|
290311
|
- |
|
live555
videolan
|
streaming_media
vlc_media_player
|
The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2013.11.26, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service (crash) and possibl…
|
CWE-189
Numeric Errors
|
CVE-2013-6934
|
2024-11-21 10:59 |
2014-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290312
|
- |
|
live555
|
streaming_media
|
The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2011.08.13 through 2013.11.25, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service …
|
CWE-119
CWE-189
Incorrect Access of Indexable Resource ('Range Error')
Numeric Errors
|
CVE-2013-6933
|
2024-11-21 10:59 |
2014-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290313
|
- |
|
redhat
|
cloudforms
cloudforms_3.0_management_engine
|
CloudForms 3.0 Management Engine before 5.2.1.6 allows remote attackers to bypass the Ruby on Rails protect_from_forgery mechanism and conduct cross-site request forgery (CSRF) attacks via a destruct…
|
CWE-352
Origin Validation Error
|
CVE-2013-6443
|
2024-11-21 10:59 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290314
|
- |
|
redhat
|
jboss_seam_2_framework
|
The InterfaceGenerator handler in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and earlier, as used in JBoss Web Framework Kit, allows remote attackers to bypass the WebRemote annotation restr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6448
|
2024-11-21 10:59 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290315
|
- |
|
redhat
|
jboss_seam_2_framework
|
Multiple XML External Entity (XXE) vulnerabilities in the (1) ExecutionHandler, (2) PollHandler, and (3) SubscriptionHandler classes in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and earlier…
|
CWE-200
Information Exposure
|
CVE-2013-6447
|
2024-11-21 10:59 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290316
|
- |
|
augeas
|
augeas
|
The transform_save function in transform.c in Augeas 1.0.0 through 1.1.0 does not properly calculate the permission values when the umask contains a "7," which causes world-writable permissions to be…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6412
|
2024-11-21 10:59 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290317
|
- |
|
ibm
|
filenet_p8_business_process_manager
filenet_case_foundation
filenet_content_manager
|
Cross-site scripting (XSS) vulnerability in FileNet P8 Platform Documentation Installable Info Center 4.5.1 through 5.2.0 in IBM FileNet Business Process Manager 4.5.1 through 5.1.0, FileNet Content …
|
CWE-79
Cross-site Scripting
|
CVE-2013-6746
|
2024-11-21 10:59 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290318
|
- |
|
asus
|
tm-ac1900_firmware
rt-n56u_firmware
rt-ac66u_firmware
|
Multiple buffer overflows in web.c in httpd on the ASUS RT-N56U and RT-AC66U routers with firmware 3.0.0.4.374_979 allow remote attackers to execute arbitrary code via the (1) apps_name or (2) apps_f…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6343
|
2024-11-21 10:59 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290319
|
- |
|
seagate
|
blackarmor_nas_220_firmware
blackarmor_nas_220
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Seagate BlackArmor NAS 220 devices with firmware sg2000-2000.1331 allow remote attackers to hijack the authentication of administrato…
|
CWE-352
Origin Validation Error
|
CVE-2013-6922
|
2024-11-21 10:59 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290320
|
- |
|
o-dyn
|
collabtive
|
SQL injection vulnerability in managetimetracker.php in Collabtive before 1.2 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a projectpdf action.
|
CWE-89
SQL Injection
|
CVE-2013-6872
|
2024-11-21 10:59 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
