Oracle

Solaris

546 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.1

CVE-2014-2440

  • EPSS 0.6%
  • Published 16.04.2014 02:55:16
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in the MySQL Client component in Oracle MySQL 5.5.36 and earlier and 5.6.16 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

4

CVE-2014-2419

  • EPSS 1.27%
  • Published 16.04.2014 02:55:15
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.35 and earlier and 5.6.15 and earlier allows remote authenticated users to affect availability via unknown vectors related to Partition.

3.5

CVE-2014-2430

  • EPSS 0.62%
  • Published 16.04.2014 02:55:15
  • Last modified 12.04.2025 10:46:40

Unspecified vulnerability in Oracle MySQL Server 5.5.36 and earlier and 5.6.16 and earlier allows remote authenticated users to affect availability via unknown vectors related to Performance Schema.

5

CVE-2013-5704

Exploit
  • EPSS 75.57%
  • Published 15.04.2014 10:55:11
  • Last modified 12.04.2025 10:46:40

The mod_headers module in the Apache HTTP Server 2.2.22 allows remote attackers to bypass "RequestHeader unset" directives by placing a header in the trailer portion of data sent with chunked transfer coding. NOTE: the vendor states "this is not a s...

4.3

CVE-2014-2497

Exploit
  • EPSS 12.14%
  • Published 21.03.2014 14:55:12
  • Last modified 12.04.2025 10:46:40

The gdImageCreateFromXpm function in gdxpm.c in libgd, as used in PHP 5.4.26 and earlier, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted color table in an XPM file.

9.3

CVE-2014-1494

  • EPSS 0.49%
  • Published 19.03.2014 10:55:06
  • Last modified 12.04.2025 10:46:40

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via u...

5

CVE-2014-1498

  • EPSS 0.55%
  • Published 19.03.2014 10:55:06
  • Last modified 12.04.2025 10:46:40

The crypto.generateCRMFRequest method in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 does not properly validate a certain key type, which allows remote attackers to cause a denial of service (application crash) via vectors that trigger gene...

4.3

CVE-2014-1499

  • EPSS 0.61%
  • Published 19.03.2014 10:55:06
  • Last modified 12.04.2025 10:46:40

Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to spoof the domain name in the WebRTC (1) camera or (2) microphone permission prompt by triggering navigation at a certain time during generation of this prompt.

5

CVE-2014-1500

  • EPSS 2.26%
  • Published 19.03.2014 10:55:06
  • Last modified 12.04.2025 10:46:40

Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to cause a denial of service (resource consumption and application hang) via onbeforeunload events that trigger background JavaScript execution.

5.8

CVE-2014-1501

  • EPSS 0.23%
  • Published 19.03.2014 10:55:06
  • Last modified 12.04.2025 10:46:40

Mozilla Firefox before 28.0 on Android allows remote attackers to bypass the Same Origin Policy and access arbitrary file: URLs via vectors involving the "Open Link in New Tab" menu selection.