|
280501
|
- |
|
redhat
|
enterprise_virtualization
|
The oVirt storage backend in Red Hat Enterprise Virtualization 3.4 does not wipe memory snapshots when deleting a VM, even when wipe-after-delete (WAD) is configured for the VM's disk, which allows r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3559
|
2024-11-21 11:08 |
2014-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280502
|
- |
|
symantec
|
endpoint_protection
|
Buffer overflow in the sysplant driver in Symantec Endpoint Protection (SEP) Client 11.x and 12.x before 12.1 RU4 MP1b, and Small Business Edition before SEP 12.1, allows local users to execute arbit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3434
|
2024-11-21 11:08 |
2014-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280503
|
- |
|
redhat
canonical
samba
|
enterprise_linux
ubuntu_linux
samba
|
NetBIOS name services daemon (nmbd) in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors that modify heap memory, involving a…
|
CWE-94
Code Injection
|
CVE-2014-3560
|
2024-11-21 11:08 |
2014-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280504
|
- |
|
linux
debian
|
linux_kernel
debian_linux
|
arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACE_POKEUSR_AREA requests, which allows local users …
|
CWE-269
Improper Privilege Management
|
CVE-2014-3534
|
2024-11-21 11:08 |
2014-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280505
|
- |
|
libndp
|
libndp
|
Buffer overflow in the ndp_msg_opt_dnssl_domain function in libndp allows remote routers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DNS Search List (DNSSL)…
|
CWE-120
Classic Buffer Overflow
|
CVE-2014-3554
|
2024-11-21 11:08 |
2014-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280506
|
- |
|
netty
|
netty
|
The SslHandler in Netty before 3.9.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted SSLv2Hello message.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3488
|
2024-11-21 11:08 |
2014-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280507
|
- |
|
moodle
|
moodle
|
mod/forum/classes/post_form.php in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 does not enforce the moodle/site:accessallgroups capabili…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3553
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280508
|
- |
|
moodle
|
moodle
|
The Shibboleth authentication plugin in auth/shibboleth/index.php in Moodle through 2.3.11, 2.4.x before 2.4.11, and 2.5.x before 2.5.7 does not check whether a session ID is empty, which allows remo…
|
CWE-287
Improper Authentication
|
CVE-2014-3552
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280509
|
- |
|
moodle
|
moodle
|
Multiple cross-site scripting (XSS) vulnerabilities in the advanced-grading implementation in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3551
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280510
|
- |
|
moodle
|
moodle
|
Multiple cross-site scripting (XSS) vulnerabilities in admin/tool/task/scheduledtasks.php in Moodle 2.7.x before 2.7.1 allow remote attackers to inject arbitrary web script or HTML via vectors that t…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3550
|
2024-11-21 11:08 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
