|
278181
|
- |
|
haproxy
|
haproxy
|
Multiple integer overflows in the http_request_forward_body function in proto_http.c in HAProxy 1.5-dev23 before 1.5.4 allow remote attackers to cause a denial of service (crash) via a large stream o…
|
CWE-189
Numeric Errors
|
CVE-2014-6269
|
2024-11-21 11:14 |
2014-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278182
|
- |
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, does not properly validate auth replies, which allows remote attackers to cause a denial of service (system crash) or possibly ha…
|
CWE-399
Resource Management Errors
|
CVE-2014-6418
|
2024-11-21 11:14 |
2014-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278183
|
- |
|
linux
|
linux_kernel
|
net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, does not properly consider the possibility of kmalloc failure, which allows remote attackers to cause a denial of service (system…
|
CWE-399
Resource Management Errors
|
CVE-2014-6417
|
2024-11-21 11:14 |
2014-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278184
|
- |
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
Buffer overflow in net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, allows remote attackers to cause a denial of service (memory corruption and panic) or possibly have unspecifie…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-6416
|
2024-11-21 11:14 |
2014-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278185
|
- |
|
linux
|
linux_kernel
|
The __udf_read_inode function in fs/udf/inode.c in the Linux kernel through 3.16.3 does not restrict the amount of ICB indirection, which allows physically proximate attackers to cause a denial of se…
|
CWE-399
Resource Management Errors
|
CVE-2014-6410
|
2024-11-21 11:14 |
2014-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278186
|
- |
|
gnu
|
bash
|
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code or cause a denial of servi…
|
CWE-78
OS Command
|
CVE-2014-6277
|
2024-11-21 11:14 |
2014-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278187
|
- |
|
infusionsoft_gravity_forms_project
|
infusionsoft_gravity_forms
|
The Infusionsoft Gravity Forms plugin 1.5.3 through 1.5.10 for WordPress does not properly restrict access, which allows remote attackers to upload arbitrary files and execute arbitrary PHP code via …
|
CWE-94
Code Injection
|
CVE-2014-6446
|
2024-11-21 11:14 |
2014-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278188
|
- |
|
contactus
|
contact_form_7_integrations
|
Multiple cross-site scripting (XSS) vulnerabilities in includes/toAdmin.php in Contact Form 7 Integrations plugin 1.0 through 1.3.10 for WordPress allow remote attackers to inject arbitrary web scrip…
|
CWE-79
Cross-site Scripting
|
CVE-2014-6445
|
2024-11-21 11:14 |
2014-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278189
|
- |
|
ticketroundup
|
ticket_round_up
|
The Ticket Round Up (aka com.xcr.android.ticketroundupapp) application 3.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6677
|
2024-11-21 11:14 |
2014-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278190
|
- |
|
hdcar
|
exercitii_pentru_abdomen
|
The Exercitii pentru abdomen (aka com.rareartifact.exercitiipentruabdomen41E29322) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle atta…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6676
|
2024-11-21 11:14 |
2014-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
