|
291751
|
- |
|
redhat
scientificlinux
|
enterprise_linux
luci
|
Race condition in Luci 0.26.0 creates /var/lib/luci/etc/luci.ini with world-readable permissions before restricting the permissions, which allows local users to read the file and obtain sensitive inf…
|
CWE-362
Race Condition
|
CVE-2013-4481
|
2024-11-21 10:55 |
2013-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291752
|
- |
|
canonical
freedesktop
|
ubuntu_linux
poppler
|
Format string vulnerability in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.3 allows remote attackers to cause a denial of service (crash) via format string specifiers in …
|
CWE-20
Improper Input Validation
|
CVE-2013-4474
|
2024-11-21 10:55 |
2013-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291753
|
- |
|
freedesktop
canonical
|
poppler
ubuntu_linux
|
Stack-based buffer overflow in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4473
|
2024-11-21 10:55 |
2013-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291754
|
- |
|
lighttpd
debian
opensuse
|
lighttpd
debian_linux
opensuse
|
lighttpd before 1.4.33 does not check the return value of the (1) setuid, (2) setgid, or (3) setgroups functions, which might cause lighttpd to run as root if it is restarted and allows remote attack…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4559
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291755
|
- |
|
lighttpd
debian
opensuse
|
lighttpd
debian_linux
opensuse
|
Use-after-free vulnerability in lighttpd before 1.4.33 allows remote attackers to cause a denial of service (segmentation fault and crash) via unspecified vectors that trigger FAMMonitorDirectory fai…
|
CWE-416
Use After Free
|
CVE-2013-4560
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291756
|
- |
|
adaptivecomputing
|
torque_resource_manager
|
The send_the_mail function in server/svr_mail.c in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 4.2.6 allows remote attackers to execute arbitrary commands vi…
|
CWE-94
Code Injection
|
CVE-2013-4495
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291757
|
- |
|
gnu
opensuse
|
gnutls
opensuse
|
Off-by-one error in the dane_raw_tlsa in the DANE library (libdane) in GnuTLS 3.1.x before 3.1.16 and 3.2.x before 3.2.6 allows remote servers to cause a denial of service (memory corruption) via a r…
|
CWE-189
Numeric Errors
|
CVE-2013-4487
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291758
|
- |
|
gnu
|
gnutls
|
Buffer overflow in the dane_query_tlsa function in the DANE library (libdane) in GnuTLS 3.1.x before 3.1.15 and 3.2.x before 3.2.5 allows remote servers to cause a denial of service (memory corruptio…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4466
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291759
|
- |
|
redhat
theforeman
|
openstack
foreman
|
Multiple SQL injection vulnerabilities in app/models/concerns/host_common.rb in Foreman before 1.2.3 allow remote attackers to execute arbitrary SQL commands via the (1) fqdn or (2) hostgroup paramet…
|
CWE-89
SQL Injection
|
CVE-2013-4386
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291760
|
- |
|
linux
|
linux_kernel
|
Memory leak in the __kvm_set_memory_region function in virt/kvm/kvm_main.c in the Linux kernel before 3.9 allows local users to cause a denial of service (memory consumption) by leveraging certain de…
|
CWE-399
Resource Management Errors
|
CVE-2013-4592
|
2024-11-21 10:55 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
