|
286471
|
- |
|
linux
|
linux_kernel
|
Race condition in the ath_tx_aggr_sleep function in drivers/net/wireless/ath/ath9k/xmit.c in the Linux kernel before 3.13.7 allows remote attackers to cause a denial of service (system crash) via a l…
|
CWE-362
Race Condition
|
CVE-2014-2672
|
2024-11-21 11:06 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286472
|
- |
|
siemens
|
ruggedcom_rugged_operating_system
|
The web management interface in Siemens RuggedCom ROS before 3.11, ROS 3.11 before 3.11.5 for RS950G, ROS 3.12, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (interface…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2014-2590
|
2024-11-21 11:06 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286473
|
- |
|
microsoft
|
windows_media_player
|
Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted WAV file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2671
|
2024-11-21 11:06 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286474
|
- |
|
postgresql
|
postgresql
|
Multiple integer overflows in contrib/hstore/hstore_io.c in PostgreSQL 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have un…
|
CWE-189
Numeric Errors
|
CVE-2014-2669
|
2024-11-21 11:06 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286475
|
- |
|
zohocorp
|
manageengine_opstor
|
Cross-site scripting (XSS) vulnerability in Properties.do in ZOHO ManageEngine OpStor before build 8500 allows remote authenticated users to inject arbitrary web script or HTML via the name parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2670
|
2024-11-21 11:06 |
2014-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286476
|
- |
|
apache
|
couchdb
|
Apache CouchDB 1.5.0 and earlier allows remote attackers to cause a denial of service (CPU and memory consumption) via the count parameter to /_uuids.
|
CWE-20
Improper Input Validation
|
CVE-2014-2668
|
2024-11-21 11:06 |
2014-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286477
|
- |
|
xen
|
xen
|
The HVMOP_set_mem_access HVM control operations in Xen 4.1.x for 32-bit and 4.1.x through 4.4.x for 64-bit allow local guest administrators to cause a denial of service (CPU consumption) by leveragin…
|
CWE-20
Improper Input Validation
|
CVE-2014-2599
|
2024-11-21 11:06 |
2014-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286478
|
- |
|
pyyaml
opensuse
|
libyaml
leap
opensuse
|
Heap-based buffer overflow in the yaml_parser_scan_uri_escapes function in LibYAML before 0.1.6 allows context-dependent attackers to execute arbitrary code via a long sequence of percent-encoded cha…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2525
|
2024-11-21 11:06 |
2014-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286479
|
- |
|
fedoraproject
opensuse
cacti
debian
|
fedora
opensuse
cacti
debian_linux
|
Cross-site scripting (XSS) vulnerability in cdef.php in Cacti 0.8.7g, 0.8.8b, and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-2326
|
2024-11-21 11:06 |
2014-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286480
|
- |
|
openbsd
|
openssh
|
The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertific…
|
CWE-20
Improper Input Validation
|
CVE-2014-2653
|
2024-11-21 11:06 |
2014-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
