|
291321
|
- |
|
redhat
canonical
|
libvirt
ubuntu_linux
enterprise_linux
|
The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated u…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4296
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291322
|
- |
|
redhat
|
libvirt
|
libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service (memory consumption) via a large number of domain migrate parameters in certain RPC calls in (1) daemon/remote.c and (2) remote…
|
CWE-399
Resource Management Errors
|
CVE-2013-4292
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291323
|
- |
|
redhat
|
libvirt
|
The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not properly set group memberships, which allows local users to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4291
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291324
|
- |
|
redhat
|
libvirt
|
The xenDaemonListDefinedDomains function in xen/xend_internal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of service (memory corruption and crash) via vectors involving the…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4239
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291325
|
- |
|
redhat
|
jboss_a-mq
jboss_fuse
|
Multiple cross-site scripting (XSS) vulnerabilities in Fuse Management Console in Red Hat JBoss Fuse 6.0.0 before patch 3 and JBoss A-MQ 6.0.0 before patch 3 allow remote attackers to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4372
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291326
|
- |
|
proftpd
|
proftpd
|
Integer overflow in kbdint.c in mod_sftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service (memory consumption) via a large response count value in an authentication …
|
CWE-189
Numeric Errors
|
CVE-2013-4359
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291327
|
- |
|
littlecms
|
little_cms_color_engine
|
Multiple stack-based buffer overflows in LittleCMS (aka lcms or liblcms) 1.19 and earlier allow remote attackers to cause a denial of service (crash) via a crafted (1) ICC color profile to the icctra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4276
|
2024-11-21 10:55 |
2013-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291328
|
- |
|
libtiff
|
libtiff
|
The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4244
|
2024-11-21 10:55 |
2013-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291329
|
- |
|
marketpress
|
backwpup_plugin
|
Cross-site scripting (XSS) vulnerability in the BackWPup plugin before 3.0.13 for WordPress allows remote attackers to inject arbitrary web script or HTML via the tab parameter to wp-admin/admin.php.
|
CWE-79
Cross-site Scripting
|
CVE-2013-4626
|
2024-11-21 10:55 |
2013-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291330
|
- |
|
linux
|
linux_kernel
|
The IPv6 SCTP implementation in net/sctp/ipv6.c in the Linux kernel through 3.11.1 uses data structures and function calls that do not trigger an intended configuration of IPsec encryption, which all…
|
CWE-310
Cryptographic Issues
|
CVE-2013-4350
|
2024-11-21 10:55 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
