|
277491
|
- |
|
mit
|
kerberos_5
|
The svcauth_gss_accept_sec_context function in lib/rpc/svc_auth_gss.c in MIT Kerberos 5 (aka krb5) 1.11.x through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 transmits uninitialized inter…
|
CWE-200
Information Exposure
|
CVE-2014-9423
|
2024-11-21 11:20 |
2015-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277492
|
- |
|
mit
|
kerberos_5
|
The check_rpcsec_auth function in kadmin/server/kadm_rpc_svc.c in kadmind in MIT Kerberos 5 (aka krb5) through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 allows remote authenticated user…
|
CWE-284
Improper Access Control
|
CVE-2014-9422
|
2024-11-21 11:20 |
2015-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277493
|
- |
|
mit
|
kerberos_5
|
The auth_gssapi_unwrap_data function in lib/rpc/auth_gssapi_misc.c in MIT Kerberos 5 (aka krb5) through 1.11.5, 1.12.x through 1.12.2, and 1.13.x before 1.13.1 does not properly handle partial XDR de…
|
NVD-CWE-Other
|
CVE-2014-9421
|
2024-11-21 11:20 |
2015-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277494
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Open-Xchange (OX) AppSuite and Server before 7.4.2-rev42, 7.6.0 before 7.6.0-rev36, and 7.6.1 before 7.6.1-rev14 does not properly handle directory permissions, which allows remote authenticated user…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9466
|
2024-11-21 11:20 |
2015-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277495
|
- |
|
lexmark
|
markvision_enterprise
|
Directory traversal vulnerability in the LibraryFileUploadServlet servlet in Lexmark Markvision Enterprise allows remote authenticated users to write to and execute arbitrary files via a .. (dot dot)…
|
CWE-22
Path Traversal
|
CVE-2014-9375
|
2024-11-21 11:20 |
2015-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277496
|
- |
|
ge
mactek
|
svi_ii_ap_positioner_device_type_manager
12400_level_transmitter_device_type_manager
vector_device_type_manager
bullet_device_type_manager
|
Buffer overflow in the Field Device Tool (FDT) Frame application in the HART Device Type Manager (DTM) library, as used in MACTek Bullet DTM 1.00.0, GE Vector DTM 1.00.0, GE SVi1000 Positioner DTM 1.…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9203
|
2024-11-21 11:20 |
2015-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277497
|
- |
|
netapp
|
oncommand_balance
|
NetApp OnCommand Balance before 4.2P3 allows local users to obtain sensitive information via unspecified vectors related to cleartext storage.
|
CWE-200
Information Exposure
|
CVE-2014-9354
|
2024-11-21 11:20 |
2015-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277498
|
- |
|
netapp
|
oncommand_balance
|
NetApp OnCommand Balance before 4.2P2 contains a "default privileged account," which allows remote attackers to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9353
|
2024-11-21 11:20 |
2015-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277499
|
- |
|
owncloud
|
owncloud
|
The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote authenticated users to obtain all valid session IDs via an unspecified API method.
|
CWE-200
Information Exposure
|
CVE-2014-9049
|
2024-11-21 11:20 |
2015-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277500
|
- |
|
owncloud
|
owncloud
|
The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote attackers to bypass the password-protection for shared files via the API.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9048
|
2024-11-21 11:20 |
2015-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
