|
281751
|
8.1 |
HIGH
Network
|
libuv
nodejs
|
libuv
node.js
|
The uv_rwlock_t fallback implementation for Windows XP and Server 2003 in libuv before 1.7.4 does not properly prevent threads from releasing the locks of other threads, which allows attackers to cau…
|
CWE-362
Race Condition
|
CVE-2014-9748
|
2024-11-21 11:21 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281752
|
9.8 |
CRITICAL
Network
|
nwjs
|
nw
|
A vulnerability exists in nw.js before 0.11.3 when calling nw methods from normal frames, which has an unspecified impact.
|
NVD-CWE-noinfo
|
CVE-2014-9530
|
2024-11-21 11:21 |
2020-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281753
|
7.8 |
HIGH
Local
|
videolan
|
vlc_media_player
|
The rtp_packetize_xiph_config function in modules/stream_out/rtpfmt.c in VideoLAN VLC media player before 2.1.6 uses a stack-allocation approach with a size determined by arbitrary input data, which …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9630
|
2024-11-21 11:21 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281754
|
7.8 |
HIGH
Local
|
videolan
|
vlc_media_player
|
Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN VLC media player before 2.1.6 and 2.2.x before 2.2.1 allows remote attackers to conduct buffer overflow attacks and…
|
CWE-120
Classic Buffer Overflow
|
CVE-2014-9629
|
2024-11-21 11:21 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281755
|
7.8 |
HIGH
Local
|
videolan
|
vlc_media_player
|
The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to trigger an unintended zero-size malloc and conduct buffer overflow a…
|
CWE-120
Classic Buffer Overflow
|
CVE-2014-9628
|
2024-11-21 11:21 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281756
|
7.8 |
HIGH
Local
|
videolan
|
vlc_media_player
|
The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows re…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2014-9627
|
2024-11-21 11:21 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281757
|
7.8 |
HIGH
Local
|
videolan
|
vlc_media_player
|
Integer underflow in the MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to cause a denial of service or possibly have unsp…
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2014-9626
|
2024-11-21 11:21 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281758
|
7.8 |
HIGH
Local
|
videolan
|
vlc_media_player
|
The GetUpdateFile function in misc/update.c in the Updater in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows remot…
|
CWE-120
Classic Buffer Overflow
|
CVE-2014-9625
|
2024-11-21 11:21 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281759
|
6.5 |
MEDIUM
Network
|
tornadoweb
|
tornado
|
Tornado before 3.2.2 sends arbitrary responses that contain a fixed CSRF token and may be sent with HTTP compression, which makes it easier for remote attackers to conduct a BREACH attack and determi…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2014-9720
|
2024-11-21 11:21 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281760
|
6.5 |
MEDIUM
Adjacent
|
google
|
android
|
A Denial of Service vulnerability exists in Google Android 4.4.4, 5.0.2, and 5.1.1, which allows malicious users to block Bluetooh access (Android Bug ID A-28672558).
|
NVD-CWE-noinfo
|
CVE-2014-9908
|
2024-11-21 11:21 |
2020-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
