|
284241
|
- |
|
zenoss
|
zenoss
|
Open redirect vulnerability in zport/acl_users/cookieAuthHelper/login_form in Zenoss 4.2.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in t…
|
CWE-20
Improper Input Validation
|
CVE-2014-3739
|
2024-11-21 11:08 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284242
|
- |
|
zenoss
|
zenoss
|
Cross-site scripting (XSS) vulnerability in Zenoss 4.2.5 allows remote attackers to inject arbitrary web script or HTML via the title of a device.
|
CWE-79
Cross-site Scripting
|
CVE-2014-3738
|
2024-11-21 11:08 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284243
|
- |
|
juniper
|
junos_space
junos_space_ja1500_appliance
junos_space_ja2500_appliance
|
Unspecified vulnerability in Juniper Junos Space before 13.3R1.8, when the firewall in disabled, allows remote attackers to execute arbitrary commands via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2014-3412
|
2024-11-21 11:08 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284244
|
- |
|
microfocus
|
sentinel
sentinel_agent_manager
|
Directory traversal vulnerability in the DumpToFile method in the NQMcsVarSet ActiveX control in Agent Manager in NetIQ Sentinel allows remote attackers to create arbitrary files, and consequently ex…
|
CWE-22
Path Traversal
|
CVE-2014-3460
|
2024-11-21 11:08 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284245
|
- |
|
realnetworks
|
realplayer
|
The GetGUID function in codecs/dmp4.dll in RealNetworks RealPlayer 16.0.3.51 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (write access violation and app…
|
CWE-94
Code Injection
|
CVE-2014-3444
|
2024-11-21 11:08 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284246
|
- |
|
sap
|
netweaver
|
SAP NetWeaver 7.20 and earlier allows remote attackers to read arbitrary SAP Central User Administration (SAP CUA) tables via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2014-3787
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284247
|
- |
|
intel
|
indeo_video
|
ir41_32.ax 4.51.16.3 for Intel Indeo Video 4.5 allows remote attackers to cause a denial of service (crash) via a crafted .avi file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3735
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284248
|
- |
|
xen
|
xen
|
Xen 4.4.x does not properly validate the load address for 64-bit ARM guest kernels, which allows local users to read system memory or cause a denial of service (crash) via a crafted kernel, which tri…
|
CWE-20
Improper Input Validation
|
CVE-2014-3717
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284249
|
- |
|
xen
|
xen
|
Xen 4.4.x does not properly check alignment, which allows local users to cause a denial of service (crash) via an unspecified field in a DTB header in a 32-bit guest kernel.
|
CWE-20
Improper Input Validation
|
CVE-2014-3716
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284250
|
- |
|
xen
|
xen
|
Buffer overflow in Xen 4.4.x allows local users to read system memory or cause a denial of service (crash) via a crafted 32-bit guest kernel, related to searching for an appended DTB.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3715
|
2024-11-21 11:08 |
2014-05-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
