|
289961
|
- |
|
cisco
|
transport_gateway_installation_software
|
The web framework in Cisco Transport Gateway for Smart Call Home (aka TG-SCH or Transport Gateway Installation Software) 4.0 does not properly check authorization for administrative web pages, which …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3345
|
2024-11-21 11:07 |
2014-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289962
|
- |
|
cisco
|
transport_gateway_installation_software
|
Multiple cross-site scripting (XSS) vulnerabilities in the web framework in Cisco Transport Gateway for Smart Call Home (aka TG-SCH or Transport Gateway Installation Software) 4.0 allow remote attack…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3344
|
2024-11-21 11:07 |
2014-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289963
|
- |
|
google
|
chrome
|
Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC, the sync API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vec…
|
CWE-94
Code Injection
|
CVE-2014-3177
|
2024-11-21 11:07 |
2014-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289964
|
- |
|
google
|
chrome
|
Google Chrome before 37.0.2062.94 does not properly handle the interaction of extensions, IPC, the sync API, and Google V8, which allows remote attackers to execute arbitrary code via unspecified vec…
|
CWE-94
Code Injection
|
CVE-2014-3176
|
2024-11-21 11:07 |
2014-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289965
|
- |
|
google
|
chrome
|
Multiple unspecified vulnerabilities in Google Chrome before 37.0.2062.94 allow attackers to cause a denial of service or possibly have other impact via unknown vectors, related to the load_truetype_…
|
NVD-CWE-noinfo
|
CVE-2014-3175
|
2024-11-21 11:07 |
2014-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289966
|
- |
|
google
|
chrome
|
modules/webaudio/BiquadDSPKernel.cpp in the Web Audio API implementation in Blink, as used in Google Chrome before 37.0.2062.94, does not properly consider concurrent threads during attempts to updat…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3174
|
2024-11-21 11:07 |
2014-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289967
|
- |
|
google
|
chrome
|
The WebGL implementation in Google Chrome before 37.0.2062.94 does not ensure that clear calls interact properly with the state of a draw buffer, which allows remote attackers to cause a denial of se…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3173
|
2024-11-21 11:07 |
2014-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289968
|
- |
|
google
|
chrome
|
The Debugger extension API in browser/extensions/api/debugger/debugger_api.cc in Google Chrome before 37.0.2062.94 does not validate a tab's URL before an attach operation, which allows remote attack…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3172
|
2024-11-21 11:07 |
2014-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289969
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in the V8 bindings in Blink, as used in Google Chrome before 37.0.2062.94, allows remote attackers to cause a denial of service or possibly have unspecified other impact …
|
NVD-CWE-Other
|
CVE-2014-3171
|
2024-11-21 11:07 |
2014-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289970
|
- |
|
google
|
chrome
|
extensions/common/url_pattern.cc in Google Chrome before 37.0.2062.94 does not prevent use of a '\0' character in a host name, which allows remote attackers to spoof the extension permission dialog b…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3170
|
2024-11-21 11:07 |
2014-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
