|
291521
|
- |
|
cisco
|
web_security_appliance
content_security_management_appliance
email_security_appliance_firmware
|
The web framework on Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) devices does not properly manage the state of HTTP and HTTPS s…
|
CWE-20
Improper Input Validation
|
CVE-2013-5537
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291522
|
- |
|
cisco
|
secure_access_control_system
|
Cisco Secure Access Control System (ACS) does not properly implement an incoming-packet firewall rule, which allows remote attackers to cause a denial of service (process crash) via a flood of crafte…
|
CWE-20
Improper Input Validation
|
CVE-2013-5536
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291523
|
- |
|
apple
|
keynote
|
Apple Keynote before 6.0 does not properly handle the interaction between Keynote presentation mode and the Screen Lock implementation, which allows physically proximate attackers to obtain access by…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5148
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291524
|
- |
|
apple
|
os_x_server
|
The RADIUS service in Server App in Apple OS X Server before 3.0 selects a fallback X.509 certificate in unspecified circumstances, which might allow man-in-the-middle attackers to hijack RADIUS sess…
|
NVD-CWE-Other
|
CVE-2013-5143
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291525
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 6.1 disables the Private Browsing feature upon a launch of the Web Inspector, which makes it easier for context-dependent attackers to obtain browsing information by lev…
|
CWE-200
Information Exposure
|
CVE-2013-5130
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291526
|
- |
|
apple
|
mac_os_x
|
The USB hub controller in Apple Mac OS X before 10.9 allows local users to cause a denial of service (system crash) via a request with a crafted (1) port or (2) port number.
|
CWE-20
Improper Input Validation
|
CVE-2013-5192
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291527
|
- |
|
apple
|
mac_os_x
|
The syslog implementation in Apple Mac OS X before 10.9 allows local users to obtain sensitive information by leveraging access to the Guest account and reading console-log messages from previous Gue…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5191
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291528
|
- |
|
apple
|
mac_os_x
|
Smart Card Services in Apple Mac OS X before 10.9 does not properly implement certificate-revocation checks, which allows remote attackers to cause a denial of service (Smart Card usage outage) by in…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5190
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291529
|
- |
|
apple
|
mac_os_x
|
Apple Mac OS X before 10.9 does not preserve a certain administrative system-preferences setting across software updates, which allows context-dependent attackers to bypass intended access restrictio…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5189
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291530
|
- |
|
apple
|
mac_os_x
|
The Screen Lock implementation in Apple Mac OS X before 10.9, when hibernation and autologin are enabled, does not require a password for a transition out of hibernation, which allows physically prox…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5188
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
