|
291901
|
- |
|
rack_project
|
rack
|
Rack::Session::Cookie in Rack 1.5.x before 1.5.2, 1.4.x before 1.4.5, 1.3.x before 1.3.10, 1.2.x before 1.2.8, and 1.1.x before 1.1.6 allows remote attackers to guess the session cookie, gain privile…
|
NVD-CWE-noinfo
|
CVE-2013-0263
|
2024-11-21 10:47 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291902
|
- |
|
rack_project
|
rack
|
rack/file.rb (Rack::File) in Rack 1.5.x before 1.5.2 and 1.4.x before 1.4.5 allows attackers to access arbitrary files outside the intended root directory via a crafted PATH_INFO environment variable…
|
CWE-22
Path Traversal
|
CVE-2013-0262
|
2024-11-21 10:47 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291903
|
- |
|
gnu
|
glibc
|
Buffer overflow in the extend_buffers function in the regular expression matcher (posix/regexec.c) in glibc, possibly 2.17 and earlier, allows context-dependent attackers to cause a denial of service…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0242
|
2024-11-21 10:47 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291904
|
- |
|
squid-cache
canonical
|
squid
ubuntu_linux
|
cachemgr.cgi in Squid 3.1.x and 3.2.x, possibly 3.1.22, 3.2.4, and other versions, allows remote attackers to cause a denial of service (resource consumption) via a crafted request. NOTE: this issue…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0189
|
2024-11-21 10:47 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291905
|
- |
|
adobe
|
flash_player
|
Adobe Flash Player before 10.3.183.51 and 11.x before 11.5.502.149 on Windows and Mac OS X, before 10.3.183.51 and 11.x before 11.2.202.262 on Linux, before 11.1.111.32 on Android 2.x and 3.x, and be…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0634
|
2024-11-21 10:47 |
2013-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291906
|
- |
|
adobe
|
flash_player
|
Buffer overflow in Adobe Flash Player before 10.3.183.51 and 11.x before 11.5.502.149 on Windows and Mac OS X, before 10.3.183.51 and 11.x before 11.2.202.262 on Linux, before 11.1.111.32 on Android …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0633
|
2024-11-21 10:47 |
2013-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291907
|
- |
|
qt
|
qt
|
The QSharedMemory class in Qt 5.0.0, 4.8.x before 4.8.5, 4.7.x before 4.7.6, and other versions including 4.4.0 uses weak permissions (world-readable and world-writable) for shared memory segments, w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0254
|
2024-11-21 10:47 |
2013-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291908
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_web_platform
|
The GUI installer in JBoss Enterprise Application Platform (EAP) and Enterprise Web Platform (EWP) 5.2.0 and possibly 5.1.2 uses world-readable permissions for the auto-install XML file, which allows…
|
CWE-200
Information Exposure
|
CVE-2013-0218
|
2024-11-21 10:47 |
2013-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291909
|
- |
|
libssh
|
libssh
|
The publickey_from_privatekey function in libssh before 0.5.4, when no algorithm is matched during negotiations, allows remote attackers to cause a denial of service (NULL pointer dereference and cra…
|
CWE-399
Resource Management Errors
|
CVE-2013-0176
|
2024-11-21 10:47 |
2013-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291910
|
- |
|
samba
|
samba
|
Cross-site request forgery (CSRF) vulnerability in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to hijack the…
|
CWE-352
Origin Validation Error
|
CVE-2013-0214
|
2024-11-21 10:47 |
2013-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
