|
286051
|
- |
|
xen
|
xen
|
The (1) do_send and (2) do_recv functions in io.c in libvchan in Xen 4.2.x, 4.3.x, and 4.4-RC series allows local guests to cause a denial of service or possibly gain privileges via crafted xenstore …
|
CWE-20
Improper Input Validation
|
CVE-2014-1896
|
2024-11-21 11:05 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286052
|
- |
|
xen
|
xen
|
Off-by-one error in the flask_security_avc_cachestats function in xsm/flask/flask_op.c in Xen 4.2.x and 4.3.x, when the maximum number of physical CPUs are in use, allows local users to cause a denia…
|
CWE-189
Numeric Errors
|
CVE-2014-1895
|
2024-11-21 11:05 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286053
|
- |
|
xen
|
xen
|
Multiple integer overflows in unspecified suboperations in the flask hypercall in Xen 3.2.x and earlier, when XSM is enabled, allow local users to cause a denial of service (processor fault) via unsp…
|
CWE-189
Numeric Errors
|
CVE-2014-1894
|
2024-11-21 11:05 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286054
|
- |
|
xen
|
xen
|
Multiple integer overflows in the (1) FLASK_GETBOOL and (2) FLASK_SETBOOL suboperations in the flask hypercall in Xen 4.1.x, 3.3.x, 3.2.x, and earlier, when XSM is enabled, allow local users to cause…
|
CWE-189
Numeric Errors
|
CVE-2014-1893
|
2024-11-21 11:05 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286055
|
- |
|
xen
|
xen
|
Xen 3.3 through 4.1, when XSM is enabled, allows local users to cause a denial of service via vectors related to a "large memory allocation," a different vulnerability than CVE-2014-1891, CVE-2014-18…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1892
|
2024-11-21 11:05 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286056
|
- |
|
xen
|
xen
|
Multiple integer overflows in the (1) FLASK_GETBOOL, (2) FLASK_SETBOOL, (3) FLASK_USER, and (4) FLASK_CONTEXT_TO_SID suboperations in the flask hypercall in Xen 4.3.x, 4.2.x, 4.1.x, 3.2.x, and earlie…
|
CWE-189
Numeric Errors
|
CVE-2014-1891
|
2024-11-21 11:05 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286057
|
- |
|
sonatype
|
nexus
|
Unspecified vulnerability in Sonatype Nexus OSS and Pro 2.4.0 through 2.7.1 allows attackers to create arbitrary user accounts via unknown vectors related to "an unauthenticated execution path."
|
NVD-CWE-noinfo
|
CVE-2014-2034
|
2024-11-21 11:05 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286058
|
- |
|
alliedtelesis
|
img646bd_firmware
img646bd
at-rg634a_firmware
at-rg634a
img624a_firmware
img624a
img616lh_firmware
img616lh
|
The administrative interface in Allied Telesis AT-RG634A ADSL Broadband router 3.3+, iMG624A firmware 3.5, iMG616LH firmware 2.4, and iMG646BD firmware 3.5 allows remote attackers to gain privileges …
|
CWE-287
CWE-78
Improper Authentication
OS Command
|
CVE-2014-1982
|
2024-11-21 11:05 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286059
|
- |
|
cisco
|
ios
|
The packet driver in Cisco IOS allows remote attackers to cause a denial of service (device reload) via a series of (1) Virtual Switching Systems (VSS) or (2) Bidirectional Forwarding Detection (BFD)…
|
CWE-399
Resource Management Errors
|
CVE-2014-2131
|
2024-11-21 11:05 |
2014-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286060
|
- |
|
cisco
|
prime_security_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in dashboard-related HTML documents in Cisco Prime Security Manager (aka PRSM) 9.2(.1-2) and earlier allow remote attackers to inject arbitrary web…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2118
|
2024-11-21 11:05 |
2014-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
