|
291601
|
- |
|
adobe
|
acrobat
acrobat_reader
|
Adobe Reader and Acrobat 11.x before 11.0.05 on Windows allow remote attackers to execute arbitrary JavaScript code in a javascript: URL via a crafted PDF document.
|
CWE-94
Code Injection
|
CVE-2013-5325
|
2024-11-21 10:57 |
2013-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291602
|
- |
|
ibm
|
aix
|
Multiple buffer overflows in (1) mkque and (2) mkquedev in bos.rte.printers in IBM AIX 6.1 and 7.1 allow local users to gain privileges by leveraging printq group membership.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5419
|
2024-11-21 10:57 |
2013-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291603
|
- |
|
apple
|
mac_os_x
|
Directory Services in Apple Mac OS X before 10.8.5 Supplemental Update allows local users to bypass password-based authentication and modify arbitrary Directory Services records via unspecified vecto…
|
CWE-287
Improper Authentication
|
CVE-2013-5163
|
2024-11-21 10:57 |
2013-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291604
|
- |
|
watchguard
|
server_center
|
Multiple untrusted search path vulnerabilities in (1) Watchguard Log Collector (wlcollector.exe) and (2) Watchguard WebBlocker Server (wbserver.exe) in WatchGuard Server Center 11.7.4, 11.7.3, and po…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5701
|
2024-11-21 10:57 |
2013-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291605
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange AppSuite before 7.2.2 allow remote authenticated users to inject arbitrary web script or HTML via (1) content with the text/xml MIM…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5690
|
2024-11-21 10:57 |
2013-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291606
|
- |
|
cisco
|
wireless_lan_controller
|
Cross-site scripting (XSS) vulnerability in the management interface on Cisco Wireless LAN Controller (WLC) devices allows remote attackers to inject arbitrary web script or HTML via a crafted URL, a…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5519
|
2024-11-21 10:57 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291607
|
- |
|
cisco
|
unified_communications_domain_manager
|
SQL injection vulnerability in the web framework in Cisco Unified Communications Domain Manager allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuh…
|
CWE-89
SQL Injection
|
CVE-2013-5517
|
2024-11-21 10:57 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291608
|
- |
|
cisco
|
ios_xr
|
The UDP process in Cisco IOS XR 4.3.1 does not free packet memory upon detecting full packet queues, which allows remote attackers to cause a denial of service (memory consumption) via UDP packets to…
|
CWE-399
Resource Management Errors
|
CVE-2013-5503
|
2024-11-21 10:57 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291609
|
- |
|
barton
|
ngircd
|
The (1) Conn_StartLogin and (2) cb_Read_Resolver_Result functions in conn.c in ngIRCd 18 through 20.2, when the configuration option NoticeAuth is enabled, does not properly handle the return code fo…
|
CWE-20
Improper Input Validation
|
CVE-2013-5580
|
2024-11-21 10:57 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291610
|
- |
|
ibm
|
maximo_asset_management
|
IBM Maximo Asset Management 6.2 through 6.2.8, 7.1 before 7.1.1.12, and 7.5 before 7.5.0.5 allows remote attackers to bypass intended access restrictions via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2013-5395
|
2024-11-21 10:57 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
