|
277341
|
- |
|
k7computing
|
k7sentry.sys
anti-virus_plus
total_security
ultimate_security
|
K7Sentry.sys in K7 Computing Ultimate Security, Anti-Virus Plus, and Total Security before 14.2.0.253 allows local users to write to arbitrary memory locations, and consequently gain privileges, via …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9643
|
2024-11-21 11:21 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277342
|
- |
|
bullguard
|
bdagent.sys
internet_security
online_backup
premium_protection
|
bdagent.sys in BullGuard Antivirus, Internet Security, Premium Protection, and Online Backup before 15.0.288 allows local users to write data to arbitrary memory locations, and consequently gain priv…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9642
|
2024-11-21 11:21 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277343
|
- |
|
trendmicro
|
tmeext.sys
|
The tmeext.sys driver before 2.0.0.1015 in Trend Micro Antivirus Plus, Internet Security, and Maximum Security allows local users to write to arbitrary memory locations, and consequently gain privile…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9641
|
2024-11-21 11:21 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277344
|
- |
|
unzip_project
canonical
debian
fedoraproject
|
unzip
ubuntu_linux
debian_linux
fedora
|
unzip 6.0 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via an extra field with an uncompressed size smaller than the compressed field size in a zip arc…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9636
|
2024-11-21 11:21 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277345
|
- |
|
avg
|
protection
internet_security
|
The TDI driver (avgtdix.sys) in AVG Internet Security before 2013.3495 Hot Fix 18 and 2015.x before 2015.5315 and Protection before 2015.5315 allows local users to write to arbitrary memory locations…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9632
|
2024-11-21 11:21 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277346
|
- |
|
m2_technologies
|
optimalsite
|
Cross-site scripting (XSS) vulnerability in display_dialog.php in M2 OptimalSite 0.1 and 2.4 allows remote attackers to inject arbitrary web script or HTML via the image parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-9562
|
2024-11-21 11:21 |
2015-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277347
|
- |
|
comodo
|
backup
|
The bdisk.sys driver in COMODO Backup before 4.4.1.23 allows remote attackers to gain privileges via a crafted device handle, which triggers a NULL pointer dereference.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-9633
|
2024-11-21 11:21 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277348
|
- |
|
fluxbb
|
fluxbb
|
Directory traversal vulnerability in install.php in FluxBB before 1.5.8 allows remote attackers to include and execute arbitrary local install.php files via a .. (dot dot) in the install_lang paramet…
|
CWE-22
Path Traversal
|
CVE-2014-9574
|
2024-11-21 11:21 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277349
|
- |
|
voxpupuli
|
rabbitmq
|
puppetlabs-rabbitmq 3.0 through 4.1 stores the RabbitMQ Erlang cookie value in the facts of a node, which allows local users to obtain sensitive information as demonstrated by using Facter.
|
CWE-200
Information Exposure
|
CVE-2014-9568
|
2024-11-21 11:21 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277350
|
- |
|
snipsnap
|
snipsnap
|
Cross-site scripting (XSS) vulnerability in SnipSnap 0.5.2a, 1.0b1, and 1.0b2 allows remote attackers to inject arbitrary web script or HTML via the query parameter to /snipsnap-search.
|
CWE-79
Cross-site Scripting
|
CVE-2014-9559
|
2024-11-21 11:21 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
