|
284581
|
- |
|
unitrends
|
enterprise_backup
|
Unitrends Enterprise Backup 7.3.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the comm parameter to recoveryconsole/bpl/snmpd.php.
|
CWE-78
OS Command
|
CVE-2014-3008
|
2024-11-21 11:07 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284582
|
- |
|
xen
|
xen
|
The vgic_distr_mmio_write function in the virtual guest interrupt controller (GIC) distributor (arch/arm/vgic.c) in Xen 4.4.x, when running on an ARM system, allows local guest users to cause a denia…
|
CWE-20
Improper Input Validation
|
CVE-2014-2986
|
2024-11-21 11:07 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284583
|
- |
|
gnustep
|
base
|
Tools/gdomap.c in gdomap in GNUstep Base 1.24.6 and earlier, when run in daemon mode, does not properly handle the file descriptor for the logger, which allows remote attackers to cause a denial of s…
|
CWE-20
Improper Input Validation
|
CVE-2014-2980
|
2024-11-21 11:07 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284584
|
- |
|
westerndigital
|
arkeia_virtual_appliance_firmware
|
Directory traversal vulnerability in opt/arkeia/wui/htdocs/index.php in the WD Arkeia virtual appliance (AVA) with firmware before 10.2.9 allows remote attackers to read arbitrary files and execute a…
|
CWE-22
Path Traversal
|
CVE-2014-2846
|
2024-11-21 11:07 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284585
|
- |
|
pythonware
python
|
python_imaging_library
pillow
|
Python Image Library (PIL) 1.1.7 and earlier and Pillow 2.3 might allow remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors related to CVE-2014-1932, possib…
|
CWE-78
OS Command
|
CVE-2014-3007
|
2024-11-21 11:07 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284586
|
- |
|
acunetix
|
web_vulnerability_scanner
|
Stack-based buffer overflow in Acunetix Web Vulnerability Scanner (WVS) 8 build 20120704 allows remote attackers to execute arbitrary code via an HTML file containing an IMG element with a long URL (…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2994
|
2024-11-21 11:07 |
2014-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284587
|
- |
|
linux
|
linux_kernel
|
Off-by-one error in the bpf_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 3.1.8, when BPF JIT is enabled, allows local users to cause a denial of service (system cras…
|
CWE-189
Numeric Errors
|
CVE-2014-2889
|
2024-11-21 11:07 |
2014-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284588
|
- |
|
birebin
|
birebin.com_app
|
The Birebin.com application for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted c…
|
CWE-310
Cryptographic Issues
|
CVE-2014-2993
|
2024-11-21 11:07 |
2014-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284589
|
- |
|
misli
|
misli.com_app
|
The Misli.com application for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted cer…
|
CWE-310
Cryptographic Issues
|
CVE-2014-2992
|
2024-11-21 11:07 |
2014-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284590
|
- |
|
xcloner
|
xcloner
|
XCloner Standalone 3.5 and earlier, when enable_db_backup and sql_mem are enabled, allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the dbbackup_co…
|
CWE-94
Code Injection
|
CVE-2014-2996
|
2024-11-21 11:07 |
2014-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
