|
290901
|
- |
|
xen
debian
|
xen
debian_linux
|
Buffer overflow in the Python bindings for the xc_vcpu_setaffinity call in Xen 4.0.x, 4.1.x, and 4.2.x allows local administrators with permissions to configure VCPU affinity to cause a denial of ser…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2072
|
2024-11-21 10:50 |
2013-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290902
|
- |
|
vmware
|
workstation
player
|
vmware-mount in VMware Workstation 8.x and 9.x and VMware Player 4.x and 5.x, on systems based on Debian GNU/Linux, allows host OS users to gain host OS privileges via a crafted lsb_release binary in…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1662
|
2024-11-21 10:50 |
2013-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290903
|
- |
|
redhat
apache
|
enterprise_mrg
qpid
|
The Python client in Apache Qpid before 2.2 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which al…
|
CWE-20
Improper Input Validation
|
CVE-2013-1909
|
2024-11-21 10:50 |
2013-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290904
|
- |
|
mesa3d
canonical
redhat
opensuse
|
mesa
ubuntu_linux
enterprise_linux
opensuse
|
The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d g…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1872
|
2024-11-21 10:50 |
2013-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290905
|
- |
|
happyworm
|
jplayer
|
Multiple cross-site scripting (XSS) vulnerabilities in actionscript/Jplayer.as in the Flash SWF component (jplayer.swf) in jPlayer before 2.2.23 allow remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2013-2022
|
2024-11-21 10:50 |
2013-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290906
|
- |
|
pypa
fedoraproject
|
pip
fedora
|
pip before 1.3 allows local users to overwrite arbitrary files via a symlink attack on a file in the /tmp/pip-build temporary directory.
|
CWE-59
Link Following
|
CVE-2013-1888
|
2024-11-21 10:50 |
2013-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290907
|
- |
|
happyworm
|
jplayer
|
Cross-site scripting (XSS) vulnerability in actionscript/Jplayer.as in the Flash SWF component (jplayer.swf) in jPlayer before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2023
|
2024-11-21 10:50 |
2013-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290908
|
- |
|
happyworm
owncloud
|
jplayer
owncloud
|
Multiple cross-site scripting (XSS) vulnerabilities in actionscript/Jplayer.as in the Flash SWF component (jplayer.swf) in jPlayer before 2.2.20, as used in ownCloud Server before 5.0.4 and other pro…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1942
|
2024-11-21 10:50 |
2013-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290909
|
- |
|
xen
|
xen
|
Xen 4.0.2 through 4.0.4, 4.1.x, and 4.2.x allows local PV guest users to cause a denial of service (hypervisor crash) via certain bit combinations to the XSETBV instruction.
|
CWE-20
Improper Input Validation
|
CVE-2013-2078
|
2024-11-21 10:50 |
2013-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290910
|
- |
|
mozilla
|
thunderbird_esr
firefox
seamonkey
thunderbird
|
Mozilla Firefox before 23.0, Firefox ESR 17.x before 17.0.8, Thunderbird before 17.0.8, Thunderbird ESR 17.x before 17.0.8, and SeaMonkey before 2.20 do not properly restrict local-filesystem access …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1717
|
2024-11-21 10:50 |
2013-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
