|
291221
|
- |
|
uclouvain
|
openjpeg
|
OpenJPEG 1.3 and earlier allows remote attackers to cause a denial of service (memory consumption or crash) via unspecified vectors related to NULL pointer dereferences, division-by-zero, and other e…
|
NVD-CWE-noinfo
|
CVE-2013-1447
|
2024-11-21 10:49 |
2013-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291222
|
- |
|
os4ed
|
opensis
|
Eval injection vulnerability in ajax.php in openSIS 4.5 through 5.2 allows remote attackers to execute arbitrary PHP code via the modname parameter.
|
CWE-94
Code Injection
|
CVE-2013-1349
|
2024-11-21 10:49 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291223
|
- |
|
mit
|
kerberos_5
|
do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.11 before 1.11.4, when a single-component realm name is used, allows remote authenticated users to cause a denial of s…
|
CWE-20
Improper Input Validation
|
CVE-2013-1417
|
2024-11-21 10:49 |
2013-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291224
|
- |
|
mit
debian
opensuse
|
kerberos_5
debian_linux
opensuse
|
The setup_server_realm function in main.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.7, when multiple realms are configured, allows remote attackers to cause a deni…
|
CWE-476
NULL Pointer Dereference
|
CVE-2013-1418
|
2024-11-21 10:49 |
2013-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291225
|
- |
|
microsoft
|
office
|
Heap-based buffer overflow in Microsoft Office 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code via a crafted WordPerfect document (.wpd) file, aka "Word Heap Overwrite Vulnera…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1325
|
2024-11-21 10:49 |
2013-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291226
|
- |
|
microsoft
|
office_2013_rt
office
|
Stack-based buffer overflow in Microsoft Office 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT allows remote attackers to execute arbitrary code via a crafted WordPerfect document (.wpd) fil…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1324
|
2024-11-21 10:49 |
2013-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291227
|
- |
|
dlitz
|
pycrypto
|
The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator (PRNG) before allowing a child process to access it, which makes it easier for c…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1445
|
2024-11-21 10:49 |
2013-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291228
|
- |
|
debian
marc_vertes
|
txt2man
|
A certain Debian patch for txt2man 1.5.5, as used in txt2man 1.5.5-2, 1.5.5-4, and others, allows local users to overwrite arbitrary files via a symlink attack on /tmp/2222.
|
CWE-59
Link Following
|
CVE-2013-1444
|
2024-11-21 10:49 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291229
|
- |
|
xen
|
xen
|
Xen 4.0 through 4.3.x, when using AVX or LWP capable CPUs, does not properly clear previous data from registers when using an XSAVE or XRSTOR to extend the state components of a saved or restored vCP…
|
CWE-200
Information Exposure
|
CVE-2013-1442
|
2024-11-21 10:49 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291230
|
- |
|
djangoproject
|
django
|
The authentication framework (django.contrib.auth) in Django 1.4.x before 1.4.8, 1.5.x before 1.5.4, and 1.6.x before 1.6 beta 4 allows remote attackers to cause a denial of service (CPU consumption)…
|
CWE-287
Improper Authentication
|
CVE-2013-1443
|
2024-11-21 10:49 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
