|
284551
|
- |
|
freebsd
|
freebsd
|
The sctp module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a cr…
|
NVD-CWE-Other
|
CVE-2014-8613
|
2024-11-21 11:19 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284552
|
- |
|
freebsd
|
freebsd
|
Multiple array index errors in the Stream Control Transmission Protocol (SCTP) module in FreeBSD 10.1 before p5, 10.0 before p17, 9.3 before p9, and 8.4 before p23 allow local users to (1) gain privi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8612
|
2024-11-21 11:19 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284553
|
- |
|
ibm
|
security_appscan
|
IBM Security AppScan Standard 8.x and 9.x before 9.0.1.1 FP1 does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensiti…
|
CWE-310
Cryptographic Issues
|
CVE-2014-8918
|
2024-11-21 11:19 |
2015-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284554
|
- |
|
mozilla
fedoraproject
|
bugzilla
fedora
|
Bugzilla before 4.0.16, 4.1.x and 4.2.x before 4.2.12, 4.3.x and 4.4.x before 4.4.7, and 5.x before 5.0rc1 allows remote authenticated users to execute arbitrary commands by leveraging the editcompon…
|
CWE-77
Command Injection
|
CVE-2014-8630
|
2024-11-21 11:19 |
2015-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284555
|
- |
|
apple
|
iphone_os
|
The iTunes Store component in Apple iOS before 8.1.3 allows remote attackers to bypass a Safari sandbox protection mechanism by leveraging redirection of an SSL URL to the iTunes Store.
|
CWE-310
Cryptographic Issues
|
CVE-2014-8840
|
2024-11-21 11:19 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284556
|
- |
|
apple
|
mac_os_x
|
Spotlight in Apple OS X before 10.10.2 does not enforce the Mail "Load remote content in messages" configuration, which allows remote attackers to discover recipient IP addresses by including an inli…
|
CWE-200
Information Exposure
|
CVE-2014-8839
|
2024-11-21 11:19 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284557
|
- |
|
apple
|
mac_os_x
|
The Security component in Apple OS X before 10.10.2 does not properly process cached information about app certificates, which allows attackers to bypass the Gatekeeper protection mechanism by levera…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8838
|
2024-11-21 11:19 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284558
|
- |
|
apple
|
mac_os_x
|
Multiple unspecified vulnerabilities in the Bluetooth driver in Apple OS X before 10.10.2 allow attackers to execute arbitrary code in a privileged context via a crafted app.
|
NVD-CWE-noinfo
|
CVE-2014-8837
|
2024-11-21 11:19 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284559
|
- |
|
apple
|
mac_os_x
|
The Bluetooth driver in Apple OS X before 10.10.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (arbitrary-size bzero of kernel memory) via a crafted…
|
CWE-20
Improper Input Validation
|
CVE-2014-8836
|
2024-11-21 11:19 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284560
|
- |
|
apple
|
mac_os_x
|
The xpc_data_get_bytes function in libxpc in Apple OS X before 10.10.2 does not verify that a dictionary's Attributes key has the xpc_data data type, which allows attackers to execute arbitrary code …
|
CWE-19
Data Processing Errors
|
CVE-2014-8835
|
2024-11-21 11:19 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
