|
291721
|
- |
|
cisco
|
identity_services_engine_software
|
The web framework in Cisco Identity Services Engine (ISE) 1.0 and 1.1.0 before 1.1.0.665-5, 1.1.1 before 1.1.1.268-7, 1.1.2 before 1.1.2.145-10, 1.1.3 before 1.1.3.124-7, 1.1.4 before 1.1.4.218-7, an…
|
CWE-78
OS Command
|
CVE-2013-5530
|
2024-11-21 10:57 |
2013-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291722
|
- |
|
cisco
|
ios
catalyst_3750-x
|
Cisco IOS on Catalyst 3750X switches has default Service Module credentials, which makes it easier for local users to gain privileges via a Service Module login, aka Bug ID CSCue92286.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5522
|
2024-11-21 10:57 |
2013-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291723
|
- |
|
cisco
|
identity_services_engine_software
|
Cisco Identity Services Engine does not properly restrict the creation of guest accounts, which allows remote attackers to cause a denial of service (exhaustion of the account supply) via a series of…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5521
|
2024-11-21 10:57 |
2013-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291724
|
- |
|
cisco
|
web_security_appliance
content_security_management_appliance
email_security_appliance_firmware
|
The web framework on Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) devices does not properly manage the state of HTTP and HTTPS s…
|
CWE-20
Improper Input Validation
|
CVE-2013-5537
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291725
|
- |
|
cisco
|
secure_access_control_system
|
Cisco Secure Access Control System (ACS) does not properly implement an incoming-packet firewall rule, which allows remote attackers to cause a denial of service (process crash) via a flood of crafte…
|
CWE-20
Improper Input Validation
|
CVE-2013-5536
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291726
|
- |
|
apple
|
keynote
|
Apple Keynote before 6.0 does not properly handle the interaction between Keynote presentation mode and the Screen Lock implementation, which allows physically proximate attackers to obtain access by…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5148
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291727
|
- |
|
apple
|
os_x_server
|
The RADIUS service in Server App in Apple OS X Server before 3.0 selects a fallback X.509 certificate in unspecified circumstances, which might allow man-in-the-middle attackers to hijack RADIUS sess…
|
NVD-CWE-Other
|
CVE-2013-5143
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291728
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 6.1 disables the Private Browsing feature upon a launch of the Web Inspector, which makes it easier for context-dependent attackers to obtain browsing information by lev…
|
CWE-200
Information Exposure
|
CVE-2013-5130
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291729
|
- |
|
apple
|
mac_os_x
|
The USB hub controller in Apple Mac OS X before 10.9 allows local users to cause a denial of service (system crash) via a request with a crafted (1) port or (2) port number.
|
CWE-20
Improper Input Validation
|
CVE-2013-5192
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291730
|
- |
|
apple
|
mac_os_x
|
The syslog implementation in Apple Mac OS X before 10.9 allows local users to obtain sensitive information by leveraging access to the Guest account and reading console-log messages from previous Gue…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5191
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
