|
289931
|
- |
|
cisco
|
scientific_atlanta__dpr\/epr2320_firmware
scientific_atlanta__dpr\/epr2320
scientific_atlanta__dpr2325_firmware
scientific_atlanta__dpr2325
|
Multiple cross-site request forgery (CSRF) vulnerabilities on Cisco Scientific Atlanta DPR2320R2 routers with software 2.0.2r1262-090417 allow remote attackers to hijack the authentication of adminis…
|
CWE-352
Origin Validation Error
|
CVE-2013-7043
|
2024-11-21 11:00 |
2013-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289932
|
- |
|
novell
|
suse_lifecycle_management_server
|
SUSE Lifecycle Management Server (SLMS) before 1.3.7 uses world-readable permissions for the secret keys, which allows local users to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7042
|
2024-11-21 11:00 |
2013-12-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289933
|
- |
|
linux
|
linux_kernel
|
The ieee80211_radiotap_iterator_init function in net/wireless/radiotap.c in the Linux kernel before 3.11.7 does not check whether a frame contains any data outside of the header, which might allow at…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7027
|
2024-11-21 11:00 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289934
|
- |
|
linux
|
linux_kernel
|
Multiple race conditions in ipc/shm.c in the Linux kernel before 3.12.2 allow local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via …
|
CWE-362
Race Condition
|
CVE-2013-7026
|
2024-11-21 11:00 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289935
|
- |
|
enorth
|
webpublisher_cms
|
SQL injection vulnerability in m_worklog/log_searchday.jsp in Enorth Webpublisher CMS, possibly 5.0 and earlier, allows remote attackers to execute arbitrary SQL commands via the thisday parameter.
|
CWE-89
SQL Injection
|
CVE-2013-6985
|
2024-11-21 11:00 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289936
|
- |
|
sonicwall
|
analyzer
global_management_system
uma_e5000_firmware
|
Multiple cross-site scripting (XSS) vulnerabilities in ematStaticAlertTypes.jsp in the Alert Settings section in Dell SonicWALL Global Management System (GMS), Analyzer, and UMA EM5000 7.1 SP1 before…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7025
|
2024-11-21 11:00 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289937
|
- |
|
ffmpeg
|
ffmpeg
|
The jpeg2000_decode_tile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not consider the component number in certain calculations, which allows remote attackers to cause a denial of s…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7024
|
2024-11-21 11:00 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289938
|
- |
|
ffmpeg
|
ffmpeg
|
The ff_combine_frame function in libavcodec/parser.c in FFmpeg before 2.1 does not properly handle certain memory-allocation errors, which allows remote attackers to cause a denial of service (out-of…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7023
|
2024-11-21 11:00 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289939
|
- |
|
ffmpeg
|
ffmpeg
|
The g2m_init_buffers function in libavcodec/g2meet.c in FFmpeg before 2.1 does not properly allocate memory for tiles, which allows remote attackers to cause a denial of service (out-of-bounds array …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7022
|
2024-11-21 11:00 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289940
|
- |
|
ffmpeg
|
ffmpeg
|
The filter_frame function in libavfilter/vf_fps.c in FFmpeg before 2.1 does not properly ensure the availability of FIFO content, which allows remote attackers to cause a denial of service (double fr…
|
CWE-399
Resource Management Errors
|
CVE-2013-7021
|
2024-11-21 11:00 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
