|
282741
|
- |
|
apple
|
tvos
iphone_os
|
CrashHouseKeeping in Crash Reporting in Apple iOS before 7.1 and Apple TV before 6.1 allows local users to change arbitrary file permissions by leveraging a symlink.
|
CWE-59
Link Following
|
CVE-2014-1272
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282742
|
- |
|
apple
|
iphone_os
tvos
|
CoreCapture in Apple iOS before 7.1 and Apple TV before 6.1 does not properly validate IOKit API calls, which allows attackers to cause a denial of service (assertion failure and device crash) via a …
|
CWE-20
Improper Input Validation
|
CVE-2014-1271
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282743
|
- |
|
apple
|
tvos
iphone_os
|
The Configuration Profiles component in Apple iOS before 7.1 and Apple TV before 6.1 does not properly evaluate the expiration date of a mobile configuration profile, which allows attackers to bypass…
|
CWE-20
Improper Input Validation
|
CVE-2014-1267
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282744
|
- |
|
ibm
|
aix
|
ftpd in IBM AIX 7.1.1 before SP10 and 7.1.2 before SP5, when a Workload Partition (aka WPAR) for AIX 5.2 or 5.3 is used, allows remote authenticated users to bypass intended permission settings and m…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0899
|
2024-11-21 11:03 |
2014-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282745
|
- |
|
telligent
|
evolution
|
Cross-site scripting (XSS) vulnerability in controlpanel/loading.aspx in Telligent Evolution before 6.1.19.36103, 7.x before 7.1.12.36162, 7.5.x, and 7.6.x before 7.6.7.36651 allows remote attackers …
|
CWE-79
Cross-site Scripting
|
CVE-2014-1223
|
2024-11-21 11:03 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282746
|
- |
|
apple
|
safari
mac_os_x
mac_os_x_server
webkit
|
WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1270
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282747
|
- |
|
apple
|
safari
mac_os_x
mac_os_x_server
webkit
|
WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1269
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282748
|
- |
|
apple
|
safari
mac_os_x
mac_os_x_server
webkit
|
WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1268
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282749
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The systemsetup program in the Date and Time subsystem in Apple OS X before 10.9.2 allows local users to bypass intended access restrictions by changing the current time on the system clock.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1265
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282750
|
- |
|
apple
|
mac_os_x
|
Finder in Apple OS X before 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstan…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1264
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
