|
291271
|
- |
|
opensuse
google
debian
|
opensuse
chrome
debian_linux
|
Use-after-free vulnerability in Google Chrome before 31.0.1650.48 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the x-webkit-sp…
|
CWE-399
Resource Management Errors
|
CVE-2013-6621
|
2024-11-21 10:59 |
2013-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291272
|
- |
|
apache
|
tomcat
|
Cross-site request forgery (CSRF) vulnerability in the Manager application in Apache Tomcat 5.5.25 and earlier allows remote attackers to hijack the authentication of administrators for requests that…
|
CWE-352
Origin Validation Error
|
CVE-2013-6357
|
2024-11-21 10:59 |
2013-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291273
|
- |
|
silverstripe
|
silverstripe
|
security/MemberLoginForm.php in SilverStripe 3.0.3 supports credentials in a GET request, which allows remote or local attackers to obtain sensitive information by reading web-server access logs, web…
|
CWE-200
Information Exposure
|
CVE-2013-6789
|
2024-11-21 10:59 |
2013-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291274
|
- |
|
linux
|
linux_kernel
|
The uio_mmap_physical function in drivers/uio/uio.c in the Linux kernel before 3.12 does not validate the size of a memory block, which allows local users to cause a denial of service (memory corrupt…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6763
|
2024-11-21 10:59 |
2013-11-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291275
|
- |
|
juniper
|
junos
|
jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before 12.3R1 allows remote authenticated users to execute arbitrary …
|
CWE-20
Improper Input Validation
|
CVE-2013-6618
|
2024-11-21 10:59 |
2013-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291276
|
- |
|
saltstack
|
salt
|
The salt master in Salt (aka SaltStack) 0.11.0 through 0.17.0 does not properly drop group privileges, which makes it easier for remote attackers to gain privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6617
|
2024-11-21 10:59 |
2013-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291277
|
- |
|
vmware
|
hyperic_hq
|
The Groovy script console in VMware Hyperic HQ 4.6.6 allows remote authenticated administrators to execute arbitrary code via a Runtime.getRuntime().exec call.
|
CWE-94
Code Injection
|
CVE-2013-6366
|
2024-11-21 10:59 |
2013-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291278
|
- |
|
wireshark
|
wireshark
|
epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to …
|
CWE-20
Improper Input Validation
|
CVE-2013-6340
|
2024-11-21 10:59 |
2013-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291279
|
- |
|
wireshark
|
wireshark
|
The dissect_openwire_type function in epan/dissectors/packet-openwire.c in the OpenWire dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 allows remote attackers to cause a denial o…
|
CWE-20
Improper Input Validation
|
CVE-2013-6339
|
2024-11-21 10:59 |
2013-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291280
|
- |
|
wireshark
|
wireshark
|
The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly initialize a data structure, which all…
|
CWE-20
Improper Input Validation
|
CVE-2013-6338
|
2024-11-21 10:59 |
2013-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
