|
290961
|
- |
|
koushik_dutta
|
superuser
|
Untrusted search path vulnerability in the CyanogenMod/ClockWorkMod/Koush Superuser package 1.0.2.1 for Android 4.2.x and earlier allows attackers to trigger the launch of a Trojan horse app_process …
|
CWE-22
Path Traversal
|
CVE-2013-6768
|
2024-11-21 10:59 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290962
|
- |
|
ibm
|
quickfile
|
Cross-site scripting (XSS) vulnerability in IBM QuickFile 1.0.0.0 before iFix 4 and 1.1.0.1 before iFix 3 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2013-6729
|
2024-11-21 10:59 |
2014-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290963
|
- |
|
jansson_project
|
jansson
|
Jansson, possibly 2.4 and earlier, does not restrict the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a …
|
CWE-310
Cryptographic Issues
|
CVE-2013-6401
|
2024-11-21 10:59 |
2014-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290964
|
- |
|
apache
oracle
canonical
|
http_server
ubuntu_linux
|
The dav_xml_get_cdata function in main/util.c in the mod_dav module in the Apache HTTP Server before 2.4.8 does not properly remove whitespace characters from CDATA sections, which allows remote atta…
|
NVD-CWE-noinfo
|
CVE-2013-6438
|
2024-11-21 10:59 |
2014-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290965
|
- |
|
canonical
debian
fedoraproject
linuxfoundation
|
ubuntu_linux
debian_linux
fedora
cups-filters
|
The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6476
|
2024-11-21 10:59 |
2014-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290966
|
- |
|
canonical
debian
fedoraproject
linuxfoundation
|
ubuntu_linux
debian_linux
fedora
cups-filters
|
Multiple integer overflows in (1) OPVPOutputDev.cxx and (2) oprs/OPVPSplash.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allow remote attackers to execute arbitrary code via a c…
|
CWE-189
Numeric Errors
|
CVE-2013-6475
|
2024-11-21 10:59 |
2014-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290967
|
- |
|
linuxfoundation
canonical
debian
fedoraproject
|
cups-filters
ubuntu_linux
debian_linux
fedora
|
Heap-based buffer overflow in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows remote attackers to execute arbitrary code via a crafted PDF file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6474
|
2024-11-21 10:59 |
2014-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290968
|
- |
|
canonical
linuxfoundation
|
ubuntu_linux
cups-filters
|
Multiple heap-based buffer overflows in the urftopdf filter in cups-filters 1.0.25 before 1.0.47 allow remote attackers to execute arbitrary code via a large (1) page or (2) line in a URF file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6473
|
2024-11-21 10:59 |
2014-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290969
|
- |
|
apple
|
iphone_os
|
TelephonyUI Framework in Apple iOS 7 before 7.1, when Safari is used, does not require user confirmation for FaceTime audio calls, which allows remote attackers to obtain telephone number or e-mail a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6835
|
2024-11-21 10:59 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290970
|
- |
|
samba
|
samba
|
The owner_set function in smbcacls.c in smbcacls in Samba 4.0.x before 4.0.16 and 4.1.x before 4.1.6 removes an ACL during use of a --chown or --chgrp option, which allows remote attackers to bypass …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6442
|
2024-11-21 10:59 |
2014-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
