|
281581
|
- |
|
qpr
|
portal
|
Multiple cross-site scripting (XSS) vulnerabilities in the note-creation page in QPR Portal 2014.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2)…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8266
|
2024-11-21 11:18 |
2015-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281582
|
- |
|
vmware
|
player
fusion
workstation
esxi
|
VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, VMware Fusion 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allow host OS users to gain host OS privileges or cause a denial…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8370
|
2024-11-21 11:18 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281583
|
- |
|
gnome
opensuse
|
vala
opensuse
|
The Gst.MapInfo function in Vala 0.26.0 and 0.26.1 uses an incorrect buffer length declaration for the Gstreamer bindings, which allows context-dependent attackers to cause a denial of service (crash…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8154
|
2024-11-21 11:18 |
2015-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281584
|
- |
|
jasper_project
debian
redhat
opensuse
|
jasper
debian_linux
enterprise_linux
opensuse
|
Multiple stack-based buffer overflows in jpc_qmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 200…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8158
|
2024-11-21 11:18 |
2015-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281585
|
- |
|
opensuse
debian
redhat
jasper_project
|
opensuse
debian_linux
enterprise_linux
jasper
|
Off-by-one error in the jpc_dec_process_sot function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2…
|
CWE-189
Numeric Errors
|
CVE-2014-8157
|
2024-11-21 11:18 |
2015-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281586
|
- |
|
opensuse
midgard-project
|
opensuse
midgard2
|
The default D-Bus access control rule in Midgard2 10.05.7.1 allows local users to send arbitrary method calls or signals to any process on the system bus and possibly execute arbitrary code with root…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8148
|
2024-11-21 11:18 |
2015-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281587
|
- |
|
google
|
chrome
|
The AppCacheUpdateJob::URLFetcher::OnResponseStarted function in content/browser/appcache/appcache_update_job.cc in Google Chrome before 40.0.2214.91 proceeds with AppCache caching for SSL sessions e…
|
CWE-310
Cryptographic Issues
|
CVE-2014-7948
|
2024-11-21 11:18 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281588
|
- |
|
google
|
chrome
|
OpenJPEG before r2944, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PDF document, related to j2k.c, …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-7947
|
2024-11-21 11:18 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281589
|
- |
|
google
|
chrome
|
The RenderTable::simplifiedNormalFlowLayout function in core/rendering/RenderTable.cpp in Blink, as used in Google Chrome before 40.0.2214.91, skips captions during table layout in certain situations…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-7946
|
2024-11-21 11:18 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281590
|
- |
|
google
|
chrome
|
OpenJPEG before r2908, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PDF document, related to j2k.c, …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-7945
|
2024-11-21 11:18 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
