|
290111
|
- |
|
gomlab
|
gom_media_player
|
GOM Media Player 2.2.57.5189 and earlier allows remote attackers to cause a denial of service (crash) via a crafted .ogg file.
|
CWE-20
Improper Input Validation
|
CVE-2014-3216
|
2024-11-21 11:07 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290112
|
- |
|
cisco
|
webex_meetings_server
|
Cisco WebEx Meeting Server does not properly restrict the content of URLs, which allows remote authenticated users to obtain sensitive information by reading (1) web-server access logs, (2) web-serve…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3294
|
2024-11-21 11:07 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290113
|
- |
|
cisco
|
unified_communications_manager
|
The Real Time Monitoring Tool (RTMT) implementation in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to (1) read or (2) delete arbitrary files via a crafted URL,…
|
CWE-20
Improper Input Validation
|
CVE-2014-3292
|
2024-11-21 11:07 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290114
|
- |
|
cisco
|
ironport_asyncos
web_security_appliance
content_security_management_appliance
email_security_appliance_firmware
|
Cross-site scripting (XSS) vulnerability in the web management interface in Cisco AsyncOS on the Email Security Appliance (ESA) 8.0, Web Security Appliance (WSA) 8.0 (.5 Hot Patch 1) and earlier, and…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3289
|
2024-11-21 11:07 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290115
|
- |
|
cisco
|
unified_communications_manager
|
SQL injection vulnerability in BulkViewFileContentsAction.java in the Java interface in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to execute arbitrary SQL co…
|
CWE-89
SQL Injection
|
CVE-2014-3287
|
2024-11-21 11:07 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290116
|
- |
|
ibm
|
cics_transaction_server
|
IBM CICS Transaction Server 3.1, 3.2, 4.1, 4.2, and 5.1 on z/OS does not properly implement CEMT transactions, which allows remote authenticated users to cause a denial of service (storage overlay) b…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3042
|
2024-11-21 11:07 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290117
|
- |
|
ibm
|
system_storage_virtualization_engine_ts7700_firmware
system_storage_virtualization_engine_ts7700
|
Unspecified vulnerability on the IBM System Storage Virtualization Engine TS7700 allows local users to gain privileges by leveraging the TSSC service-user role to enter a crafted SSH command.
|
NVD-CWE-noinfo
|
CVE-2014-3048
|
2024-11-21 11:07 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290118
|
- |
|
ibm
|
spss_modeler
|
IBM SPSS Modeler 16.0 before 16.0.0.1 on UNIX does not properly drop group privileges, which allows local users to bypass intended file-access restrictions by leveraging (1) gid 0 or (2) root's group…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3038
|
2024-11-21 11:07 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290119
|
- |
|
ibm
|
api_management
|
Unspecified vulnerability in IBM API Management 3.0.0.0, when basic authentication is used for APIs, allows remote attackers to bypass intended restrictions on topology access, and obtain sensitive i…
|
NVD-CWE-noinfo
|
CVE-2014-3036
|
2024-11-21 11:07 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290120
|
- |
|
cisco
|
wireless_lan_controller
|
Cisco Wireless LAN Controller (WLC) devices allow remote attackers to cause a denial of service (NULL pointer dereference and device restart) via a zero value in Cisco Discovery Protocol packet data …
|
CWE-20
Improper Input Validation
|
CVE-2014-3291
|
2024-11-21 11:07 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
