|
256871
|
- |
|
libreoffice
sun
|
libreoffice
openoffice.org
|
oowriter in OpenOffice.org 3.3.0 and LibreOffice before 3.4.3 allows user-assisted remote attackers to cause a denial of service (crash) via a crafted DOC file that triggers an out-of-bounds read in …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-2713
|
2014-10-24 15:19 |
2011-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256872
|
- |
|
ibm
|
websphere_application_server
|
The JAX-RPC WS-Security runtime in the Web Services Security component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.23 and 7.0 before 7.0.0.3, when APAR PK41002 is installed, does not p…
|
CWE-20
Improper Input Validation
|
CVE-2009-1172
|
2014-10-24 14:37 |
2009-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256873
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 7.0 before 7.0.0.3 uses weak permissions (777) for files associated with unspecified "interim fixes," which allows attackers to modify files that would not have…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2009-1173
|
2014-10-24 14:37 |
2009-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256874
|
- |
|
calender_base_project
|
calender_base
|
The Calendar Base (cal) extension before 1.5.9 and 1.6.x before 1.6.1 for TYPO3 allows remote attackers to cause a denial of service (resource consumption) via vectors related to the PHP PCRE library.
|
CWE-399
Resource Management Errors
|
CVE-2014-8325
|
2014-10-24 00:51 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256875
|
- |
|
seeddms
|
seeddms
|
Unrestricted file upload vulnerability in op/op.AddFile2.php in SeedDMS (formerly LetoDMS and MyDMS) before 4.3.4 allows remote attackers to execute arbitrary code by uploading a file with an executa…
|
CWE-20
Improper Input Validation
|
CVE-2014-2278
|
2014-10-24 00:42 |
2014-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256876
|
- |
|
redhat
|
virtual_desktop_service_manager
|
VDSM allows remote attackers to cause a denial of service (connection blocking) by keeping an SSL connection open.
|
CWE-310
Cryptographic Issues
|
CVE-2014-7968
|
2014-10-23 23:39 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256877
|
- |
|
splunk
|
splunk
|
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.1.x before 6.1.4 and 6.0.x before 6.0.6 allows remote attackers to inject arbitrary web script or HTML via vectors relate…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8303
|
2014-10-23 23:15 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256878
|
- |
|
splunk
|
splunk
|
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 6.1.x before 6.1.4, 6.0.x before 6.0.6, and 5.0.x before 5.0.10 allows remote attackers to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8302
|
2014-10-23 23:14 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256879
|
- |
|
splunk
|
splunk
|
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk Enterprise 5.0.x before 5.0.10 allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer header.
|
CWE-79
Cross-site Scripting
|
CVE-2014-8301
|
2014-10-23 23:10 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256880
|
- |
|
cisco
|
webex_meetings_server
|
Cisco WebEx Meetings Server (WMS) 2.5 allows remote attackers to trigger the download of arbitrary files via a crafted URL, aka Bug ID CSCup10343.
|
CWE-20
Improper Input Validation
|
CVE-2014-3395
|
2014-10-23 22:23 |
2014-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
