|
258481
|
- |
|
cisco
|
ios_xr
|
Cisco IOS XR does not properly throttle ICMPv6 redirect packets, which allows remote attackers to cause a denial of service (IPv4 and IPv6 transit outage) via crafted redirect messages, aka Bug ID CS…
|
CWE-20
Improper Input Validation
|
CVE-2014-2144
|
2014-04-7 23:16 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258482
|
- |
|
autodesk
|
sketchbook
sketchbook_express
sketchbook_for_enterprise_2014
sketchbook_pro
|
Heap-based buffer overflow in Autodesk SketchBook for Enterprise 2014, Pro, and Express before 6.25, and Copic Edition before 2.0.2 allows remote attackers to execute arbitrary code via RLE-compresse…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5365
|
2014-04-5 12:56 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258483
|
- |
|
schneider-electric
|
opc_factory_server_tlxcdlfofs
opc_factory_server_tlxcdltofs
opc_factory_server_tlxcdluofs
opc_factory_server_tlxcdstofs
opc_factory_server_tlxcdsuofs
|
Multiple buffer overflows in the OPC Automation 2.0 Server Object ActiveX control in Schneider Electric OPC Factory Server (OFS) TLXCDSUOFS33 3.5 and earlier, TLXCDSTOFS33 3.5 and earlier, TLXCDLUOFS…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0789
|
2014-04-5 02:52 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258484
|
- |
|
cisco
|
ios
ios_xe
|
The IKE implementation in Cisco IOS 15.4(1)T and earlier and IOS XE allows remote attackers to cause a denial of service (security-association drop) via crafted Main Mode packets, aka Bug ID CSCun310…
|
NVD-CWE-noinfo
|
CVE-2014-2143
|
2014-04-5 02:23 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258485
|
- |
|
emc
|
rsa_adaptive_authentication_on-premise
|
Cross-site scripting (XSS) vulnerability in RSA Adaptive Authentication (On-Premise) 6.x and 7.x before 7.1 SP0 P2 allows remote attackers to inject arbitrary web script or HTML via vectors involving…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0638
|
2014-04-5 01:37 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258486
|
- |
|
emc
|
rsa_adaptive_authentication_on-premise
|
Cross-site scripting (XSS) vulnerability in the back-office case-management application in RSA Adaptive Authentication (On-Premise) 6.x and 7.x before 7.1 SP0 P2 allows remote authenticated users to …
|
CWE-79
Cross-site Scripting
|
CVE-2014-0637
|
2014-04-5 01:34 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258487
|
- |
|
crowbar
novell
|
barclamp
suse_cloud
|
Barclamp (aka barclamp-network) 1.7 for the Crowbar Framework, as used in SUSE Cloud 3, does not enable netfilter on bridges when creating new instances, which allows remote attackers to bypass secur…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0592
|
2014-04-5 01:20 |
2014-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258488
|
- |
|
roberta_bramski
|
uploader
|
Multiple cross-site scripting (XSS) vulnerabilities in views/notify.php in the Uploader plugin 1.0.4 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) notify or …
|
CWE-79
Cross-site Scripting
|
CVE-2013-2287
|
2014-04-5 01:01 |
2014-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258489
|
- |
|
koushik_dutta
google
|
superuser
android
|
The CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.3 and 4.4 does not properly restrict the set of users who can execute /system/xbin/su with the --daemon option, which allows…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6770
|
2014-04-4 02:09 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258490
|
- |
|
b2evolution
|
b2evolution
|
Cross-site request forgery (CSRF) vulnerability in blogs/admin.php in b2evolution before 4.1.7 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL inj…
|
CWE-352
Origin Validation Error
|
CVE-2013-7352
|
2014-04-4 00:36 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
