|
280421
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in PDFium, as used in Google Chrome before 39.0.2171.65, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF …
|
CWE-17
Code
|
CVE-2014-7902
|
2024-11-21 11:18 |
2014-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280422
|
- |
|
google
|
chrome
|
Integer overflow in the opj_t2_read_packet_data function in fxcodec/fx_libopenjpeg/libopenjpeg20/t2.c in OpenJPEG in PDFium, as used in Google Chrome before 39.0.2171.65, allows remote attackers to c…
|
CWE-189
Numeric Errors
|
CVE-2014-7901
|
2024-11-21 11:18 |
2014-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280423
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in the CPDF_Parser::IsLinearizedFile function in fpdfapi/fpdf_parser/fpdf_parser_parser.cpp in PDFium, as used in Google Chrome before 39.0.2171.65, allows remote attacke…
|
CWE-399
Resource Management Errors
|
CVE-2014-7900
|
2024-11-21 11:18 |
2014-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280424
|
- |
|
google
|
chrome
|
Google Chrome before 38.0.2125.101 allows remote attackers to spoof the address bar by placing a blob: substring at the beginning of the URL, followed by the original URI scheme and a long username s…
|
CWE-20
Improper Input Validation
|
CVE-2014-7899
|
2024-11-21 11:18 |
2014-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280425
|
- |
|
cisco
|
unified_computing_system
|
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Integrated Management Controller in Cisco Unified Computing System allows remote attackers to hijack the authentication o…
|
CWE-352
Origin Validation Error
|
CVE-2014-7996
|
2024-11-21 11:18 |
2014-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280426
|
- |
|
opensuse
rubyonrails
|
opensuse
ruby_on_rails
rails
|
Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4…
|
CWE-22
Path Traversal
|
CVE-2014-7829
|
2024-11-21 11:18 |
2014-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280427
|
- |
|
freedesktop
debian
mageia_project
canonical
|
dbus
debian_linux
mageia
ubuntu_linux
|
D-Bus 1.3.0 through 1.6.x before 1.6.26, 1.8.x before 1.8.10, and 1.9.x before 1.9.2 allows local users to cause a denial of service (prevention of new connections and connection drop) by queuing the…
|
CWE-399
Resource Management Errors
|
CVE-2014-7824
|
2024-11-21 11:18 |
2014-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280428
|
- |
|
cisco
|
ios
|
The DLSw implementation in Cisco IOS does not initialize packet buffers, which allows remote attackers to obtain sensitive credential information from process memory via a session on TCP port 2067, a…
|
CWE-200
Information Exposure
|
CVE-2014-7992
|
2024-11-21 11:18 |
2014-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280429
|
- |
|
cisco
|
ios
|
Cisco IOS on Aironet access points, when "dot11 aaa authenticator" debugging is enabled, allows remote attackers to cause a denial of service via a malformed EAP packet, aka Bug ID CSCul15509.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-7998
|
2024-11-21 11:18 |
2014-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280430
|
- |
|
cisco
|
ios
|
The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cau…
|
CWE-399
Resource Management Errors
|
CVE-2014-7997
|
2024-11-21 11:18 |
2014-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
