|
281701
|
- |
|
ibm
|
curam_social_program_management
|
Multiple CRLF injection vulnerabilities in IBM Curam Social Program Management 5.2 SP1 through 6.0.5.4 allow remote authenticated users to inject arbitrary HTTP headers and conduct HTTP response spli…
|
NVD-CWE-Other
|
CVE-2014-3012
|
2024-11-21 11:07 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281702
|
- |
|
f5
|
arx_data_manager
|
SQL injection vulnerability in the web service in F5 ARX Data Manager 3.0.0 through 3.1.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2014-2949
|
2024-11-21 11:07 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281703
|
- |
|
puppet
|
puppet_enterprise
|
Puppet Enterprise 2.8.x before 2.8.7 allows remote attackers to obtain sensitive information via vectors involving hiding and unhiding nodes.
|
CWE-200
Information Exposure
|
CVE-2014-3249
|
2024-11-21 11:07 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281704
|
- |
|
cisco
|
ios_xe
|
The mDNS implementation in Cisco IOS XE 3.12S does not properly interact with autonomic networking, which allows remote attackers to obtain sensitive networking-services information by sniffing the n…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3290
|
2024-11-21 11:07 |
2014-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281705
|
- |
|
cisco
|
nx-os
|
The HSRP implementation in Cisco NX-OS 6.2(2a) and earlier allows remote attackers to bypass authentication and cause a denial of service (group-member state modification and traffic blackholing) via…
|
CWE-287
Improper Authentication
|
CVE-2014-3295
|
2024-11-21 11:07 |
2014-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281706
|
- |
|
castor_project
opensuse_project
opensuse
|
castor
opensuse
|
The default configuration for the Xerces SAX Parser in Castor before 1.3.3 allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XML document.
|
CWE-611
XXE
|
CVE-2014-3004
|
2024-11-21 11:07 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281707
|
- |
|
directfb
suse
opensuse
|
directfb
linux_enterprise_software_development_kit
linux_enterprise_desktop
linux_enterprise_workstation_extension
opensuse
suse_linux_enterprise_server
|
The Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via th…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2978
|
2024-11-21 11:07 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281708
|
- |
|
suse
opensuse
directfb
|
linux_enterprise_software_development_kit
linux_enterprise_desktop
linux_enterprise_workstation_extension
opensuse
suse_linux_enterprise_server
directfb
|
Multiple integer signedness errors in the Dispatch_Write function in proxy/dispatcher/idirectfbsurface_dispatcher.c in DirectFB 1.4.13 allow remote attackers to cause a denial of service (crash) and …
|
CWE-189
Numeric Errors
|
CVE-2014-2977
|
2024-11-21 11:07 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281709
|
- |
|
google
|
chrome
|
Heap-based buffer overflow in the FFmpegVideoDecoder::GetVideoBuffer function in media/filters/ffmpeg_video_decoder.cc in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3157
|
2024-11-21 11:07 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281710
|
- |
|
google
|
chrome
|
Buffer overflow in the clipboard implementation in Google Chrome before 35.0.1916.153 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3156
|
2024-11-21 11:07 |
2014-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
