|
291021
|
- |
|
apple
|
mac_os_x
|
Console in Apple Mac OS X before 10.9 allows user-assisted remote attackers to execute arbitrary applications by triggering a log entry with a crafted attached URL.
|
CWE-20
Improper Input Validation
|
CVE-2013-5168
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291022
|
- |
|
apple
|
mac_os_x
|
CFNetwork in Apple Mac OS X before 10.9 does not properly support Safari's deletion of session cookies in response to a reset operation, which makes it easier for remote web servers to track users vi…
|
CWE-16
Configuration
|
CVE-2013-5167
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291023
|
- |
|
apple
|
mac_os_x
|
The Bluetooth USB host controller in Apple Mac OS X before 10.9 prematurely deletes interfaces, which allows local users to cause a denial of service (system crash) via a crafted application.
|
NVD-CWE-noinfo
|
CVE-2013-5166
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291024
|
- |
|
apple
|
mac_os_x
|
socketfilterfw in Application Firewall in Apple Mac OS X before 10.9 does not properly implement the --blockApp option, which allows remote attackers to bypass intended access restrictions via a netw…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5165
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291025
|
- |
|
apple
|
iphone_os
|
Multiple race conditions in the Phone app in Apple iOS before 7.0.3 allow physically proximate attackers to bypass the locked state, and dial the telephone numbers in arbitrary Contacts entries, by v…
|
CWE-362
Race Condition
|
CVE-2013-5164
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291026
|
- |
|
apple
|
iphone_os
|
Passcode Lock in Apple iOS before 7.0.3 on iPhone devices allows physically proximate attackers to bypass the passcode-failure disabled state by leveraging certain incorrect visibility of the passcod…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5162
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291027
|
- |
|
apple
|
iphone_os
|
Passcode Lock in Apple iOS before 7.0.3 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by tapping the emerge…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5144
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291028
|
- |
|
apple
|
apple_remote_desktop
|
Apple Remote Desktop before 3.7 does not properly use server authentication-type information during decisions about whether to present an unencrypted-connection warning message, which allows remote a…
|
CWE-200
Information Exposure
|
CVE-2013-5136
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291029
|
- |
|
apple
|
apple_remote_desktop
mac_os_x
|
Format string vulnerability in Screen Sharing Server in Apple Mac OS X before 10.9 and Apple Remote Desktop before 3.5.4 allows remote attackers to execute arbitrary code via format string specifiers…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2013-5135
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291030
|
- |
|
draytek
|
vigor_2700_router_firmware
vigor_2700_router
|
The DrayTek Vigor 2700 router 2.8.3 allows remote attackers to execute arbitrary JavaScript code, and modify settings or the DNS cache, via a crafted SSID value that is not properly handled during in…
|
CWE-78
OS Command
|
CVE-2013-5703
|
2024-11-21 10:57 |
2013-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
