|
284071
|
- |
|
d-bus_project
freedesktop
opensuse
|
d-bus
dbus
opensuse
|
Off-by-one error in D-Bus 1.3.0 through 1.6.x before 1.6.24 and 1.8.x before 1.8.8, when running on a 64-bit system and the max_message_unix_fds limit is set to an odd number, allows local users to c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3635
|
2024-11-21 11:08 |
2014-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284072
|
- |
|
redhat
suse
|
spacewalk-java
satellite
satellite_with_embedded_oracle
manager
manager_server
|
Cross-site scripting (XSS) vulnerability in spacewalk-java 1.2.39, 1.7.54, and 2.0.2 in Spacewalk and Red Hat Network (RHN) Satellite 5.4 through 5.6 allows remote attackers to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3595
|
2024-11-21 11:08 |
2014-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284073
|
- |
|
powerdns
|
powerdns_recursor
|
Unspecified vulnerability in PowerDNS Recursor (aka pdns_recursor) 3.6.x before 3.6.1 allows remote attackers to cause a denial of service (crash) via an unknown sequence of malformed packets.
|
NVD-CWE-noinfo
|
CVE-2014-3614
|
2024-11-21 11:08 |
2014-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284074
|
- |
|
vmware
|
vcloud_networking_and_security
nsx
|
VMware NSX 6.0 before 6.0.6, and vCloud Networking and Security (vCNS) 5.1 before 5.1.4.2 and 5.5 before 5.5.3, does not properly validate input, which allows attackers to obtain sensitive informatio…
|
CWE-20
Improper Input Validation
|
CVE-2014-3796
|
2024-11-21 11:08 |
2014-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284075
|
- |
|
moodle
|
moodle
|
The forum_print_latest_discussions function in mod/forum/lib.php in Moodle through 2.4.11, 2.5.x before 2.5.8, 2.6.x before 2.6.5, and 2.7.x before 2.7.2 allows remote authenticated users to bypass t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3617
|
2024-11-21 11:08 |
2014-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284076
|
- |
|
spiceworks
|
spiceworks
|
Cross-site scripting (XSS) vulnerability in SpiceWorks before 7.2.00195 allows remote authenticated users to inject arbitrary web script or HTML via the Summary field in a ticket request to the porta…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3740
|
2024-11-21 11:08 |
2014-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284077
|
- |
|
squid-cache
|
squid
|
HttpHdrRange.cc in Squid 3.x before 3.3.12 and 3.4.x before 3.4.6 allows remote attackers to cause a denial of service (crash) via a request with crafted "Range headers with unidentifiable byte-range…
|
CWE-20
Improper Input Validation
|
CVE-2014-3609
|
2024-11-21 11:08 |
2014-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284078
|
- |
|
procmail
canonical
|
procmail
ubuntu_linux
|
Heap-based buffer overflow in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted email header, relate…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3618
|
2024-11-21 11:08 |
2014-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284079
|
- |
|
apache
|
poi
|
Apache POI before 3.10.1 and 3.11.x before 3.11-beta2 allows remote attackers to cause a denial of service (CPU consumption and crash) via a crafted OOXML file, aka an XML Entity Expansion (XEE) atta…
|
NVD-CWE-Other
|
CVE-2014-3574
|
2024-11-21 11:08 |
2014-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284080
|
- |
|
apache
|
poi
|
The OPC SAX setup in Apache POI before 3.10.1 allows remote attackers to read arbitrary files via an OpenXML file containing an XML external entity declaration in conjunction with an entity reference…
|
NVD-CWE-Other
|
CVE-2014-3529
|
2024-11-21 11:08 |
2014-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
