|
291771
|
- |
|
tryton
|
tryton
|
Directory traversal vulnerability in the client in Tryton 3.0.0, as distributed before 20131104 and earlier, allows remote servers to write arbitrary files via path separators in the extension of a r…
|
CWE-22
Path Traversal
|
CVE-2013-4510
|
2024-11-21 10:55 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291772
|
- |
|
redhat
suse
|
network_satellite
satellite_with_embedded_oracle
satellite
manager
linux_enterprise
|
Red Hat Satellite 5.6 and earlier does not disable the web interface that is used to create the first user for a satellite, which allows remote attackers to create administrator accounts.
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2013-4480
|
2024-11-21 10:55 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291773
|
- |
|
osirix-viewer
|
osirix
osirix_md
|
The DICOM listener in OsiriX before 5.8 and before 2.5-MD, when starting up, encrypts the TLS private key file using "SuperSecretPassword" as the hardcoded password, which allows local users to obtai…
|
CWE-255
Credentials Management
|
CVE-2013-4425
|
2024-11-21 10:55 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291774
|
- |
|
google
|
web_toolkit
|
Multiple cross-site scripting (XSS) vulnerabilities in the JUnit files in the GWTTestCase in Google Web Toolkit (GWT) before 2.5.1 RC1 allow remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4204
|
2024-11-21 10:55 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291775
|
- |
|
samba
|
samba
|
Samba 4.0.x before 4.0.11 and 4.1.x before 4.1.1, when LDAP or HTTP is provided over SSL, uses world-readable permissions for a private key, which allows local users to obtain sensitive information b…
|
CWE-310
Cryptographic Issues
|
CVE-2013-4476
|
2024-11-21 10:55 |
2013-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291776
|
- |
|
samba
debian
canonical
|
samba
debian_linux
ubuntu_linux
|
Samba 3.2.x through 3.6.x before 3.6.20, 4.0.x before 4.0.11, and 4.1.x before 4.1.1, when vfs_streams_depot or vfs_streams_xattr is enabled, allows remote attackers to bypass intended file restricti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4475
|
2024-11-21 10:55 |
2013-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291777
|
- |
|
linux
|
linux_kernel
|
The mp_get_count function in drivers/staging/sb105x/sb_pci_mp.c in the Linux kernel before 3.12 does not initialize a certain data structure, which allows local users to obtain sensitive information …
|
CWE-200
Information Exposure
|
CVE-2013-4516
|
2024-11-21 10:55 |
2013-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291778
|
- |
|
linux
|
linux_kernel
|
The bcm_char_ioctl function in drivers/staging/bcm/Bcmchar.c in the Linux kernel before 3.12 does not initialize a certain data structure, which allows local users to obtain sensitive information fro…
|
CWE-200
Information Exposure
|
CVE-2013-4515
|
2024-11-21 10:55 |
2013-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291779
|
- |
|
linux
|
linux_kernel
|
Multiple buffer overflows in drivers/staging/wlags49_h2/wl_priv.c in the Linux kernel before 3.12 allow local users to cause a denial of service or possibly have unspecified other impact by leveragin…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4514
|
2024-11-21 10:55 |
2013-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291780
|
- |
|
linux
|
linux_kernel
|
Buffer overflow in the oz_cdev_write function in drivers/staging/ozwpan/ozcdev.c in the Linux kernel before 3.12 allows local users to cause a denial of service or possibly have unspecified other imp…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4513
|
2024-11-21 10:55 |
2013-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
