|
280811
|
- |
|
ffmpeg
|
ffmpeg
|
The msrle_decode_frame function in libavcodec/msrle.c in FFmpeg before 2.1.4 does not properly calculate line sizes, which allows remote attackers to cause a denial of service (out-of-bounds array ac…
|
CWE-189
Numeric Errors
|
CVE-2014-2099
|
2024-11-21 11:05 |
2014-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280812
|
- |
|
ffmpeg
|
ffmpeg
|
libavcodec/wmalosslessdec.c in FFmpeg before 2.1.4 uses an incorrect data-structure size for certain coefficients, which allows remote attackers to cause a denial of service (memory corruption) or po…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2098
|
2024-11-21 11:05 |
2014-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280813
|
- |
|
ffmpeg
|
ffmpeg
|
The tak_decode_frame function in libavcodec/takdec.c in FFmpeg before 2.1.4 does not properly validate a certain bits-per-sample value, which allows remote attackers to cause a denial of service (out…
|
CWE-20
Improper Input Validation
|
CVE-2014-2097
|
2024-11-21 11:05 |
2014-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280814
|
- |
|
ffmpeg
|
ffmpeg
|
The mpegts_write_pmt function in the MPEG2 transport stream (aka DVB) muxer (libavformat/mpegtsenc.c) in FFmpeg, possibly 2.1 and earlier, allows remote attackers to have unspecified impact and vecto…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2263
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280815
|
- |
|
sas
|
base_sas
|
Buffer overflow in the client application in Base SAS 9.2 TS2M3, SAS 9.3 TS1M1 and TS1M2, and SAS 9.4 TS1M0 allows user-assisted remote attackers to execute arbitrary code via a crafted SAS program.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2262
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280816
|
- |
|
python
apple
|
python
mac_os_x
|
Buffer overflow in the socket.recvfrom_into function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3.4, and 3.4.x before 3.4rc1 allows remote attackers to execute arbitrary code …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1912
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280817
|
- |
|
modx
|
modx_revolution
|
Cross-site scripting (XSS) vulnerability in manager/templates/default/header.tpl in ModX Revolution before 2.2.11 allows remote attackers to inject arbitrary web script or HTML via the "a" parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-2080
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280818
|
- |
|
jenkins
|
jenkins
|
Cross-site scripting (XSS) vulnerability in java/hudson/model/Cause.java in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to inject arbitrary web script or HTML via a …
|
CWE-79
Cross-site Scripting
|
CVE-2014-2067
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280819
|
- |
|
jenkins
|
jenkins
|
Directory traversal vulnerability in the CLI job creation (hudson/cli/CreateJobCommand.java) in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to overwrite arbitrary fi…
|
CWE-22
Path Traversal
|
CVE-2014-2059
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280820
|
- |
|
buddypress
|
buddypress
|
Cross-site scripting (XSS) vulnerability in the BuddyPress plugin before 1.9.2 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the name field to groups/crea…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1888
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
