|
288011
|
- |
|
redhat
opensuse
|
enterprise_linux
opensuse
enterprise_virtualization
libvirt
|
libvirt 1.0.0 through 1.2.x before 1.2.5, when fine grained access control is enabled, allows local users to read arbitrary files via a crafted XML document containing an XML external entity declarat…
|
CWE-20
Improper Input Validation
|
CVE-2014-5177
|
2024-11-21 11:11 |
2014-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288012
|
- |
|
wireshark
|
wireshark
|
The dissect_ber_constrained_bitstring function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.10.x before 1.10.9 does not properly validate padding values, which allows rem…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-5165
|
2024-11-21 11:11 |
2014-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288013
|
- |
|
wireshark
|
wireshark
|
The rlc_decode_li function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.10.x before 1.10.9 initializes a certain structure member only after this member is used, which allows r…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-5164
|
2024-11-21 11:11 |
2014-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288014
|
- |
|
wireshark
|
wireshark
|
The APN decode functionality in (1) epan/dissectors/packet-gtp.c and (2) epan/dissectors/packet-gsm_a_gm.c in the GTP and GSM Management dissectors in Wireshark 1.10.x before 1.10.9 does not complete…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-5163
|
2024-11-21 11:11 |
2014-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288015
|
- |
|
wireshark
|
wireshark
|
The read_new_line function in wiretap/catapult_dct2000.c in the Catapult DCT2000 dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' and '\r' characters, which allows remote atta…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-5162
|
2024-11-21 11:11 |
2014-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288016
|
- |
|
wireshark
|
wireshark
|
The dissect_log function in plugins/irda/packet-irda.c in the IrDA dissector in Wireshark 1.10.x before 1.10.9 does not properly strip '\n' characters, which allows remote attackers to cause a denial…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-5161
|
2024-11-21 11:11 |
2014-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288017
|
- |
|
hp
|
data_protector
|
Multiple directory traversal vulnerabilities in crs.exe in the Cell Request Service in HP Data Protector allow remote attackers to create arbitrary files via an opcode-1091 request, or create or dele…
|
CWE-22
Path Traversal
|
CVE-2014-5160
|
2024-11-21 11:11 |
2014-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288018
|
- |
|
linux
suse
redhat
canonical
|
linux_kernel
linux_enterprise_desktop
linux_enterprise_server
linux_enterprise_real_time_extension
enterprise_linux_server_aus
enterprise_linux_server_tus
enterprise_linux_eus
ub…
|
The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dere…
|
CWE-476
NULL Pointer Dereference
|
CVE-2014-5077
|
2024-11-21 11:11 |
2014-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288019
|
- |
|
linux
redhat
|
linux_kernel
enterprise_linux_server_aus
enterprise_linux_server_tus
enterprise_linux_eus
|
The mountpoint_last function in fs/namei.c in the Linux kernel before 3.15.8 does not properly maintain a certain reference count during attempts to use the umount system call in conjunction with a s…
|
CWE-59
Link Following
|
CVE-2014-5045
|
2024-11-21 11:11 |
2014-08-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288020
|
- |
|
sap
|
fi_manager_self-service
|
SAP FI Manager Self-Service has a hard-coded user name, which makes it easier for remote attackers to obtain access via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2014-5176
|
2024-11-21 11:11 |
2014-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
