|
297911
|
- |
|
cisco
|
jabber_im
|
The XML parser in the Cisco Jabber IM application for Android allows remote authenticated users to cause a denial of service (blocked connection) by leveraging an entry on a Buddy list and sending a …
|
CWE-20
Improper Input Validation
|
CVE-2013-1161
|
2024-11-21 10:49 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297912
|
- |
|
lighttpd
|
lighttpd
|
The configuration file for the FastCGI PHP support for lighttpd before 1.4.28 on Debian GNU/Linux creates a socket file with a predictable name in /tmp, which allows local users to hijack the PHP con…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1427
|
2024-11-21 10:49 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297913
|
- |
|
oracle
|
support_tools
|
asr in Oracle Auto Service Request in Oracle Support Tools before 4.3.2 allows local users to modify arbitrary files via a symlink attack on a predictable filename in /tmp.
|
CWE-59
Link Following
|
CVE-2013-1495
|
2024-11-21 10:49 |
2013-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297914
|
- |
|
piwigo
|
piwigo
|
Cross-site request forgery (CSRF) vulnerability in the LocalFiles Editor plugin in Piwigo before 2.4.7 allows remote attackers to hijack the authentication of administrators for requests that create …
|
CWE-352
Origin Validation Error
|
CVE-2013-1468
|
2024-11-21 10:49 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297915
|
- |
|
fusionforge
|
fusionforge
|
(1) contrib/gforge-3.0-cronjobs.patch, (2) cronjobs/homedirs.php, (3) deb-specific/fileforge.pl, (4) deb-specific/group_dump_update.pl, (5) deb-specific/ssh_dump_update.pl, (6) deb-specific/user_dump…
|
CWE-59
Link Following
|
CVE-2013-1423
|
2024-11-21 10:49 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297916
|
- |
|
piwigo
|
piwigo
|
Directory traversal vulnerability in install.php in Piwigo before 2.4.7 allows remote attackers to read and delete arbitrary files via a .. (dot dot) in the dl parameter.
|
CWE-22
Path Traversal
|
CVE-2013-1469
|
2024-11-21 10:49 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297917
|
- |
|
adobe
|
flash_player
flash_player_for_android
adobe_air_sdk_and_compiler
adobe_air_sdk
adobe_air
|
Heap-based buffer overflow in Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X, before 10.3.183.68 and 11.x before 11.2.202.275 on Linux, before 11.1.111.44 …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1375
|
2024-11-21 10:49 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297918
|
- |
|
adobe
|
flash_player
flash_player_for_android
adobe_air_sdk_and_compiler
adobe_air_sdk
adobe_air
|
Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X, before 10.3.183.68 and 11.x before 11.2.202.275 on Linux, before 11.1.111.44 on Android 2.x and 3.x, and be…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1371
|
2024-11-21 10:49 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297919
|
- |
|
microsoft
|
internet_explorer
|
Use-after-free vulnerability in Microsoft Internet Explorer 8 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka "Internet Explorer…
|
CWE-399
Resource Management Errors
|
CVE-2013-1288
|
2024-11-21 10:49 |
2013-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297920
|
- |
|
microsoft
|
windows_xp
windows_server_2003
windows_vista
windows_server_2008
windows_7
windows_8
windows_server_2012
|
The USB kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, Windows 8, and Windows Se…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1287
|
2024-11-21 10:49 |
2013-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
