|
282881
|
- |
|
light_speed_gaming
|
mumble
mumblekit
|
The needSamples method in AudioOutputSpeech.cpp in the client in Mumble 1.2.4 and the 1.2.3 pre-release snapshots, Mumble for iOS 1.1 through 1.2.2, and MumbleKit before commit fd190328a9b24d37382b26…
|
CWE-189
Numeric Errors
|
CVE-2014-0045
|
2024-11-21 11:01 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282882
|
- |
|
light_speed_gaming
|
mumble
|
The opus_packet_get_samples_per_frame function in client in Mumble 1.2.4 and the 1.2.3 pre-release snapshots allows remote attackers to cause a denial of service (crash) via a crafted length prefix v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0044
|
2024-11-21 11:01 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282883
|
- |
|
cipherdyne
|
fwsnort
|
Untrusted search path vulnerability in fwsnort before 1.6.4, when not running as root, allows local users to execute arbitrary code via a Trojan horse fwsnort.conf in the current working directory.
|
NVD-CWE-Other
|
CVE-2014-0039
|
2024-11-21 11:01 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282884
|
- |
|
dell
|
kace_k1000_systems_management_appliance_software
kace_k1000_systems_management_appliance
|
Cross-site scripting (XSS) vulnerability in adminui/user_list.php on the Dell KACE K1000 management appliance 5.5.90545 allows remote attackers to inject arbitrary web script or HTML via the LABEL_ID…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0330
|
2024-11-21 11:01 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282885
|
- |
|
linux
opensuse
|
linux_kernel
opensuse
|
The compat_sys_recvmmsg function in net/compat.c in the Linux kernel before 3.13.2, when CONFIG_X86_X32 is enabled, allows local users to gain privileges via a recvmmsg system call with a crafted tim…
|
CWE-20
Improper Input Validation
|
CVE-2014-0038
|
2024-11-21 11:01 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282886
|
- |
|
pidgin
|
pidgin
|
The IRC protocol plugin in libpurple in Pidgin before 2.10.8 does not validate argument counts, which allows remote IRC servers to cause a denial of service (application crash) via a crafted message.
|
CWE-20
Improper Input Validation
|
CVE-2014-0020
|
2024-11-21 11:01 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282887
|
- |
|
dest-unreach
fedoraproject
opensuse
|
socat
fedora
opensuse
|
Stack-based buffer overflow in socat 1.3.0.0 through 1.7.2.2 and 2.0.0-b1 through 2.0.0-b6 allows local users to cause a denial of service (segmentation fault) via a long server name in the PROXY-CON…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0019
|
2024-11-21 11:01 |
2014-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282888
|
- |
|
zte
|
zxv10_w300
|
The TELNET service on the ZTE ZXV10 W300 router 2.1.0 has a hardcoded password ending with airocon for the admin account, which allows remote attackers to obtain administrative access by leveraging k…
|
CWE-255
Credentials Management
|
CVE-2014-0329
|
2024-11-21 11:01 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282889
|
- |
|
haxx
|
libcurl
curl
|
cURL and libcurl 7.10.6 through 7.34.0, when more than one authentication method is enabled, re-uses NTLM connections, which might allow context-dependent attackers to authenticate as other users via…
|
CWE-287
Improper Authentication
|
CVE-2014-0015
|
2024-11-21 11:01 |
2014-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282890
|
- |
|
mariadb
redhat
oracle
|
mariadb
enterprise_linux
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
mysql
|
Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0001
|
2024-11-21 11:01 |
2014-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
