|
258481
|
- |
|
emc
|
vplex_geosynchrony
|
The GUI in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 does not properly validate session-timeout values, which might make it easier for remote attackers to execute arbitrary code by leveraging an …
|
CWE-20
Improper Input Validation
|
CVE-2014-0633
|
2014-04-1 23:13 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258482
|
- |
|
sonatype
|
nexus
|
Unspecified vulnerability in Sonatype Nexus OSS and Pro 2.4.0 through 2.7.1 allows attackers to create arbitrary user accounts via unknown vectors related to "an unauthenticated execution path."
|
NVD-CWE-noinfo
|
CVE-2014-2034
|
2014-04-1 21:55 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258483
|
- |
|
jgaa
|
warftpd
|
Unspecified vulnerability in War FTP Daemon (warftpd) 1.82, when running as a Windows service, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unk…
|
NVD-CWE-noinfo
|
CVE-2013-2278
|
2014-04-1 20:13 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258484
|
- |
|
jgaa
|
warftpd
|
Format string vulnerability in War FTP Daemon (warftpd) 1.82 RC 12 allows remote authenticated users to cause a denial of service (crash) via format string specifiers in a LIST command.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2009-5141
|
2014-04-1 20:07 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258485
|
- |
|
freetype
canonical
|
freetype
ubuntu_linux
|
The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer functions in cff/cf2ft.c in FreeType before 2.5.3 do not properly check if a subroutine exists, which allows remote attackers to c…
|
CWE-20
Improper Input Validation
|
CVE-2014-2241
|
2014-04-1 15:29 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258486
|
- |
|
blackberry
|
qnx_neutrino_rtos
|
/sbin/pppoectl in BlackBerry QNX Neutrino RTOS 6.4.x and 6.5.x allows local users to obtain sensitive information by reading "bad parameter" lines in error messages, as demonstrated by reading the ro…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2534
|
2014-04-1 15:29 |
2014-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258487
|
- |
|
intel
mcafee
|
expressway_cloud_access_360
cloud_identity_manager
cloud_single_sign_on
|
Directory traversal vulnerability in McAfee Cloud Identity Manager 3.0, 3.1, and 3.5.1, McAfee Cloud Single Sign On (MCSSO) before 4.0.1, and Intel Expressway Cloud Access 360-SSO 2.1 and 2.5 allows …
|
CWE-22
Path Traversal
|
CVE-2014-2536
|
2014-04-1 15:29 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258488
|
- |
|
intel
mcafee
|
expressway_cloud_access_360
cloud_identity_manager
cloud_single_sign_on
|
Per: https://kc.mcafee.com/corporate/index?page=content&id=SB10066
"Affected Versions:
Intel Expressway Cloud Access 360-SSO 2.1, 2.5
McAfee Cloud Identity Manager 3.0, 3.1, 3.5.1
McAfe…
|
CWE-22
Path Traversal
|
CVE-2014-2536
|
2014-04-1 15:29 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258489
|
- |
|
sophos
|
unified_threat_management_software
unified_threat_management
|
Memory leak in the TCP stack in the kernel in Sophos UTM before 9.109 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
|
CWE-399
Resource Management Errors
|
CVE-2014-2537
|
2014-04-1 15:29 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258490
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 28.0.1 on Android processes a file: URL by copying a local file onto the SD card, which allows attackers to obtain sensitive information from the Firefox profile directory via …
|
CWE-200
Information Exposure
|
CVE-2014-1515
|
2014-04-1 15:28 |
2014-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
