|
282801
|
- |
|
linux
|
linux_kernel
|
drivers/vhost/net.c in the Linux kernel before 3.13.10, when mergeable buffers are disabled, does not properly validate packet lengths, which allows guest OS users to cause a denial of service (memor…
|
CWE-787
Out-of-bounds Write
|
CVE-2014-0077
|
2024-11-21 11:01 |
2014-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282802
|
- |
|
openafs
debian
|
openafs
debian_linux
|
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0159
|
2024-11-21 11:01 |
2014-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282803
|
- |
|
squid-cache
opensuse
|
squid
opensuse
|
Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service (assertion failure) via a crafted range request, related to state manageme…
|
CWE-20
Improper Input Validation
|
CVE-2014-0128
|
2024-11-21 11:01 |
2014-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282804
|
- |
|
j2k-codec
|
j2k-codec
|
Multiple unspecified vulnerabilities in J2k-Codec allow remote attackers to execute arbitrary code via a crafted JPEG 2000 file.
|
NVD-CWE-noinfo
|
CVE-2014-0349
|
2024-11-21 11:01 |
2014-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282805
|
- |
|
websense
|
triton_web_security_gateway_anywhere
triton_web_security
triton_unified_security_center
triton_web_filter
triton_web_security_gateway
|
The Settings module in Websense Triton Unified Security Center 7.7.3 before Hotfix 31, Web Filter 7.7.3 before Hotfix 31, Web Security 7.7.3 before Hotfix 31, Web Security Gateway 7.7.3 before Hotfix…
|
CWE-255
Credentials Management
|
CVE-2014-0347
|
2024-11-21 11:01 |
2014-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282806
|
- |
|
elfutils_project
|
elfutils
|
Integer overflow in the check_section function in dwarf_begin_elf.c in the libdw library, as used in elfutils 0.153 and possibly through 0.158 allows remote attackers to cause a denial of service (ap…
|
CWE-189
Numeric Errors
|
CVE-2014-0172
|
2024-11-21 11:01 |
2014-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282807
|
- |
|
fortinet
|
fortiadc_firmware
fortiadc-1000e
fortiadc-1500d
fortiadc-2000d
fortiadc-200d
fortiadc-300e
fortiadc-4000d
fortiadc-400e
fortiadc-600e
|
Cross-site scripting (XSS) vulnerability in the web administration interface in FortiADC with firmware before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the locale param…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0331
|
2024-11-21 11:01 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282808
|
- |
|
wordpress
|
wordpress
|
The wp_validate_auth_cookie function in wp-includes/pluggable.php in WordPress before 3.7.2 and 3.8.x before 3.8.2 does not properly determine the validity of authentication cookies, which makes it e…
|
CWE-287
Improper Authentication
|
CVE-2014-0166
|
2024-11-21 11:01 |
2014-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282809
|
- |
|
wordpress
|
wordpress
|
WordPress before 3.7.2 and 3.8.x before 3.8.2 allows remote authenticated users to publish posts by leveraging the Contributor role, related to wp-admin/includes/post.php and wp-admin/includes/class-…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0165
|
2024-11-21 11:01 |
2014-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282810
|
- |
|
microsoft
|
windows_xp
windows_server_2008
windows_server_2012
windows_rt
windows_8.1
windows_7
windows_rt_8.1
windows_vista
windows_8
windows_server_2003
|
Untrusted search path vulnerability in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows…
|
CWE-426
Untrusted Search Path
|
CVE-2014-0315
|
2024-11-21 11:01 |
2014-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
