1317 matches found
CVE-2014-2358
Multiple cross-site request forgery CSRF vulnerabilities in the administrative web interface in the proxy server on Fox-IT Fox DataDiode appliances before 1.7.2 allow remote attackers to hijack the authentication of administrators for requests that 1 create administrative users, 2 remove...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the administrative web interface in the proxy server on Fox-IT Fox DataDiode appliances before 1.7.2 allow remote attackers to hijack the authentication of administrators for requests that 1 create administrative users, 2 remove...
CVE-2014-2358 Fox-IT DataDiode Appliance CSRF
Multiple cross-site request forgery CSRF vulnerabilities in the administrative web interface in the proxy server on Fox-IT Fox DataDiode appliances before 1.7.2 allow remote attackers to hijack the authentication of administrators for requests that 1 create administrative users, 2 remove...
Information disclosure
The MCX Desktop Config Profiles implementation in Apple OS X before 10.10 retains web-proxy settings from uninstalled mobile-configuration profiles, which allows remote attackers to obtain sensitive information in opportunistic circumstances by leveraging access to an unintended proxy server...
CVE-2014-4440
The MCX Desktop Config Profiles implementation in Apple OS X before 10.10 retains web-proxy settings from uninstalled mobile-configuration profiles, which allows remote attackers to obtain sensitive information in opportunistic circumstances by leveraging access to an unintended proxy server...
CVE-2014-4440
CVE-2014-4440 affects Apple OS X (pre-10.10) MCX Desktop Config Profiles. The vulnerability arises because web-proxy settings from mobile configuration profiles remain after uninstallation, allowing a remote attacker with access to an unintended proxy server to obtain sensitive information. The i...
CVE-2014-2473
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv and SGD SSL Daemon ttassl...
CVE-2014-2474
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2476, and CVE-2014-6459...
CVE-2014-2476
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2474, and CVE-2014-6459...
CVE-2014-2472
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2474, CVE-2014-2476, and CVE-2014-6459...
CVE-2014-2475
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 4.63, 4.71, 5.0, and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv and SGD SSL Daemon ttassl...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2474, CVE-2014-2476, and CVE-2014-6459...
Buffer overflow
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 4.63, 4.71, 5.0, and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2474, and CVE-2014-2476...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2474, and CVE-2014-6459...
Design/Logic Flaw
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2476, and CVE-2014-6459...
CVE-2014-2473
Oracle Secure Global Desktop (SGD) 5.0/5.1 is affected by a DoS vulnerability cataloged as CVE-2014-2473. The issue impacts SGD components SGD Proxy Server (ttaauxserv) and SGD SSL Daemon (ttassl) and is described as affecting availability via network vectors. Connected sources identify affected ...
CVE-2014-6459
Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.0 and 5.1 allows remote attackers to affect availability via vectors related to SGD Proxy Server ttaauxserv, a different vulnerability than CVE-2014-2472, CVE-2014-2474, and CVE-2014-2476...
CVE-2014-2472
Oracle Secure Global Desktop (SGD) in Oracle Virtualization 5.0–5.1 is affected by multiple DoS vulnerabilities, including CVE-2014-2472, per a Nessus plugin (ORACLE_SECURE_GLOBAL_DESKTOP_OCT_2014_CPU). The issue concerns SGD Proxy Server (ttaauxserv) and SGD SSL Daemon (ttassl); vulnerable versi...