3 matches found
CVE-2014-4444
creationtimestamp| type| source ---|---|--- 2018-01-18 09:06:56+00:00| seen| MISP/5a60639d-e498-4c86-b6ad-1fea950d210f 2018-03-14 14:23:11+00:00| seen| MISP/5aa93037-4a24-4259-a3c0-425b950d210f...
CVE-2014-4444
CVE-2014-4444 affects SecurityAgent in Apple OS X before 10.10. The vulnerability occurs because the Kerberos ticket is not guaranteed to be cached for the correct user during Fast User Switching, allowing a local user to gain privileges in opportunistic circumstances. Root cause: improper handli...
Apache Warns of Tomcat Remote Code Execution Vulnerability
Some older versions of the open source Apache Tomcat web server and servlet container, are vulnerable to remote code execution. In what Mark Thomas, a longtime Apache Tomcat committer, calls “limited circumstances,” a user could upload malicious JavaServer Pages JSP to a server running Tomcat, an...