|
257131
|
- |
|
codeaurora
|
android-msm
|
app/aboot/aboot.c in the Little Kernel (LK) bootloader, as distributed with Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, allows attackers to overwrite s…
|
CWE-20
Improper Input Validation
|
CVE-2013-2598
|
2014-09-3 03:44 |
2014-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257132
|
- |
|
codeaurora
|
android-msm
|
Stack-based buffer overflow in the acdb_ioctl function in audio_acdb.c in the acdb audio driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2597
|
2014-09-3 03:43 |
2014-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257133
|
- |
|
codeaurora
|
android-msm
|
The device-initialization functionality in the MSM camera driver for the Linux kernel 2.6.x and 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other produ…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2595
|
2014-09-3 03:41 |
2014-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257134
|
- |
|
amazon
|
kindle
|
The Amazon.com Kindle application before 4.5.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive informat…
|
CWE-310
Cryptographic Issues
|
CVE-2014-3908
|
2014-09-3 03:04 |
2014-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257135
|
- |
|
freedesktop
|
poppler
|
DCTStream.cc in Poppler before 0.13.3 allows remote attackers to cause a denial of service (crash) via a crafted PDF file.
|
CWE-20
Improper Input Validation
|
CVE-2010-5110
|
2014-09-3 01:54 |
2014-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257136
|
- |
|
iridium
|
open_port
pilot_below_deck_equipment
|
The Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allow remote attackers to read hardcoded credentials via the web interface.
|
NVD-CWE-Other
|
CVE-2014-0326
|
2014-08-29 03:57 |
2014-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257137
|
- |
|
iridium
|
open_port
pilot_below_deck_equipment
|
<a href="http://cwe.mitre.org/data/definitions/798.html">CWE-798: Use of Hard-coded Credentials</a>
|
NVD-CWE-Other
|
CVE-2014-0326
|
2014-08-29 03:57 |
2014-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257138
|
- |
|
iridium
|
open_port
pilot_below_deck_equipment
|
The Terminal Upgrade Tool in the Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allows remote attackers to execute arbitrary code by uploading new firmwa…
|
NVD-CWE-Other
|
CVE-2014-0327
|
2014-08-29 03:57 |
2014-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257139
|
- |
|
iridium
|
open_port
pilot_below_deck_equipment
|
<a href="http://cwe.mitre.org/data/definitions/306.html">CWE-306: Missing Authentication for Critical Function</a>
|
NVD-CWE-Other
|
CVE-2014-0327
|
2014-08-29 03:57 |
2014-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257140
|
- |
|
wordpress
|
wordpress
|
wp-includes/class-wp-customize-widgets.php in the widget implementation in WordPress 3.9.x before 3.9.2 might allow remote attackers to execute arbitrary code via crafted serialized data.
|
NVD-CWE-noinfo
|
CVE-2014-5203
|
2014-08-29 03:06 |
2014-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
