259331
|
- |
|
stunnel
|
stunnel
|
stunnel 4.21 through 4.54, when CONNECT protocol negotiation and NTLM authentication are enabled, does not correctly perform integer conversion, which allows remote proxy servers to execute arbitrary…
|
CWE-94
Code Injection
|
CVE-2013-1762
|
2014-01-17 14:13 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259332
|
- |
|
wellintech
|
kingalarm\&event kinggraphic kingscada
|
An unspecified ActiveX control in WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 allows remote attackers to download arbitrary DLL code onto a client mach…
|
CWE-94
Code Injection
|
CVE-2013-2827
|
2014-01-17 02:21 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259333
|
- |
|
wellintech
|
kingalarm\&event kinggraphic kingscada
|
WellinTech KingSCADA before 3.1.2, KingAlarm&Event before 3.1, and KingGraphic before 3.1.2 perform authentication on the KAEClientManager console rather than on the server, which allows remote attac…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2826
|
2014-01-17 02:18 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259334
|
- |
|
sierrawireless
|
raven_x_ev-do_firmware airlink_mp_at\&t airlink_mp_at\&t_wifi airlink_mp_bell airlink_mp_bell_wifi airlink_mp_row airlink_mp_row_wifi airlink_mp_sprint airlink_mp_spri…
|
The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote attackers to reprogram the firmware via a replay attack using UDP ports 17336 and 17388.
|
CWE-287
Improper Authentication
|
CVE-2013-2820
|
2014-01-17 01:47 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259335
|
- |
|
sierrawireless
|
raven_x_ev-do_firmware airlink_mp_at\&t airlink_mp_at\&t_wifi airlink_mp_bell airlink_mp_bell_wifi airlink_mp_row airlink_mp_row_wifi airlink_mp_sprint airlink_mp_spri…
|
The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote attackers to install Trojan horse firmware by leveraging cleartext credentials in a crafted (1) upd…
|
CWE-255
Credentials Management
|
CVE-2013-2819
|
2014-01-17 01:44 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259336
|
- |
|
sierrawireless
|
raven_x_ev-do_firmware airlink_mp_at\&t airlink_mp_at\&t_wifi airlink_mp_bell airlink_mp_bell_wifi airlink_mp_row airlink_mp_row_wifi airlink_mp_sprint airlink_mp_spri…
|
Per: http://www.sierrawireless.com/resources/support/airlink/docs/raven%20security%20vulnerability%202014-01-10.pdf
"Products affected by this vulnerability include the Raven X, Raven XE, Raven XT, …
|
CWE-255
Credentials Management
|
CVE-2013-2819
|
2014-01-17 01:44 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259337
|
- |
|
juniper
|
junos srx100 srx110 srx1400 srx210 srx220 srx240 srx3400 srx3600 srx550 srx5600 srx5800 srx650
|
Juniper Junos 10.4S before 10.4S15, 10.4R before 10.4R16, 11.4 before 11.4R9, and 12.1R before 12.1R7 on SRX Series service gateways allows remote attackers to cause a denial of service (flowd crash)…
|
NVD-CWE-noinfo
|
CVE-2014-0617
|
2014-01-16 03:27 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259338
|
- |
|
juniper
|
junos
|
The XNM command processor in Juniper Junos 10.4 before 10.4R16, 11.4 before 11.4R10, 12.1R before 12.1R8-S2, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, 12.1X46 before 12.1X46-D10, 12.2 b…
|
NVD-CWE-noinfo
|
CVE-2014-0613
|
2014-01-16 03:11 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259339
|
- |
|
fedoraproject
|
fedora
|
Directory traversal vulnerability in DeviceKit-disks in DeviceKit, as used in Fedora 11 and 12 and possibly other operating systems, allows local users to gain privileges via .. (dot dot) sequences i…
|
CWE-22
Path Traversal
|
CVE-2010-0746
|
2014-01-15 01:21 |
2014-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259340
|
- |
|
vasco
|
identikey_authentication_server
|
VASCO IDENTIKEY Authentication Server (IAS) 3.4.x allows remote authenticated users to bypass Active Directory (AD) authentication by entering only a DIGIPASS one-time password, instead of the intend…
|
CWE-287
Improper Authentication
|
CVE-2013-7292
|
2014-01-15 00:01 |
2014-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|