258771
|
- |
|
light_speed_gaming
|
mumble
|
The opus_packet_get_samples_per_frame function in client in Mumble 1.2.4 and the 1.2.3 pre-release snapshots allows remote attackers to cause a denial of service (crash) via a crafted length prefix v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0044
|
2014-03-6 13:50 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258772
|
- |
|
oracle
|
database_server
|
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote authenticated users to affect confidentiality via vectors rela…
|
NVD-CWE-noinfo
|
CVE-2014-0377
|
2014-03-6 13:50 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258773
|
- |
|
oracle
|
database_server
|
Unspecified vulnerability in the Spatial component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows local users to affect confidentiality, integrity, and availability via u…
|
NVD-CWE-noinfo
|
CVE-2014-0378
|
2014-03-6 13:50 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258774
|
- |
|
cisco
|
unified_sip_phone_3905
|
The Cisco Unified SIP Phone 3905 with firmware before 9.4(1) allows remote attackers to obtain root access via a session on the test interface on TCP port 7870, aka Bug ID CSCuh75574.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0721
|
2014-03-6 13:50 |
2014-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258775
|
- |
|
cisco
|
unified_ip_phone_7960g
|
The Cisco Unified IP Phone 7960G 9.2(1) and earlier allows remote attackers to bypass authentication and change trust relationships by injecting a Certificate Trust List (CTL) file, aka Bug ID CSCuj6…
|
CWE-287
Improper Authentication
|
CVE-2014-0737
|
2014-03-6 13:50 |
2014-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258776
|
- |
|
ibm
|
cognos_business_intelligence
|
Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1 before IF6, 10.1.1 before IF5, 10.2 before IF7, 10.2.1 before IF4, and 10.2.1.1 before IF4 …
|
CWE-79
Cross-site Scripting
|
CVE-2014-0861
|
2014-03-6 13:50 |
2014-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258777
|
- |
|
otrs
|
otrs
|
Multiple cross-site request forgery (CSRF) vulnerabilities in (1) CustomerPreferences.pm, (2) CustomerTicketMessage.pm, (3) CustomerTicketProcess.pm, and (4) CustomerTicketZoom.pm in Kernel/Modules/ …
|
CWE-352
Origin Validation Error
|
CVE-2014-1694
|
2014-03-6 13:50 |
2014-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258778
|
- |
|
beyondgrep
|
ack
|
ack 2.00 through 2.11_02 allows remote attackers to execute arbitrary code via a (1) --pager, (2) --regex, or (3) --output option in a .ackrc file in a directory to be searched.
|
CWE-94
Code Injection
|
CVE-2013-7069
|
2014-03-6 13:50 |
2013-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258779
|
- |
|
icinga
|
icinga
|
Cross-site request forgery (CSRF) vulnerability in cmd.cgi in Icinga 1.8.5, 1.9.4, 1.10.2, and earlier allows remote attackers to hijack the authentication of users for unspecified commands via unspe…
|
CWE-352
Origin Validation Error
|
CVE-2013-7107
|
2014-03-6 13:50 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258780
|
- |
|
oracle
|
database_server
|
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, and 12.1.0.1 allows remote attackers to affect availability via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-5853
|
2014-03-6 13:49 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|