|
280841
|
- |
|
cobham
|
aviator_700d
aviator_700e
|
Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the (1) debug, (2) prod, (3) do160, and (4) flrp programs, which allows physically proximate attackers to gain privileges…
|
NVD-CWE-Other
|
CVE-2014-2964
|
2024-11-21 11:07 |
2014-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280842
|
- |
|
cobham
|
ailor_6110_mini-c_gmdss
sailor_6006_message_terminal
sailor_6222_vhf
sailor_6300_mf_\/_hf
|
Cobham Sailor 6000 satellite terminals have hardcoded Tbus 2 credentials, which allows remote attackers to obtain access via a TBUS2 command. NOTE: the vendor reportedly states "there is no possibil…
|
NVD-CWE-Other
|
CVE-2014-2941
|
2024-11-21 11:07 |
2014-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280843
|
- |
|
cobham
|
sailor_900_firmware
sailor_6000_series_firmware
|
Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows attackers to obtain administrative control b…
|
NVD-CWE-Other
|
CVE-2014-2940
|
2024-11-21 11:07 |
2014-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280844
|
- |
|
google
debian
|
chrome
debian_linux
|
Multiple unspecified vulnerabilities in Google Chrome before 36.0.1985.143 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2014-3167
|
2024-11-21 11:07 |
2014-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280845
|
- |
|
google
debian
|
chrome
debian_linux
|
The Public Key Pinning (PKP) implementation in Google Chrome before 36.0.1985.143 on Windows, OS X, and Linux, and before 36.0.1985.135 on Android, does not correctly consider the properties of SPDY …
|
NVD-CWE-noinfo
|
CVE-2014-3166
|
2024-11-21 11:07 |
2014-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280846
|
- |
|
debian
google
|
debian_linux
chrome
|
Use-after-free vulnerability in modules/websockets/WorkerThreadableWebSocketChannel.cpp in the Web Sockets implementation in Blink, as used in Google Chrome before 36.0.1985.143, allows remote attack…
|
NVD-CWE-Other
|
CVE-2014-3165
|
2024-11-21 11:07 |
2014-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280847
|
- |
|
cisco
|
unified_communications_domain_manager
unified_presence_server
|
Multiple SQL injection vulnerabilities in the administrative web interface in Cisco Unified Communications Manager (CM) and Cisco Unified Presence Server (CUPS) allow remote authenticated users to ex…
|
CWE-89
SQL Injection
|
CVE-2014-3339
|
2024-11-21 11:07 |
2014-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280848
|
- |
|
cisco
|
unified_communications_manager
|
The CTIManager module in Cisco Unified Communications Manager (CM) 10.0(1), when single sign-on is enabled, does not properly validate Kerberos SSO tokens, which allows remote authenticated users to …
|
CWE-20
Improper Input Validation
|
CVE-2014-3338
|
2024-11-21 11:07 |
2014-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280849
|
- |
|
puppetlabs
puppet
|
mcollective
puppet_enterprise
|
The MCollective aes_security plugin, as used in Puppet Enterprise before 3.3.0 and Mcollective before 2.5.3, does not properly validate new server certificates based on the CA certificate, which allo…
|
CWE-362
Race Condition
|
CVE-2014-3251
|
2024-11-21 11:07 |
2014-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280850
|
- |
|
cisco
|
unified_communications_domain_manager
|
The SIP implementation in Cisco Unified Communications Manager (CM) 8.6(.2) and earlier allows remote authenticated users to cause a denial of service (process crash) via a crafted SIP message that i…
|
CWE-20
Improper Input Validation
|
CVE-2014-3337
|
2024-11-21 11:07 |
2014-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
