|
290201
|
- |
|
redhat
canonical
libreoffice
opensuse
|
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
ubuntu_linux
libreoffice
opensuse
|
Use-after-free vulnerability in the socket manager of Impress Remote in LibreOffice 4.x before 4.2.7 and 4.3.x before 4.3.3 allows remote attackers to cause a denial of service (crash) or possibly ex…
|
NVD-CWE-Other
|
CVE-2014-3693
|
2024-11-21 11:08 |
2014-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290202
|
- |
|
debian
qemu
redhat
canonical
|
debian_linux
qemu
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
ubuntu_linux
|
The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and a…
|
CWE-476
NULL Pointer Dereference
|
CVE-2014-3640
|
2024-11-21 11:08 |
2014-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290203
|
- |
|
symantec
|
endpoint_protection_manager
|
ConsoleServlet in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU5 allows remote attackers to write to arbitrary files via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2014-3439
|
2024-11-21 11:08 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290204
|
- |
|
symantec
|
endpoint_protection_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in console interface scripts in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU5 allow remote attackers to inject arbitrary web script o…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3438
|
2024-11-21 11:08 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290205
|
- |
|
symantec
|
endpoint_protection_manager
|
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU5 allows remote attackers to read arbitrary files or send TCP requests to intranet servers via XML data containing …
|
NVD-CWE-Other
|
CVE-2014-3437
|
2024-11-21 11:08 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290206
|
- |
|
php
debian
canonical
|
php
debian_linux
ubuntu_linux
|
The donote function in readelf.c in file through 5.20, as used in the Fileinfo component in PHP 5.4.34, does not ensure that sufficient note headers are present, which allows remote attackers to caus…
|
CWE-20
Improper Input Validation
|
CVE-2014-3710
|
2024-11-21 11:08 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290207
|
- |
|
qemu
|
qemu
|
hw/usb/bus.c in QEMU 1.6.2 allows remote attackers to execute arbitrary code via crafted savevm data, which triggers a heap-based buffer overflow, related to "USB post load checks."
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3461
|
2024-11-21 11:08 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290208
|
- |
|
xmlsoft
canonical
debian
redhat
apple
|
libxml2
ubuntu_linux
debian_linux
enterprise_linux
mac_os_x
|
parser.c in libxml2 before 2.9.2 does not properly prevent entity expansion even when entity substitution has been disabled, which allows context-dependent attackers to cause a denial of service (CPU…
|
NVD-CWE-Other
|
CVE-2014-3660
|
2024-11-21 11:08 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290209
|
- |
|
katello
|
katello
|
Katello allows remote attackers to cause a denial of service (memory consumption) via the (1) mode parameter in the setup_utils function in content_search_controller.rb or (2) action parameter in the…
|
CWE-399
Resource Management Errors
|
CVE-2014-3712
|
2024-11-21 11:08 |
2014-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290210
|
- |
|
redhat
suse
|
spacewalk-java
satellite
satellite_with_embedded_oracle
manager_server
manager
|
Multiple cross-site scripting (XSS) vulnerabilities in spacewalk-java 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.5 and 5.6 allow remote attackers to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2014-3654
|
2024-11-21 11:08 |
2014-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
