|
283751
|
- |
|
x
canonical
|
libxfont
ubuntu_linux
|
Multiple integer overflows in the (1) FontFileAddEntry and (2) lexAlias functions in X.Org libXfont before 1.4.8 and 1.4.9x before 1.4.99.901 might allow local users to gain privileges by adding a di…
|
CWE-189
Numeric Errors
|
CVE-2014-0209
|
2024-11-21 11:01 |
2014-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283752
|
- |
|
redhat
|
cloudforms_3.0_management_engine
|
SQL injection vulnerability in the saved_report_delete action in the ReportController in Red Hat CloudForms Management Engine (CFME) before 5.2.3.2 allows remote authenticated users to execute arbitr…
|
CWE-89
SQL Injection
|
CVE-2014-0137
|
2024-11-21 11:01 |
2014-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283753
|
- |
|
redhat
|
cloudforms_3.0_management_engine
|
The CatalogController in Red Hat CloudForms Management Engine (CFME) before 5.2.3.2 allows remote authenticated users to delete arbitrary catalogs via vectors involving guessing the catalog ID.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0078
|
2024-11-21 11:01 |
2014-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283754
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0310
|
2024-11-21 11:01 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283755
|
- |
|
microsoft
|
windows_server_2008
windows_server_2012
|
Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold allow remote attackers to cause a denial of service (iSCSI service outage) by sending many crafted packets, aka "iSCSI Target Remote …
|
CWE-20
Improper Input Validation
|
CVE-2014-0256
|
2024-11-21 11:01 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283756
|
- |
|
microsoft
|
windows_server_2008
windows_server_2012
|
Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and R2 allow remote attackers to cause a denial of service (iSCSI service outage) by sending many crafted packets, aka "iSCSI Target …
|
CWE-20
Improper Input Validation
|
CVE-2014-0255
|
2024-11-21 11:01 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283757
|
- |
|
microsoft
|
project_server
sharepoint_foundation
web_applications
sharepoint_server
sharepoint_designer
office_web_apps_server
sharepoint_services
sharepoint_server_client_components_sdk
|
Microsoft Windows SharePoint Services 3.0 SP3; SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 Gold and SP1; SharePoint Foundation 2010 SP1 and SP2 and 2013 Gold and SP1; Project Server 2010 S…
|
CWE-94
Code Injection
|
CVE-2014-0251
|
2024-11-21 11:01 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283758
|
- |
|
theforeman
|
foreman
|
Foreman 1.4.0 before 1.5.0 does not properly restrict access to provisioning template previews, which allows remote attackers to obtain sensitive information via the hostname parameter, related to "s…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0192
|
2024-11-21 11:01 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283759
|
- |
|
qt
fedoraproject
opensuse
canonical
|
qt
fedora
opensuse
ubuntu_linux
|
The GIF decoder in QtGui in Qt before 5.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via invalid width and height values in a GIF image.
|
CWE-476
NULL Pointer Dereference
|
CVE-2014-0190
|
2024-11-21 11:01 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283760
|
- |
|
theforeman
|
kafo
|
Kafo before 0.3.17 and 0.4.x before 0.5.2, as used by Foreman, uses world-readable permissions for default_values.yaml, which allows local users to obtain passwords and other sensitive information by…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0135
|
2024-11-21 11:01 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
