|
290321
|
- |
|
nagios
|
nagios
|
Off-by-one error in the process_cgivars function in contrib/daemonchk.c in Nagios Core 3.5.1, 4.0.2, and earlier allows remote authenticated users to obtain sensitive information from process memory …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7205
|
2024-11-21 11:00 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290322
|
- |
|
nagios
icinga
|
nagios
icinga
|
Multiple off-by-one errors in Nagios Core 3.5.1, 4.0.2, and earlier, and Icinga before 1.8.5, 1.9 before 1.9.4, and 1.10 before 1.10.2 allow remote authenticated users to obtain sensitive information…
|
CWE-20
Improper Input Validation
|
CVE-2013-7108
|
2024-11-21 11:00 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290323
|
- |
|
icinga
|
icinga
|
Cross-site request forgery (CSRF) vulnerability in cmd.cgi in Icinga 1.8.5, 1.9.4, 1.10.2, and earlier allows remote attackers to hijack the authentication of users for unspecified commands via unspe…
|
CWE-352
Origin Validation Error
|
CVE-2013-7107
|
2024-11-21 11:00 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290324
|
- |
|
icinga
|
icinga
|
Multiple stack-based buffer overflows in Icinga before 1.8.5, 1.9 before 1.9.4, and 1.10 before 1.10.2 allow remote authenticated users to cause a denial of service (crash) and possibly execute arbit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7106
|
2024-11-21 11:00 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290325
|
- |
|
memcached
|
memcached
|
memcached before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (crash) via a request that triggers an "unbounded key print" during logging, related to an …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7291
|
2024-11-21 11:00 |
2014-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290326
|
- |
|
memcached
|
memcached
|
The do_item_get function in items.c in memcached 1.4.4 and other versions before 1.4.17, when running in verbose mode, allows remote attackers to cause a denial of service (segmentation fault) via a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7290
|
2024-11-21 11:00 |
2014-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290327
|
- |
|
memcached
|
memcached
|
memcached before 1.4.17 allows remote attackers to bypass authentication by sending an invalid request with SASL credentials, then sending another request with incorrect SASL credentials.
|
CWE-287
Improper Authentication
|
CVE-2013-7239
|
2024-11-21 11:00 |
2014-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290328
|
- |
|
vasco
|
identikey_authentication_server
|
VASCO IDENTIKEY Authentication Server (IAS) 3.4.x allows remote authenticated users to bypass Active Directory (AD) authentication by entering only a DIGIPASS one-time password, instead of the intend…
|
CWE-287
Improper Authentication
|
CVE-2013-7292
|
2024-11-21 11:00 |
2014-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290329
|
- |
|
libpng
|
libpng
|
The png_do_expand_palette function in libpng before 1.6.8 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via (1) a PLTE chunk of zero bytes or (…
|
NVD-CWE-Other
|
CVE-2013-6954
|
2024-11-21 11:00 |
2014-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290330
|
- |
|
aphpkb
|
aphpkb
|
Multiple cross-site scripting (XSS) vulnerabilities in register.php in Andy's PHP Knowledgebase (Aphpkb) before 0.95.8 allow remote attackers to inject arbitrary web script or HTML via the (1) first_…
|
CWE-79
Cross-site Scripting
|
CVE-2013-7289
|
2024-11-21 11:00 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
