|
258421
|
- |
|
cisco
|
ios
|
Cisco IOS before 15.3(2)S allows remote attackers to bypass interface ACL restrictions in opportunistic circumstances by sending IPv6 packets in an unspecified scenario in which expected packet drops…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3946
|
2014-04-25 03:38 |
2014-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258422
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Cross-site scripting (XSS) vulnerability in Open-Xchange AppSuite 7.4.1 before 7.4.1-rev11 and 7.4.2 before 7.4.2-rev13 allows remote attackers to inject arbitrary web script or HTML via a Drive file…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2393
|
2014-04-25 03:32 |
2014-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258423
|
- |
|
open-xchange
|
open-xchange_appsuite
|
The E-Mail autoconfiguration feature in Open-Xchange AppSuite before 7.2.2-rev20, 7.4.1 before 7.4.1-rev11, and 7.4.2 before 7.4.2-rev13 places a password in a GET request, which allows remote attack…
|
CWE-200
Information Exposure
|
CVE-2014-2392
|
2014-04-25 03:29 |
2014-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258424
|
- |
|
open-xchange
|
open-xchange_appsuite
|
The password recovery service in Open-Xchange AppSuite before 7.2.2-rev20, 7.4.1 before 7.4.1-rev11, and 7.4.2 before 7.4.2-rev13 makes an improper decision about the sensitivity of a string represen…
|
CWE-200
Information Exposure
|
CVE-2014-2391
|
2014-04-25 03:27 |
2014-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258425
|
- |
|
symantec
|
pgp_desktop
encryption_desktop
|
Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform block-data moves, which allows remote attackers to cause a denial of se…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1647
|
2014-04-25 03:06 |
2014-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258426
|
- |
|
symantec
|
encryption_desktop
pgp_desktop
|
Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform memory copies, which allows remote attackers to cause a denial of servi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1646
|
2014-04-25 03:00 |
2014-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258427
|
- |
|
oracle
|
peoplesoft_products
|
Unspecified vulnerability in the PeopleSoft Enterprise HRMS Talent Acquisition Manager component in Oracle PeopleSoft Products 9.0, 9.1, and 9.2 allows remote authenticated users to affect confidenti…
|
NVD-CWE-noinfo
|
CVE-2014-2449
|
2014-04-25 02:59 |
2014-04-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258428
|
- |
|
apple
|
mac_os_x
|
The kernel in Apple OS X through 10.9.2 places a kernel pointer into an XNU object data structure accessible from user space, which makes it easier for local users to bypass the ASLR protection mecha…
|
CWE-200
Information Exposure
|
CVE-2014-1322
|
2014-04-24 22:56 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258429
|
- |
|
apple
|
mac_os_x
|
Power Management in Apple OS X 10.9.x through 10.9.2 allows physically proximate attackers to bypass an intended transition into the locked-screen state by touching (1) a key or (2) the trackpad duri…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1321
|
2014-04-24 22:52 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258430
|
- |
|
apple
|
mac_os_x
|
WindowServer in Apple OS X through 10.9.2 does not prevent session creation by a sandboxed application, which allows attackers to bypass the sandbox protection mechanism and execute arbitrary code vi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1314
|
2014-04-24 20:24 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
