptive_security_appliance
|
The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to trigger authentication-state modifications via a crafted NetBIOS logout probe…
|
CWE-20
Improper Input Validation
|
CVE-2014-0653
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292655
|
- |
|
cisco
|
context_directory_agent
|
Cross-site scripting (XSS) vulnerability in the Mappings page in Cisco Context Directory Agent (CDA) allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuj…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0652
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292656
|
- |
|
cisco
|
context_directory_agent
|
The administrative interface in Cisco Context Directory Agent (CDA) does not properly enforce authorization requirements, which allows remote authenticated users to obtain administrative access by hi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0651
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292657
|
- |
|
technicolor
|
tc7200_firmware
tc7200
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Technicolor (formerly Thomson) TC7200 STD6.01.12 allow remote attackers to hijack the authentication of administrators for requests that …
|
CWE-352
Origin Validation Error
|
CVE-2014-0621
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292658
|
- |
|
technicolor
|
tc7200_firmware
tc7200
|
Multiple cross-site scripting (XSS) vulnerabilities in Technicolor (formerly Thomson) TC7200 STD6.01.12 allow remote attackers to inject arbitrary web script or HTML via the (1) ADDNewDomain paramete…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0620
|
2024-11-21 11:02 |
2014-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292659
|
- |
|
freerdp
|
freerdp
|
Integer overflow in the license_read_scope_list function in libfreerdp/core/license.c in FreeRDP through 1.0.2 allows remote RDP servers to cause a denial of service (application crash) or possibly h…
|
CWE-189
Numeric Errors
|
CVE-2014-0791
|
2024-11-21 11:02 |
2014-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292660
|
6.2 |
MEDIUM
Local
|
qemu
fedoraproject
redhat
|
qemu
fedora
enterprise_linux_server_aus
enterprise_linux_server_tus
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
virtualization
enterprise_lin…
|
Qemu before 1.6.2 block diver for the various disk image formats used by Bochs and for the QCOW version 2 format, are vulnerable to a possible crash caused by signed data types or a logic error while…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2014-0147
|
2024-11-21 11:01 |
2022-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
