|
285331
|
- |
|
pidgin
|
pidgin
|
Absolute path traversal vulnerability in the untar_block function in win32/untar.c in Pidgin before 2.10.10 on Windows allows remote attackers to write to arbitrary files via a drive name in a tar ar…
|
CWE-22
Path Traversal
|
CVE-2014-3697
|
2024-11-21 11:08 |
2014-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285332
|
- |
|
pidgin
|
pidgin
|
nmevent.c in the Novell GroupWise protocol plugin in libpurple in Pidgin before 2.10.10 allows remote servers to cause a denial of service (application crash) via a crafted server message that trigge…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3696
|
2024-11-21 11:08 |
2014-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285333
|
- |
|
pidgin
|
pidgin
|
markup.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.10 allows remote servers to cause a denial of service (application crash) via a large length value in an emoticon response.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3695
|
2024-11-21 11:08 |
2014-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285334
|
- |
|
opensuse
canonical
debian
pidgin
|
opensuse
ubuntu_linux
debian_linux
pidgin
|
The (1) bundled GnuTLS SSL/TLS plugin and the (2) bundled OpenSSL SSL/TLS plugin in libpurple in Pidgin before 2.10.10 do not properly consider the Basic Constraints extension during verification of …
|
CWE-310
Cryptographic Issues
|
CVE-2014-3694
|
2024-11-21 11:08 |
2014-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285335
|
- |
|
php
|
php
|
The exif_ifd_make_value function in exif.c in the EXIF extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 operates on floating-point arrays incorrectly, which allows remote a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3670
|
2024-11-21 11:08 |
2014-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285336
|
- |
|
php
|
php
|
Integer overflow in the object_custom function in ext/standard/var_unserializer.c in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of servic…
|
CWE-189
Numeric Errors
|
CVE-2014-3669
|
2024-11-21 11:08 |
2014-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285337
|
- |
|
php
|
php
|
Buffer overflow in the date_from_ISO8601 function in the mkgmtime implementation in libxmlrpc/xmlrpc.c in the XMLRPC extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3668
|
2024-11-21 11:08 |
2014-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285338
|
- |
|
freebsd
|
freebsd
|
namei in FreeBSD 9.1 through 10.1-RC2 allows remote attackers to cause a denial of service (memory exhaustion) via vectors that trigger a sandboxed process to look up a large number of nonexistent pa…
|
CWE-399
Resource Management Errors
|
CVE-2014-3711
|
2024-11-21 11:08 |
2014-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285339
|
- |
|
openstack
|
keystone
|
OpenStack Identity (Keystone) before 2013.2.4, 2014.x before 2014.1.2, and Juno before Juno-2 allows remote authenticated trustees to gain access to an unauthorized project for which the trustor has …
|
CWE-863
Incorrect Authorization
|
CVE-2014-3520
|
2024-11-21 11:08 |
2014-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285340
|
- |
|
d-bus_project
freedesktop
opensuse
|
d-bus
dbus
opensuse
|
D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8 allows local users to (1) cause a denial of service (prevention of new connections and connection drop) by queuing the maximum number of…
|
CWE-399
Resource Management Errors
|
CVE-2014-3636
|
2024-11-21 11:08 |
2014-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
