|
257481
|
- |
|
cisco
|
unified_communications_manager
|
The Enterprise License Manager (ELM) component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier does not properly enforce authentication requirements, which allows remote atta…
|
CWE-287
Improper Authentication
|
CVE-2014-0733
|
2014-02-21 08:52 |
2014-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257482
|
- |
|
feep
|
libtar
|
Multiple directory traversal vulnerabilities in the (1) tar_extract_glob and (2) tar_extract_all functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. (d…
|
CWE-22
Path Traversal
|
CVE-2013-4420
|
2014-02-21 08:51 |
2014-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257483
|
- |
|
redhat
|
sos
|
The sosreport utility in the Red Hat sos package before 1.7-9 and 2.x before 2.2-17 includes (1) Certificate-based Red Hat Network private entitlement keys and the (2) private key for the entitlement…
|
CWE-310
Cryptographic Issues
|
CVE-2011-4083
|
2014-02-19 09:40 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257484
|
- |
|
csounds
|
csound
|
Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbitrary code via a crafted (1) hetro file to the getnum function in util/heti_main.c or (2) PVOC file…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0270
|
2014-02-19 04:49 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257485
|
- |
|
qualcomm
|
quic_mobile_station_modem_kernel
|
The CONFIG_STRICT_MEMORY_RWX implementation for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly consider…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4737
|
2014-02-19 04:35 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257486
|
- |
|
php
|
php
|
The libxml RSHUTDOWN function in PHP 5.x allows remote attackers to bypass the open_basedir protection mechanism and read arbitrary files via vectors involving a stream_close method call during use o…
|
CWE-200
Information Exposure
|
CVE-2012-1171
|
2014-02-19 03:57 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257487
|
- |
|
litech
|
router_advertisement_daemon
|
The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when UnicastOnly is enabled, allows remote attackers to cause a denial of service (temporary service hang) via a large…
|
CWE-20
Improper Input Validation
|
CVE-2011-3605
|
2014-02-19 03:55 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257488
|
- |
|
litech
|
router_advertisement_daemon
|
The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows remote attackers to cause a denial of service (stack-based buffer over-read and crash) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3604
|
2014-02-19 03:54 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257489
|
- |
|
google
|
chrome
|
Google Chrome before 29 sends HTTP Cookie headers without first validating that they have the required character-set restrictions, which allows remote attackers to conduct the equivalent of a persist…
|
CWE-352
Origin Validation Error
|
CVE-2013-6166
|
2014-02-19 03:27 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257490
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox through 27 sends HTTP Cookie headers without first validating that they have the required character-set restrictions, which allows remote attackers to conduct the equivalent of a pers…
|
CWE-352
Origin Validation Error
|
CVE-2013-6167
|
2014-02-19 03:21 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
