|
279631
|
- |
|
fedoraproject
gnu
canonical
|
fedora
binutils
ubuntu_linux
|
Heap-based buffer overflow in the pe_print_edata function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly have other unspe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8502
|
2024-11-21 11:19 |
2014-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279632
|
- |
|
gnu
canonical
fedoraproject
|
binutils
ubuntu_linux
fedora
|
The _bfd_XXi_swap_aouthdr_in function in bfd/peXXigen.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) and possibly have other unspecified…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8501
|
2024-11-21 11:19 |
2014-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279633
|
- |
|
fedoraproject
canonical
gnu
|
fedora
ubuntu_linux
binutils
|
The setup_group function in bfd/elf.c in libbfd in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted section g…
|
CWE-94
Code Injection
|
CVE-2014-8485
|
2024-11-21 11:19 |
2014-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279634
|
- |
|
gnu
fedoraproject
canonical
|
binutils
fedora
ubuntu_linux
|
The srec_scan function in bfd/srec.c in libdbfd in GNU binutils before 2.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a small S-record.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8484
|
2024-11-21 11:19 |
2014-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279635
|
- |
|
urs_wolfer
kde
opensuse
|
kwebkitpart
kde-runtime
kio-extras
opensuse
|
Multiple cross-site scripting (XSS) vulnerabilities in KDE-Runtime 4.14.3 and earlier, kwebkitpart 1.3.4 and earlier, and kio-extras 5.1.1 and earlier allow remote attackers to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8600
|
2024-11-21 11:19 |
2014-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279636
|
- |
|
entrypass
|
n5200_active_network_control_panel
|
EntryPass N5200 Active Network Control Panel does not properly restrict access, which allows remote attackers to obtain the administrator username and password, and possibly other sensitive informati…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8868
|
2024-11-21 11:19 |
2014-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279637
|
- |
|
kde
|
plasma-desktop
kde-workspace
|
The KDE Clock KCM policykit helper in kde-workspace before 4.11.14 and plasma-desktop before 5.1.1 allows local users to gain privileges via a crafted ntpUtility (ntp utility name) argument.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8651
|
2024-11-21 11:19 |
2014-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279638
|
- |
|
creative_minds
|
cm_download_manager
|
The alterSearchQuery function in lib/controllers/CmdownloadController.php in the CreativeMinds CM Downloads Manager plugin before 2.0.4 for WordPress allows remote attackers to execute arbitrary PHP …
|
CWE-94
Code Injection
|
CVE-2014-8877
|
2024-11-21 11:19 |
2014-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279639
|
- |
|
nextendweb
|
nextend_facebook_connect
|
Cross-site scripting (XSS) vulnerability in nextend-facebook-settings.php in the Nextend Facebook Connect plugin before 1.5.1 for WordPress allows remote attackers to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8800
|
2024-11-21 11:19 |
2014-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279640
|
- |
|
modx
|
modx_revolution
|
MODX Revolution 2.x before 2.2.15 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive informat…
|
CWE-200
Information Exposure
|
CVE-2014-8775
|
2024-11-21 11:19 |
2014-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
