|
291291
|
- |
|
openstack
|
keystone
|
OpenStack Identity (Keystone) Folsom 2012.2.4 and earlier, Grizzly before 2013.1.1, and Havana does not immediately revoke the authentication token when deleting a user through the Keystone v2 API, w…
|
CWE-287
Improper Authentication
|
CVE-2013-2059
|
2024-11-21 10:50 |
2013-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291292
|
- |
|
qemu
|
qemu
|
The qemu guest agent in Qemu 1.4.1 and earlier, as used by Xen, when started in daemon mode, uses weak permissions for certain files, which allows local users to read and write to these files.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2007
|
2024-11-21 10:50 |
2013-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291293
|
- |
|
openstack
|
keystone
|
OpenStack Identity (Keystone) Grizzly 2013.1.1, when DEBUG mode logging is enabled, logs the (1) admin_token and (2) LDAP password in plaintext, which allows local users to obtain sensitive by readin…
|
CWE-200
Information Exposure
|
CVE-2013-2006
|
2024-11-21 10:50 |
2013-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291294
|
- |
|
openstack
|
devstack
|
OpenStack devstack uses world-readable permissions for keystone.conf, which allows local users to obtain sensitive information such as the LDAP password and admin_token secret by reading the file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1977
|
2024-11-21 10:50 |
2013-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291295
|
- |
|
xen
|
xen
|
Xen 4.0.x and 4.1.x incorrectly releases a grant reference when releasing a non-v1, non-transitive grant, which allows local guest administrators to cause a denial of service (host crash), obtain sen…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1964
|
2024-11-21 10:50 |
2013-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291296
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Use-after-free vulnerability in the nsContentUtils::RemoveScriptBlocker function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x be…
|
CWE-399
Resource Management Errors
|
CVE-2013-1681
|
2024-11-21 10:50 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291297
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Use-after-free vulnerability in the nsFrameList::FirstChild function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1680
|
2024-11-21 10:50 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291298
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
Use-after-free vulnerability in the mozilla::plugins::child::_geturlnotify function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x…
|
CWE-399
Resource Management Errors
|
CVE-2013-1679
|
2024-11-21 10:50 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291299
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The _cairo_xlib_surface_add_glyph function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers to…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1678
|
2024-11-21 10:50 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291300
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The gfxSkipCharsIterator::SetOffsets function in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 allows remote attackers…
|
CWE-399
Resource Management Errors
|
CVE-2013-1677
|
2024-11-21 10:50 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
