|
281321
|
- |
|
suse
ppc64-diag_project
redhat
|
linux_enterprise_server
ppc64-diag
enterprise_linux_server
|
ppc64-diag 2.6.1 allows local users to overwrite arbitrary files via a symlink attack related to (1) rtas_errd/diag_support.c and /tmp/get_dt_files, (2) scripts/ppc64_diag_mkrsrc and /tmp/diagSEsnap/…
|
CWE-59
Link Following
|
CVE-2014-4038
|
2024-11-21 11:09 |
2014-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281322
|
- |
|
huawei
|
campus_series_switch_software
campus_lsw_s9700
campus_s3300hi
campus_s3700hi
campus_s5300
campus_s5700
campus_s6300
campus_s6700
campus_s7700
campus_s9300
campus_s9300e<…
|
Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4190
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281323
|
- |
|
hitachi
|
tuning_manager
jp1\/performance_management-manager_web_option
|
Cross-site scripting (XSS) vulnerability in Hitachi Tuning Manager before 7.6.1-06 and 8.x before 8.0.0-04 and JP1/Performance Management - Manager Web Option 07-00 through 07-54 allows remote attack…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4189
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281324
|
- |
|
hitachi
|
tuning_manager
jp1\/performance_management-manager_web_option
|
Cross-site request forgery (CSRF) vulnerability in Hitachi Tuning Manager before 7.6.1-06 and 8.x before 8.0.0-04 and JP1/Performance Management - Manager Web Option 07-00 through 07-54 allows remote…
|
CWE-352
Origin Validation Error
|
CVE-2014-4188
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281325
|
- |
|
clip-bucket
|
clipbucket
|
Cross-site scripting (XSS) vulnerability in signup.php in ClipBucket allows remote attackers to inject arbitrary web script or HTML via the Username field.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4187
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281326
|
- |
|
digium
|
asterisk
|
The PJSIP Channel Driver in Asterisk Open Source before 12.3.1 allows remote attackers to cause a denial of service (deadlock) by terminating a subscription request before it is complete, which trigg…
|
NVD-CWE-noinfo
|
CVE-2014-4048
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281327
|
- |
|
digium
|
certified_asterisk
asterisk
|
Asterisk Open Source 1.8.x before 1.8.28.1, 11.x before 11.10.1, and 12.x before 12.3.1 and Certified Asterisk 1.8.15 before 1.8.15-cert6 and 11.6 before 11.6-cert3 allows remote attackers to cause a…
|
NVD-CWE-noinfo
|
CVE-2014-4047
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281328
|
- |
|
digium
|
asterisk
certified_asterisk
|
Asterisk Open Source 11.x before 11.10.1 and 12.x before 12.3.1 and Certified Asterisk 11.6 before 11.6-cert3 allows remote authenticated Manager users to execute arbitrary shell commands via a MixMo…
|
NVD-CWE-Other
|
CVE-2014-4046
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281329
|
- |
|
digium
|
asterisk
|
The Publish/Subscribe Framework in the PJSIP channel driver in Asterisk Open Source 12.x before 12.3.1, when sub_min_expiry is set to zero, allows remote attackers to cause a denial of service (asser…
|
CWE-189
Numeric Errors
|
CVE-2014-4045
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281330
|
- |
|
openafs
|
openafs
|
OpenAFS 1.6.8 does not properly clear the fields in the host structure, which allows remote attackers to cause a denial of service (uninitialized memory access and crash) via unspecified vectors rela…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4044
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
