257371
|
- |
|
schneider-electric
|
floating_license_manager
|
Unquoted Windows search path vulnerability in Schneider Electric Floating License Manager 1.0.0 through 1.4.0 allows local users to gain privileges via a Trojan horse application with a name composed…
|
NVD-CWE-Other
|
CVE-2014-0759
|
2014-03-1 02:16 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257372
|
- |
|
schneider-electric
|
floating_license_manager
|
Per: http://cwe.mitre.org/data/definitions/428.html
"CWE-428: Unquoted Search Path or Element"
|
NVD-CWE-Other
|
CVE-2014-0759
|
2014-03-1 02:16 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257373
|
- |
|
schneider-electric
|
floating_license_manager
|
Per: http://ics-cert.us-cert.gov/advisories/ICSA-14-058-01
"This license manager is used in the following Schneider Electric products:
Power Monitoring Expert,
Struxureware process Expert (…
|
NVD-CWE-Other
|
CVE-2014-0759
|
2014-03-1 02:16 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257374
|
- |
|
cisco
|
intrusion_prevention_system
|
Cisco Intrusion Prevention System (IPS) Software allows remote attackers to cause a denial of service (MainApp process outage) via malformed SNMP packets, aka Bug IDs CSCum52355 and CSCul49309.
|
CWE-20
Improper Input Validation
|
CVE-2014-2103
|
2014-03-1 01:48 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257375
|
- |
|
i-doit
|
i-doit
|
Cross-site scripting (XSS) vulnerability in the API in synetics i-doit pro before 1.2.5 allows remote attackers to inject arbitrary web script or HTML via a property title.
|
CWE-79
Cross-site Scripting
|
CVE-2014-2231
|
2014-03-1 00:27 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257376
|
- |
|
cisco
|
wireless_lan_controller
|
The Control and Provisioning of Wireless Access Points (CAPWAP) protocol implementation on Cisco Wireless LAN Controller (WLC) devices allows remote attackers to cause a denial of service via a craft…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6699
|
2014-02-28 09:11 |
2013-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257377
|
- |
|
elastix
|
elastix
|
Cross-site scripting (XSS) vulnerability in xmlservices/E_book.php in Elastix 2.3.0 allows remote attackers to inject arbitrary web script or HTML via the Page parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6608
|
2014-02-28 06:47 |
2013-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257378
|
- |
|
novell
|
iprint
|
The id1.GetPrinterURLList function in Novell iPrint Client before 5.93 allows remote attackers to cause a denial of service via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2013-3708
|
2014-02-28 06:46 |
2013-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257379
|
- |
|
elecsyscorp
|
director_dnp3_outstation_kernel director_industrial_communication_gateway
|
The DNP3 service in the Outstation component on Elecsys Director Gateway devices with kernel 2.6.32.11ael1 and earlier allows remote attackers to cause a denial of service (CPU consumption and commun…
|
CWE-20
Improper Input Validation
|
CVE-2013-2825
|
2014-02-28 06:44 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257380
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
The systemsetup program in the Date and Time subsystem in Apple OS X before 10.9.2 allows local users to bypass intended access restrictions by changing the current time on the system clock.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1265
|
2014-02-28 06:39 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|