|
258521
|
- |
|
openstack
|
compute
|
The VMWare driver in OpenStack Compute (Nova) 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota limit and cause a denia…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2573
|
2014-03-26 22:41 |
2014-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258522
|
- |
|
siemens
|
simatic_s7-1500_cpu_firmware
|
Cross-site request forgery (CSRF) vulnerability on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 and SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allows remote attack…
|
CWE-352
Origin Validation Error
|
CVE-2014-2249
|
2014-03-26 13:57 |
2014-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258523
|
- |
|
libpng
|
libpng
|
The png_push_read_chunk function in pngpread.c in the progressive decoder in libpng 1.6.x through 1.6.9 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via an…
|
CWE-189
Numeric Errors
|
CVE-2014-0333
|
2014-03-26 13:56 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258524
|
- |
|
libssh
|
libssh
|
The RAND_bytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator (PRNG), which causes the state to be shared be…
|
CWE-310
Cryptographic Issues
|
CVE-2014-0017
|
2014-03-26 13:55 |
2014-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258525
|
- |
|
roundcube
|
webmail
|
steps/utils/save_pref.inc in Roundcube webmail before 0.8.7 and 0.9.x before 0.9.5 allows remote attackers to modify configuration settings via the _session parameter, which can be leveraged to read …
|
CWE-89
SQL Injection
|
CVE-2013-6172
|
2014-03-26 13:54 |
2013-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258526
|
- |
|
symantec
|
endpoint_protection_manager
protection_center
|
The management console in Symantec Endpoint Protection Manager (SEPM) 11.0 before 11.0.7405.1424 and 12.1 before 12.1.4023.4080, and Symantec Protection Center Small Business Edition 12.x before 12.1…
|
NVD-CWE-Other
|
CVE-2013-5014
|
2014-03-26 13:51 |
2014-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258527
|
- |
|
gnu
|
gnutls
|
The TLS implementation in GnuTLS before 2.12.23, 3.0.x before 3.0.28, and 3.1.x before 3.1.7 does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the pr…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1619
|
2014-03-26 13:46 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258528
|
- |
|
adobe
|
flash_player
flash_player_for_android
adobe_air_sdk_and_compiler
adobe_air_sdk
adobe_air
|
Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X, before 10.3.183.68 and 11.x before 11.2.202.275 on Linux, before 11.1.111.44 on Android 2.x and 3.x, and be…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1371
|
2014-03-26 13:45 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258529
|
- |
|
adobe
|
flash_player
flash_player_for_android
adobe_air_sdk_and_compiler
adobe_air_sdk
adobe_air
|
Heap-based buffer overflow in Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X, before 10.3.183.68 and 11.x before 11.2.202.275 on Linux, before 11.1.111.44 …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1375
|
2014-03-26 13:45 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258530
|
- |
|
adobe
|
flash_player
adobe_air
adobe_air_sdk
|
Adobe Flash Player before 10.3.183.75 and 11.x before 11.7.700.169 on Windows and Mac OS X, before 10.3.183.75 and 11.x before 11.2.202.280 on Linux, before 11.1.111.50 on Android 2.x and 3.x, and be…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1378
|
2014-03-26 13:45 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
