|
291201
|
- |
|
fedoraproject
moodle
|
fedora
moodle
|
user/view.php in Moodle through 2.1.10, 2.2.x before 2.2.8, 2.3.x before 2.3.5, and 2.4.x before 2.4.2 does not enforce the forceloginforprofiles setting, which allows remote attackers to obtain sens…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1830
|
2024-11-21 10:50 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291202
|
- |
|
moodle
|
moodle
|
calendar/managesubscriptions.php in Moodle 2.4.x before 2.4.2 does not consider capability requirements before displaying calendar subscriptions, which allows remote authenticated users to obtain pot…
|
CWE-200
Information Exposure
|
CVE-2013-1829
|
2024-11-21 10:50 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291203
|
- |
|
openstack
canonical
|
folsom
ubuntu_linux
|
OpenStack Keystone Folsom (2012.2) does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions…
|
CWE-287
Improper Authentication
|
CVE-2013-1865
|
2024-11-21 10:50 |
2013-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291204
|
- |
|
openstack
|
glance
|
The v1 API in OpenStack Glance Essex (2012.1), Folsom (2012.2), and Grizzly, when using the single-tenant Swift or S3 store, reports the location field, which allows remote authenticated users to obt…
|
CWE-200
Information Exposure
|
CVE-2013-1840
|
2024-11-21 10:50 |
2013-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291205
|
- |
|
openstack
canonical
|
essex
folsom
grizzly
ubuntu_linux
|
OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) does not properly implement a quota for fixed IPs, which allows remote authenticated users to cause a denial of service (resource…
|
CWE-399
Resource Management Errors
|
CVE-2013-1838
|
2024-11-21 10:50 |
2013-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291206
|
- |
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
Heap-based buffer overflow in the wdm_in_callback function in drivers/usb/class/cdc-wdm.c in the Linux kernel before 3.8.4 allows physically proximate attackers to cause a denial of service (system c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1860
|
2024-11-21 10:50 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291207
|
- |
|
linux
|
linux_kernel
|
fs/ext3/super.c in the Linux kernel before 3.8.4 uses incorrect arguments to functions in certain circumstances related to printk input, which allows local users to conduct format-string attacks and …
|
CWE-20
Improper Input Validation
|
CVE-2013-1848
|
2024-11-21 10:50 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291208
|
- |
|
linux
|
linux_kernel
|
The sctp_getsockopt_assoc_stats function in net/sctp/socket.c in the Linux kernel before 3.8.4 does not validate a size value before proceeding to a copy_from_user operation, which allows local users…
|
CWE-20
Improper Input Validation
|
CVE-2013-1828
|
2024-11-21 10:50 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291209
|
- |
|
linux
|
linux_kernel
|
net/dccp/ccid.h in the Linux kernel before 3.5.4 allows local users to gain privileges or cause a denial of service (NULL pointer dereference and system crash) by leveraging the CAP_NET_ADMIN capabil…
|
NVD-CWE-Other
|
CVE-2013-1827
|
2024-11-21 10:50 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291210
|
- |
|
linux
|
linux_kernel
|
The xfrm_state_netlink function in net/xfrm/xfrm_user.c in the Linux kernel before 3.5.7 does not properly handle error conditions in dump_one_state function calls, which allows local users to gain p…
|
NVD-CWE-Other
|
CVE-2013-1826
|
2024-11-21 10:50 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
