|
279231
|
- |
|
microsoft
|
windows_server_2012
windows_rt
windows_8.1
windows_rt_8.1
windows_8
|
The Task Scheduler in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via an application that schedules a crafted …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4074
|
2024-11-21 11:09 |
2014-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279232
|
- |
|
microsoft
|
.net_framework
|
Microsoft .NET Framework 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1, and 4.5.2 does not properly use a hash table for request data, which allows remote attackers to cause a denial of servic…
|
CWE-399
Resource Management Errors
|
CVE-2014-4072
|
2024-11-21 11:09 |
2014-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279233
|
- |
|
microsoft
|
lync_server
|
The Server in Microsoft Lync Server 2013 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon hang) via a crafted request, aka "Lync Denial of Service Vulnerabili…
|
NVD-CWE-Other
|
CVE-2014-4071
|
2024-11-21 11:09 |
2014-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279234
|
- |
|
microsoft
|
lync_server
|
Cross-site scripting (XSS) vulnerability in the Web Components Server in Microsoft Lync Server 2013 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "Lync XSS Inf…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4070
|
2024-11-21 11:09 |
2014-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279235
|
- |
|
microsoft
|
lync_server
|
The Response Group Service in Microsoft Lync Server 2010 and 2013 and the Core Components in Lync Server 2013 do not properly handle exceptions, which allows remote attackers to cause a denial of ser…
|
CWE-20
Improper Input Validation
|
CVE-2014-4068
|
2024-11-21 11:09 |
2014-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279236
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4065
|
2024-11-21 11:09 |
2014-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279237
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4059
|
2024-11-21 11:09 |
2014-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279238
|
- |
|
emurasoft
|
emftp
|
Emurasoft EmFTP allows local users to gain privileges via a Trojan horse executable file that is launched during an attempt to read a similarly named file that lacks a filename extension.
|
CWE-94
Code Injection
|
CVE-2014-3910
|
2024-11-21 11:09 |
2014-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279239
|
- |
|
falconsc
|
wisepoint
|
Session fixation vulnerability in Falcon WisePoint 4.1.19.7 and earlier allows remote attackers to hijack web sessions via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2014-3909
|
2024-11-21 11:09 |
2014-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279240
|
- |
|
hl7
|
c-cda
|
CDA.xsl in HL7 C-CDA 1.1 and earlier allows remote attackers to discover potentially sensitive URLs via a crafted reference element that triggers creation of an IMG element with an arbitrary URL in i…
|
CWE-200
Information Exposure
|
CVE-2014-3862
|
2024-11-21 11:09 |
2014-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
