|
280391
|
- |
|
redhat
|
shim
|
Heap-based buffer overflow in Shim allows remote attackers to execute arbitrary code via a crafted IPv6 address, related to the "tftp:// DHCPv6 boot option."
|
CWE-787
Out-of-bounds Write
|
CVE-2014-3676
|
2024-11-21 11:08 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280392
|
- |
|
redhat
|
shim
|
Shim allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted DHCPv6 packet.
|
CWE-125
Out-of-bounds Read
|
CVE-2014-3675
|
2024-11-21 11:08 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280393
|
- |
|
gnu
debian
canonical
|
gpgme
debian_linux
ubuntu_linux
|
Multiple heap-based buffer overflows in the status_handler function in (1) engine-gpgsm.c and (2) engine-uiserver.c in GPGME before 1.5.1 allow remote attackers to cause a denial of service (crash) a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3564
|
2024-11-21 11:08 |
2014-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280394
|
- |
|
tomatocart
|
tomatocart
|
Cross-site scripting (XSS) vulnerability in info.php in TomatoCart 1.1.8.6.1 allows remote attackers to inject arbitrary web script or HTML via the faqs_id parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-3830
|
2024-11-21 11:08 |
2014-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280395
|
- |
|
openssl
|
openssl
|
OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SS…
|
CWE-310
Cryptographic Issues
|
CVE-2014-3568
|
2024-11-21 11:08 |
2014-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280396
|
- |
|
openssl
|
openssl
|
Memory leak in the tls_decrypt_ticket function in t1_lib.c in OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consump…
|
CWE-20
CWE-399
Improper Input Validation
Resource Management Errors
|
CVE-2014-3567
|
2024-11-21 11:08 |
2014-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280397
|
- |
|
openssl
|
openssl
|
Memory leak in d1_srtp.c in the DTLS SRTP extension in OpenSSL 1.0.1 before 1.0.1j allows remote attackers to cause a denial of service (memory consumption) via a crafted handshake message.
|
CWE-20
Improper Input Validation
|
CVE-2014-3513
|
2024-11-21 11:08 |
2014-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280398
|
- |
|
cisco
|
prime_optical
|
Cross-site scripting (XSS) vulnerability in the web framework in Cisco Prime Optical 10 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCuq80…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3408
|
2024-11-21 11:08 |
2014-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280399
|
- |
|
cisco
|
intrusion_prevention_system
|
Race condition in the IP logging feature in Cisco Intrusion Prevention System (IPS) Software 7.1(7)E4 and earlier allows remote attackers to cause a denial of service (device reload) via crafted IP t…
|
CWE-362
Race Condition
|
CVE-2014-3406
|
2024-11-21 11:08 |
2014-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280400
|
- |
|
cisco
|
telepresence_mcu_software
|
The network stack in Cisco TelePresence MCU Software before 4.3(2.30) allows remote attackers to cause a denial of service (memory consumption) via crafted TCP packets, aka Bug ID CSCtz35468.
|
CWE-399
Resource Management Errors
|
CVE-2014-3397
|
2024-11-21 11:08 |
2014-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
