|
291741
|
- |
|
http-body_project
|
http-body
|
HTTP::Body::Multipart in the HTTP-Body module for Perl (1.07 through 1.22, before 1.23) uses the part of the uploaded file's name after the first "." character as the suffix of a temporary file, whic…
|
NVD-CWE-noinfo
|
CVE-2013-4407
|
2024-11-21 10:55 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291742
|
- |
|
openstack
|
image_registry_and_delivery_service_\(glance\)
|
The API before 2.1 in OpenStack Image Registry and Delivery Service (Glance) makes it easier for local users to inject images into arbitrary tenants by adding the tenant as a member of the image.
|
CWE-20
Improper Input Validation
|
CVE-2013-4354
|
2024-11-21 10:55 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291743
|
- |
|
ffmpeg
|
ffmpeg
|
The av_reallocp_array function in libavutil/mem.c in FFmpeg before 2.0.1 has an unspecified impact and remote vectors related to a "wrong return code" and a resultant NULL pointer dereference.
|
NVD-CWE-Other
|
CVE-2013-4265
|
2024-11-21 10:55 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291744
|
- |
|
ffmpeg
|
ffmpeg
|
The kempf_decode_tile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service (out-of-bounds heap write) via a G2M4 encoded file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4264
|
2024-11-21 10:55 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291745
|
- |
|
ffmpeg
|
ffmpeg
|
libavfilter in FFmpeg before 2.0.1 has unspecified impact and remote vectors related to a crafted "plane," which triggers an out-of-bounds heap write.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4263
|
2024-11-21 10:55 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291746
|
- |
|
nagios
redhat
|
nagios
openstack
|
rss-newsfeed.php in Nagios Core 3.4.4, 3.5.1, and earlier, when MAGPIE_CACHE_ON is set to 1, allows local users to overwrite arbitrary files via a symlink attack on /tmp/magpie_cache.
|
CWE-59
Link Following
|
CVE-2013-4214
|
2024-11-21 10:55 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291747
|
- |
|
novell
graphicsmagick
fedoraproject
|
suse_linux_enterprise_debuginfo
suse_studio_onsite
suse_linux_enterprise_software_development_kit
graphicsmagick
fedora
|
The ExportAlphaQuantumType function in export.c in GraphicsMagick before 1.3.18 might allow remote attackers to cause a denial of service (crash) via vectors related to exporting the alpha of an 8-bi…
|
NVD-CWE-noinfo
|
CVE-2013-4589
|
2024-11-21 10:55 |
2013-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291748
|
- |
|
haxx
|
curl
libcurl
|
cURL and libcurl 7.18.0 through 7.32.0, when built with OpenSSL, disables the certificate CN and SAN name field verification (CURLOPT_SSL_VERIFYHOST) when the digital signature verification (CURLOPT_…
|
CWE-310
Cryptographic Issues
|
CVE-2013-4545
|
2024-11-21 10:55 |
2013-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291749
|
- |
|
redhat
fedoraproject
|
enterprise_linux
directory_server
389_directory_server
|
389 Directory Server 1.2.11.15 (aka Red Hat Directory Server before 8.2.11-14) allows remote authenticated users to cause a denial of service (crash) via multiple @ characters in a GER attribute list…
|
CWE-20
Improper Input Validation
|
CVE-2013-4485
|
2024-11-21 10:55 |
2013-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291750
|
- |
|
redhat
scientificlinux
|
enterprise_linux
luci
|
Untrusted search path vulnerability in python-paste-script (aka paster) in Luci 0.26.0, when started using the initscript, allows local users to gain privileges via a Trojan horse .egg-info file in t…
|
NVD-CWE-Other
|
CVE-2013-4482
|
2024-11-21 10:55 |
2013-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
