|
259521
|
- |
|
google
|
chrome
|
Google Chrome before 29 sends HTTP Cookie headers without first validating that they have the required character-set restrictions, which allows remote attackers to conduct the equivalent of a persist…
|
CWE-352
Origin Validation Error
|
CVE-2013-6166
|
2014-02-19 03:27 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259522
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox through 27 sends HTTP Cookie headers without first validating that they have the required character-set restrictions, which allows remote attackers to conduct the equivalent of a pers…
|
CWE-352
Origin Validation Error
|
CVE-2013-6167
|
2014-02-19 03:21 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259523
|
- |
|
ryan_ohara
|
piranha
|
The Piranha Configuration Tool in Piranha 0.8.6 does not properly restrict access to webpages, which allows remote attackers to bypass authentication and read or modify the LVS configuration via an H…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6492
|
2014-02-19 00:49 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259524
|
- |
|
linuxcontainers
|
lxc
|
The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain privileges by modifying the init file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6441
|
2014-02-19 00:43 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259525
|
- |
|
redhat
|
jboss_operations_network
|
Red Hat JBoss Operations Network (JON) 3.0.x before 3.0.1, 2.4.2, and earlier, when LDAP authentication is enabled and the LDAP bind account credentials are invalid, allows remote attackers to login …
|
CWE-287
Improper Authentication
|
CVE-2012-1100
|
2014-02-15 04:19 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259526
|
- |
|
redhat
|
jboss_operations_network
|
Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x before 3.0.1 allows remote attackers to hijack agent sessions via an agent registration request without a security token.
|
CWE-287
Improper Authentication
|
CVE-2012-0062
|
2014-02-15 03:46 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259527
|
- |
|
redhat
|
jboss_operations_network
|
Red Hat JBoss Operations Network (JON) before 2.4.2 and 3.0.x before 3.0.1 does not check the JON agent key, which allows remote attackers to spoof the identity of arbitrary agents via the registered…
|
CWE-20
Improper Input Validation
|
CVE-2012-0052
|
2014-02-15 03:44 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259528
|
- |
|
matrikonopc
|
scada_dnp3_opc_server
|
MatrikonOPC SCADA DNP3 OPC Server 1.2.2.0 and earlier allows remote attackers to cause a denial of service (infinite loop) via a malformed DNP3 packet.
|
CWE-20
Improper Input Validation
|
CVE-2013-2829
|
2014-02-15 02:48 |
2014-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259529
|
- |
|
blackberry
|
blackberry_enterprise_service
blackberry_universal_device_service
enterprise_server
enterprise_server_express
|
BlackBerry Enterprise Service 10 before 10.2.1, Universal Device Service 6, Enterprise Server Express for Domino through 5.0.4, Enterprise Server Express for Exchange through 5.0.4, Enterprise Server…
|
CWE-255
Credentials Management
|
CVE-2014-1467
|
2014-02-15 02:34 |
2014-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259530
|
- |
|
cisco
|
unified_communications_manager
|
The bulk administration interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to bypass authentication and read arbitrary files by using an unspecified p…
|
CWE-20
Improper Input Validation
|
CVE-2014-0724
|
2014-02-14 02:13 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
