|
285151
|
- |
|
apple
|
tvos
iphone_os
|
The Configuration Profiles component in Apple iOS before 7.1 and Apple TV before 6.1 does not properly evaluate the expiration date of a mobile configuration profile, which allows attackers to bypass…
|
CWE-20
Improper Input Validation
|
CVE-2014-1267
|
2024-11-21 11:03 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285152
|
- |
|
ibm
|
aix
|
ftpd in IBM AIX 7.1.1 before SP10 and 7.1.2 before SP5, when a Workload Partition (aka WPAR) for AIX 5.2 or 5.3 is used, allows remote authenticated users to bypass intended permission settings and m…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0899
|
2024-11-21 11:03 |
2014-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285153
|
- |
|
telligent
|
evolution
|
Cross-site scripting (XSS) vulnerability in controlpanel/loading.aspx in Telligent Evolution before 6.1.19.36103, 7.x before 7.1.12.36162, 7.5.x, and 7.6.x before 7.6.7.36651 allows remote attackers …
|
CWE-79
Cross-site Scripting
|
CVE-2014-1223
|
2024-11-21 11:03 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285154
|
- |
|
apple
|
safari
mac_os_x
mac_os_x_server
webkit
|
WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1270
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285155
|
- |
|
apple
|
safari
mac_os_x
mac_os_x_server
webkit
|
WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1269
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285156
|
- |
|
apple
|
safari
mac_os_x
mac_os_x_server
webkit
|
WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1268
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285157
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
The systemsetup program in the Date and Time subsystem in Apple OS X before 10.9.2 allows local users to bypass intended access restrictions by changing the current time on the system clock.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1265
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285158
|
- |
|
apple
|
mac_os_x
|
Finder in Apple OS X before 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstan…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1264
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285159
|
- |
|
apple
|
mac_os_x
|
curl and libcurl 7.27.0 through 7.35.0, when using the SecureTransport/Darwinssl backend, as used in in Apple OS X 10.9.x before 10.9.2, does not verify that the server hostname matches a domain name…
|
CWE-310
Cryptographic Issues
|
CVE-2014-1263
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285160
|
- |
|
apple
|
mac_os_x
|
Apple Type Services (ATS) in Apple OS X before 10.9.2 allows attackers to bypass the App Sandbox protection mechanism via crafted Mach messages that trigger memory corruption.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1262
|
2024-11-21 11:03 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
