|
281861
|
- |
|
apple
|
iphone_os
tvos
|
Directory traversal vulnerability in afc in AppleFileConduit in Apple iOS before 8.1.3 and Apple TV before 7.0.3 allows attackers to access unintended filesystem locations by creating a symlink.
|
CWE-59
Link Following
|
CVE-2014-4480
|
2024-11-21 11:10 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281862
|
- |
|
apple
|
safari
iphone_os
tvos
itunes
|
WebKit, as used in Apple iOS before 8.1.3; Apple Safari before 6.2.3, 7.x before 7.1.3, and 8.x before 8.0.3; and Apple TV before 7.0.3, allows remote attackers to execute arbitrary code or cause a d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4479
|
2024-11-21 11:10 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281863
|
- |
|
apple
|
iphone_os
tvos
itunes
safari
|
WebKit, as used in Apple iOS before 8.1.3; Apple Safari before 6.2.3, 7.x before 7.1.3, and 8.x before 8.0.3; and Apple TV before 7.0.3, allows remote attackers to execute arbitrary code or cause a d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4477
|
2024-11-21 11:10 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281864
|
- |
|
apple
|
safari
itunes
iphone_os
tvos
|
WebKit, as used in Apple iOS before 8.1.3; Apple Safari before 6.2.3, 7.x before 7.1.3, and 8.x before 8.0.3; and Apple TV before 7.0.3, allows remote attackers to execute arbitrary code or cause a d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4476
|
2024-11-21 11:10 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281865
|
- |
|
apple
|
iphone_os
|
WebKit, as used in Apple iOS before 8.1.3, does not properly determine scrollbar boundaries during the rendering of FRAME elements, which allows remote attackers to spoof the UI via a crafted web sit…
|
CWE-17
Code
|
CVE-2014-4467
|
2024-11-21 11:10 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281866
|
- |
|
ibm
|
updatexpress_system_packs_installer
serverguide
toolscenter_suite
|
IBM ServerGuide before 9.63, UpdateXpress System Packs Installer (UXSPI) before 9.63, and ToolsCenter Suite before 9.63 place credentials in logs, which allows local users to obtain sensitive informa…
|
CWE-200
Information Exposure
|
CVE-2014-4835
|
2024-11-21 11:10 |
2015-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281867
|
- |
|
emc
|
documentum_wdk
|
EMC Documentum Web Development Kit (WDK) before 6.8 does not properly generate random numbers for a certain parameter related to Webtop components, which makes it easier for remote attackers to condu…
|
CWE-189
Numeric Errors
|
CVE-2014-4639
|
2024-11-21 11:10 |
2015-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281868
|
- |
|
emc
|
documentum_wdk
|
EMC Documentum Web Development Kit (WDK) before 6.8 allows remote attackers to conduct frame-injection attacks and obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2014-4638
|
2024-11-21 11:10 |
2015-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281869
|
- |
|
emc
|
documentum_wdk
|
Open redirect vulnerability in EMC Documentum Web Development Kit (WDK) before 6.8 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified par…
|
NVD-CWE-Other
|
CVE-2014-4637
|
2024-11-21 11:10 |
2015-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281870
|
- |
|
emc
|
documentum_wdk
|
Cross-site request forgery (CSRF) vulnerability in EMC Documentum Web Development Kit (WDK) before 6.8 allows remote attackers to hijack the authentication of arbitrary users for requests that perfor…
|
CWE-352
Origin Validation Error
|
CVE-2014-4636
|
2024-11-21 11:10 |
2015-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
