|
257111
|
- |
|
solarwinds
|
log_and_event_manager
|
SolarWinds Log and Event Manager before 6.0 uses "static" credentials, which makes it easier for remote attackers to obtain access to the database and execute arbitrary code via unspecified vectors, …
|
CWE-255
Credentials Management
|
CVE-2014-5504
|
2014-09-9 02:00 |
2014-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257112
|
- |
|
srvx
|
srvx
|
Multiple integer overflows in the HelpServ module (mod-helpserv.c) in srvx 1.3.1 allow remote authenticated IRCops or HelpServ bot managers to cause a denial of service (infinite loop) via a large va…
|
CWE-189
Numeric Errors
|
CVE-2014-5508
|
2014-09-9 01:27 |
2014-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257113
|
- |
|
sensysnetworks
|
trafficdot
vsn240-f
vsn240-t
vds
|
Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and TrafficDOT before 2.10.3 do not use encryption, which allows remote attackers to interfere with traffic control by replaying transm…
|
CWE-310
Cryptographic Issues
|
CVE-2014-2379
|
2014-09-9 00:09 |
2014-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257114
|
- |
|
sensysnetworks
|
trafficdot
vsn240-f
vsn240-t
vds
|
Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and TrafficDOT before 2.10.3 do not verify the integrity of downloaded updates, which allows remote attackers to execute arbitrary code…
|
CWE-94
Code Injection
|
CVE-2014-2378
|
2014-09-9 00:07 |
2014-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257115
|
- |
|
plack_project
|
plack
|
Plack::App::File in Plack before 1.0031 removes trailing slash characters from paths, which allows remote attackers to bypass the whitelist of generated files and obtain sensitive information via a c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-5269
|
2014-09-8 23:47 |
2014-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257116
|
- |
|
falconsc
|
wisepoint
|
Session fixation vulnerability in Falcon WisePoint 4.1.19.7 and earlier allows remote attackers to hijack web sessions via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2014-3909
|
2014-09-8 23:45 |
2014-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257117
|
- |
|
falconsc
|
wisepoint
|
<a href="http://cwe.mitre.org/data/definitions/384.html" target="_blank">CWE-384: Session Fixation</a>
|
NVD-CWE-Other
|
CVE-2014-3909
|
2014-09-8 23:45 |
2014-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257118
|
- |
|
eucalyptus
|
eucalyptus
|
The Storage Controller (SC) component in Eucalyptus 3.4.2 through 4.0.x before 4.0.1, when Dell Equallogic SAN is used, logs the CHAP user credentials, which allows local users to obtain sensitive in…
|
CWE-200
Information Exposure
|
CVE-2014-5036
|
2014-09-8 23:32 |
2014-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257119
|
- |
|
tibco
|
spotfire_server
|
Unspecified vulnerability in the Authentication Module in TIBCO Spotfire Server before 4.5.2, 5.0.x before 5.0.3, 5.5.x before 5.5.2, 6.0.x before 6.0.3, and 6.5.x before 6.5.1 allows remote attacker…
|
NVD-CWE-noinfo
|
CVE-2014-5285
|
2014-09-5 23:45 |
2014-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257120
|
- |
|
oracle
|
fusion_middleware
|
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors relat…
|
NVD-CWE-noinfo
|
CVE-2013-5879
|
2014-09-4 14:25 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
