|
290191
|
- |
|
redhat
|
conga
|
Red Hat Conga 0.12.2 allows remote attackers to obtain sensitive information via a crafted request to the (1) homebase, (2) cluster, (3) storage, (4) portal_skins/custom, or (5) logs Luci extension.
|
CWE-200
Information Exposure
|
CVE-2013-6496
|
2024-11-21 10:59 |
2014-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290192
|
- |
|
ibm
|
tivoli_storage_manager
|
The Backup-Archive client in IBM Tivoli Storage Manager (TSM) for Space Management 5.x and 6.x before 6.2.5.3, 6.3.x before 6.3.2, 6.4.x before 6.4.2, and 7.1.x before 7.1.0.3 on Linux and AIX, and 5…
|
CWE-281
Improper Preservation of Permissions
|
CVE-2013-6335
|
2024-11-21 10:59 |
2014-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290193
|
- |
|
splunk
|
splunk
|
Directory traversal vulnerability in the collect script in Splunk before 5.0.5 allows remote attackers to execute arbitrary commands via a .. (dot dot) in the file parameter. NOTE: this issue was SP…
|
CWE-22
Path Traversal
|
CVE-2013-6771
|
2024-11-21 10:59 |
2014-08-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290194
|
- |
|
cisco
|
adaptive_security_appliance_software
|
The WebVPN CIFS implementation in Cisco Adaptive Security Appliance (ASA) Software 9.0(.4.1) and earlier allows remote CIFS servers to cause a denial of service (device reload) via a long share list,…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6691
|
2024-11-21 10:59 |
2014-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290195
|
- |
|
ibm
|
storwize_unified_v7000_software
storwize_unified_v7000
|
IBM System Storage Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.3.0 does not properly restrict the content of a dump file upon encountering a 1691 hardware fault, which allows remote authenticat…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6737
|
2024-11-21 10:59 |
2014-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290196
|
- |
|
offis
|
dcmtk
|
(1) movescu.cc and (2) storescp.cc in dcmnet/apps/, (3) dcmnet/libsrc/scp.cc, (4) dcmwlm/libsrc/wlmactmg.cc, (5) dcmprscp.cc and (6) dcmpsrcv.cc in dcmpstat/apps/, (7) dcmpstat/tests/msgserv.cc, and …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6825
|
2024-11-21 10:59 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290197
|
- |
|
redhat
|
openstack
|
The default configuration in the standalone controller quickstack manifest in openstack-foreman-installer, as used in Red Hat Enterprise Linux OpenStack Platform 4.0, disables authentication for Qpid…
|
CWE-287
Improper Authentication
|
CVE-2013-6470
|
2024-11-21 10:59 |
2014-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290198
|
- |
|
openstack
canonical
|
neutron
ubuntu_linux
|
The default configuration in the Red Hat openstack-neutron package before 2013.2.3-7 does not properly set a configuration file for rootwrap, which allows remote attackers to gain privileges via a cr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6433
|
2024-11-21 10:59 |
2014-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290199
|
- |
|
ibm
|
db2
|
The Stored Procedure infrastructure in IBM DB2 9.5, 9.7 before FP9a, 10.1 before FP3a, and 10.5 before FP3a on Windows allows remote authenticated users to gain privileges by leveraging the CONNECT p…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6744
|
2024-11-21 10:59 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290200
|
- |
|
bitrix
|
bitrix_e-store_module
|
The Bitrix e-Store module before 14.0.1 for Bitrix Site Manager uses sequential values for the BITRIX_SM_SALE_UID cookie, which makes it easier for remote attackers to guess the cookie value and bypa…
|
CWE-287
Improper Authentication
|
CVE-2013-6788
|
2024-11-21 10:59 |
2014-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
