259301
|
- |
|
ecryptfs
|
ecryptfs-utils ecryptfs_utils
|
utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows local users to cause a denial of service (table corruption) o…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1834
|
2014-03-8 13:47 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259302
|
- |
|
ecryptfs
|
ecryptfs-utils ecryptfs_utils
|
The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users t…
|
CWE-255
Credentials Management
|
CVE-2011-1835
|
2014-03-8 13:47 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259303
|
- |
|
ecryptfs
|
ecryptfs-utils ecryptfs_utils
|
utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard f…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1836
|
2014-03-8 13:47 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259304
|
- |
|
ecryptfs
|
ecryptfs-utils ecryptfs_utils
|
The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-1837
|
2014-03-8 13:47 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259305
|
- |
|
posh_project
|
posh
|
SQL injection vulnerability in portal/addtoapplication.php in POSH (aka Posh portal or Portaneo) 3.0 before 3.3.0 allows remote attackers to execute arbitrary SQL commands via the rssurl parameter.
|
CWE-89
SQL Injection
|
CVE-2014-2211
|
2014-03-8 05:32 |
2014-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259306
|
- |
|
drinkedin
|
drinkedin_barfinder
|
The DrinkedIn BarFinder application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote attackers to execute arbitrary JavaScript code, and consequently obtain sensitive fine-geo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1887
|
2014-03-8 05:04 |
2014-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259307
|
- |
|
edinburghtour
|
edinburgh_by_bus
|
The Edinburgh by Bus application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote attackers to execute arbitrary JavaScript code, and consequently access external-storage reso…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1886
|
2014-03-8 05:02 |
2014-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259308
|
- |
|
hsgroup
|
forzearmate
|
The ForzeArmate application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote attackers to execute arbitrary JavaScript code, and consequently obtain write access to external-s…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1885
|
2014-03-8 05:01 |
2014-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259309
|
- |
|
cisco
|
wireless_lan_controller_software
|
Cisco Wireless LAN Controller (WLC) devices 7.0 before 7.0.250.0, 7.2, 7.3, and 7.4 before 7.4.110.0 do not properly deallocate memory, which allows remote attackers to cause a denial of service (reb…
|
CWE-399
Resource Management Errors
|
CVE-2014-0701
|
2014-03-8 04:50 |
2014-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259310
|
- |
|
cmsmadesimple
|
cms_made_simple
|
SQL injection vulnerability in the News module in CMS Made Simple (CMSMS) before 1.11.10 allows remote authenticated users with the "Modify News" permission to execute arbitrary SQL commands via the …
|
CWE-89
SQL Injection
|
CVE-2014-2245
|
2014-03-8 04:43 |
2014-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|