|
286861
|
- |
|
fedoraproject
|
389_directory_server
|
The SASL authentication functionality in 389 Directory Server before 1.2.11.26 allows remote authenticated users to connect as an arbitrary user and gain privileges via the authzid parameter in a SAS…
|
CWE-287
Improper Authentication
|
CVE-2014-0132
|
2024-11-21 11:01 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286862
|
- |
|
redhat
|
cloudforms
cloudforms_3.0_management_engine
|
The x_button method in the ServiceController (vmdb/app/controllers/service_controller.rb) in Red Hat CloudForms 3.0 Management Engine 5.2 allows remote attackers to execute arbitrary methods via unsp…
|
CWE-94
Code Injection
|
CVE-2014-0057
|
2024-11-21 11:01 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286863
|
- |
|
apache
oracle
canonical
|
http_server
secure_global_desktop
ubuntu_linux
|
The log_cookie function in mod_log_config.c in the mod_log_config module in the Apache HTTP Server before 2.4.8 allows remote attackers to cause a denial of service (segmentation fault and daemon cra…
|
NVD-CWE-noinfo
|
CVE-2014-0098
|
2024-11-21 11:01 |
2014-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286864
|
- |
|
webmin
|
webmin
|
Cross-site scripting (XSS) vulnerability in view.cgi in Webmin before 1.680 allows remote attackers to inject arbitrary web script or HTML via the search parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-0339
|
2024-11-21 11:01 |
2014-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286865
|
- |
|
watchguard
|
fireware
|
Multiple cross-site scripting (XSS) vulnerabilities in the firewall policy management pages in WatchGuard Fireware XTM before 11.8.3 allow remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2014-0338
|
2024-11-21 11:01 |
2014-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286866
|
- |
|
libssh
|
libssh
|
The RAND_bytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator (PRNG), which causes the state to be shared be…
|
CWE-310
Cryptographic Issues
|
CVE-2014-0017
|
2024-11-21 11:01 |
2014-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286867
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 8 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0324
|
2024-11-21 11:01 |
2014-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286868
|
- |
|
microsoft
|
windows_xp
windows_server_2008
windows_server_2012
windows_rt
windows_8.1
windows_7
windows_rt_8.1
windows_vista
windows_8
windows_server_2003
|
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windo…
|
CWE-200
Information Exposure
|
CVE-2014-0323
|
2024-11-21 11:01 |
2014-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286869
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrupti…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0321
|
2024-11-21 11:01 |
2014-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286870
|
- |
|
microsoft
|
silverlight
|
Microsoft Silverlight 5 before 5.1.30214.0 and Silverlight 5 Developer Runtime before 5.1.30214.0 allow attackers to bypass the DEP and ASLR protection mechanisms via unspecified vectors, aka "Silver…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0319
|
2024-11-21 11:01 |
2014-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
