|
283681
|
- |
|
sas
|
base_sas
|
Buffer overflow in the client application in Base SAS 9.2 TS2M3, SAS 9.3 TS1M1 and TS1M2, and SAS 9.4 TS1M0 allows user-assisted remote attackers to execute arbitrary code via a crafted SAS program.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2262
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283682
|
- |
|
python
apple
|
python
mac_os_x
|
Buffer overflow in the socket.recvfrom_into function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3.4, and 3.4.x before 3.4rc1 allows remote attackers to execute arbitrary code …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1912
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283683
|
- |
|
modx
|
modx_revolution
|
Cross-site scripting (XSS) vulnerability in manager/templates/default/header.tpl in ModX Revolution before 2.2.11 allows remote attackers to inject arbitrary web script or HTML via the "a" parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-2080
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283684
|
- |
|
jenkins
|
jenkins
|
Cross-site scripting (XSS) vulnerability in java/hudson/model/Cause.java in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to inject arbitrary web script or HTML via a …
|
CWE-79
Cross-site Scripting
|
CVE-2014-2067
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283685
|
- |
|
jenkins
|
jenkins
|
Directory traversal vulnerability in the CLI job creation (hudson/cli/CreateJobCommand.java) in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to overwrite arbitrary fi…
|
CWE-22
Path Traversal
|
CVE-2014-2059
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283686
|
- |
|
buddypress
|
buddypress
|
Cross-site scripting (XSS) vulnerability in the BuddyPress plugin before 1.9.2 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the name field to groups/crea…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1888
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283687
|
- |
|
icinga
nagios
|
icinga
nagios
|
Stack-based buffer overflow in the cmd_submitf function in cgi/cmd.c in Nagios Core, possibly 4.0.3rc1 and earlier, and Icinga before 1.8.6, 1.9 before 1.9.5, and 1.10 before 1.10.3 allows remote att…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1878
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283688
|
- |
|
linux
|
linux_kernel
|
arch/s390/kernel/head64.S in the Linux kernel before 3.13.5 on the s390 platform does not properly handle attempted use of the linkage stack, which allows local users to cause a denial of service (sy…
|
CWE-20
Improper Input Validation
|
CVE-2014-2039
|
2024-11-21 11:05 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283689
|
- |
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
The nfs_can_extend_write function in fs/nfs/write.c in the Linux kernel before 3.13.3 relies on a write delegation to extend a write operation without a certain up-to-date verification, which allows …
|
CWE-200
Information Exposure
|
CVE-2014-2038
|
2024-11-21 11:05 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283690
|
- |
|
linux
suse
canonical
|
linux_kernel
linux_enterprise_server
ubuntu_linux
|
The security_context_to_sid_core function in security/selinux/ss/services.c in the Linux kernel before 3.13.4 allows local users to cause a denial of service (system crash) by leveraging the CAP_MAC_…
|
CWE-20
Improper Input Validation
|
CVE-2014-1874
|
2024-11-21 11:05 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
