|
290111
|
- |
|
linux
|
linux_kernel
|
The aac_compat_ioctl function in drivers/scsi/aacraid/linit.c in the Linux kernel before 3.11.8 does not require the CAP_SYS_RAWIO capability, which allows local users to bypass intended access restr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6383
|
2024-11-21 10:59 |
2013-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290112
|
- |
|
linux
|
linux_kernel
|
Multiple buffer underflows in the XFS implementation in the Linux kernel through 3.12.1 allow local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6382
|
2024-11-21 10:59 |
2013-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290113
|
- |
|
linux
|
linux_kernel
|
Buffer overflow in the qeth_snmp_command function in drivers/s390/net/qeth_core_main.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service or possibly have unspecified …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6381
|
2024-11-21 10:59 |
2013-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290114
|
- |
|
linux
|
linux_kernel
|
The aac_send_raw_srb function in drivers/scsi/aacraid/commctrl.c in the Linux kernel through 3.12.1 does not properly validate a certain size value, which allows local users to cause a denial of serv…
|
CWE-20
Improper Input Validation
|
CVE-2013-6380
|
2024-11-21 10:59 |
2013-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290115
|
- |
|
linux
|
linux_kernel
|
The lbs_debugfs_write function in drivers/net/wireless/libertas/debugfs.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service (OOPS) by leveraging root privileges for a…
|
CWE-189
Numeric Errors
|
CVE-2013-6378
|
2024-11-21 10:59 |
2013-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290116
|
- |
|
nagios
|
nagios_xi
|
SQL injection vulnerability in functions/prepend_adm.php in Nagios Core Config Manager in Nagios XI before 2012R2.4 allows remote attackers to execute arbitrary SQL commands via the tfPassword parame…
|
CWE-89
SQL Injection
|
CVE-2013-6875
|
2024-11-21 10:59 |
2013-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290117
|
- |
|
vortexgroup
|
light_alloy
|
Stack-based buffer overflow in Vortex Light Alloy before 4.7.4 allows remote attackers to execute arbitrary code via a long URL in a .m3u file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6874
|
2024-11-21 10:59 |
2013-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290118
|
- |
|
testa
|
online_test_management_system
|
SQL injection vulnerability in Testa Online Test Management System (OTMS) 2.0.0.2 allows remote attackers to execute arbitrary SQL commands via the test_id parameter.
|
CWE-89
SQL Injection
|
CVE-2013-6873
|
2024-11-21 10:59 |
2013-11-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290119
|
- |
|
splunk
|
splunk
|
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk before 5.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-6870
|
2024-11-21 10:59 |
2013-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290120
|
- |
|
jenkins-ci
|
build_failure_analyzer
|
Cross-site scripting (XSS) vulnerability in the Build Failure Analyzer plugin before 1.5.1 for Jenkins allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-6374
|
2024-11-21 10:59 |
2013-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
