|
291271
|
- |
|
adobe
|
coldfusion
|
Unspecified vulnerability in Adobe ColdFusion 9.0 before Update 11, 9.0.1 before Update 10, 9.0.2 before Update 5, and 10 before Update 10 allows remote attackers to execute arbitrary code via unknow…
|
NVD-CWE-noinfo
|
CVE-2013-1389
|
2024-11-21 10:49 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291272
|
- |
|
cisco
|
webex_social
|
The user-management page in Cisco WebEx Social relies on client-side validation of values in the Screen Name, First Name, Middle Name, Last Name, Email Address, and Job Title fields, which allows rem…
|
CWE-20
Improper Input Validation
|
CVE-2013-1245
|
2024-11-21 10:49 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291273
|
- |
|
cisco
|
webex_social
|
Cross-site scripting (XSS) vulnerability in the portal module in Cisco WebEx Social allows remote authenticated users to inject arbitrary web script or HTML via a javascript: URL in the link field in…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1244
|
2024-11-21 10:49 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291274
|
- |
|
cisco
|
telepresence_supervisor_mse_8050_software
telepresence_supervisor_mse_8050
|
Cisco TelePresence Supervisor MSE 8050 before 2.3(1.31) allows remote attackers to cause a denial of service (CPU consumption or device reload) by establishing TCP connections at a high rate, aka Bug…
|
CWE-20
Improper Input Validation
|
CVE-2013-1236
|
2024-11-21 10:49 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291275
|
- |
|
cisco
|
secure_access_control_system
|
Session fixation vulnerability in Cisco Secure Access Control System (ACS) allows remote attackers to hijack web sessions via unspecified vectors, aka Bug ID CSCud95787.
|
CWE-287
Improper Authentication
|
CVE-2013-1200
|
2024-11-21 10:49 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291276
|
- |
|
cisco
|
unified_communications_manager
|
Cisco Unified Communications Manager (CUCM) does not properly limit the rate of authentication attempts, which allows remote attackers to cause a denial of service (application slowdown) via a series…
|
CWE-287
Improper Authentication
|
CVE-2013-1188
|
2024-11-21 10:49 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291277
|
- |
|
microsoft
|
malware_protection_engine
|
mpengine.dll in Microsoft Malware Protection Engine before 1.1.9506.0 on x64 platforms allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1346
|
2024-11-21 10:49 |
2013-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291278
|
- |
|
microsoft
|
.net_framework
|
Microsoft .NET Framework 4.5 does not properly create policy requirements for custom Windows Communication Foundation (WCF) endpoint authentication in certain situations involving passwords over HTTP…
|
CWE-287
Improper Authentication
|
CVE-2013-1337
|
2024-11-21 10:49 |
2013-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291279
|
- |
|
microsoft
|
.net_framework
|
The Common Language Runtime (CLR) in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check signatures, which allows remote attackers to make undetected changes to signed XM…
|
CWE-20
Improper Input Validation
|
CVE-2013-1336
|
2024-11-21 10:49 |
2013-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291280
|
- |
|
microsoft
|
word_viewer
word
|
Microsoft Word 2003 SP3 and Word Viewer allow remote attackers to execute arbitrary code via crafted shape data in a Word document, aka "Word Shape Corruption Vulnerability."
|
CWE-94
Code Injection
|
CVE-2013-1335
|
2024-11-21 10:49 |
2013-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
