|
290901
|
- |
|
systemd_project
debian
|
systemd
debian_linux
|
The SetX11Keyboard function in systemd, when PolicyKit Local Authority (PKLA) is used to change the group permissions on the X Keyboard Extension (XKB) layouts description, allows local users in the …
|
CWE-276
Incorrect Default Permissions
|
CVE-2013-4394
|
2024-11-21 10:55 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290902
|
- |
|
systemd_project
|
systemd
|
journald in systemd, when the origin of native messages is set to file, allows local users to cause a denial of service (logging service blocking) via a crafted file descriptor.
|
NVD-CWE-noinfo
|
CVE-2013-4393
|
2024-11-21 10:55 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290903
|
- |
|
systemd_project
|
systemd
|
systemd, when updating file permissions, allows local users to change the permissions and SELinux security contexts for arbitrary files via a symlink attack on unspecified files.
|
CWE-59
Link Following
|
CVE-2013-4392
|
2024-11-21 10:55 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290904
|
- |
|
systemd_project
debian
|
systemd
debian_linux
|
Integer overflow in the valid_user_field function in journal/journald-native.c in systemd allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2013-4391
|
2024-11-21 10:55 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290905
|
- |
|
openstack
canonical
|
glance
ubuntu_linux
|
OpenStack Image Registry and Delivery Service (Glance) Folsom, Grizzly before 2013.1.4, and Havana before 2013.2, when the download_image policy is configured, does not properly restrict access to ca…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4428
|
2024-11-21 10:55 |
2013-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290906
|
- |
|
mediawiki
|
mediawiki
|
(1) ApiBlock.php, (2) ApiCreateAccount.php, (3) ApiLogin.php, (4) ApiMain.php, (5) ApiQueryDeletedrevs.php, (6) ApiTokens.php, and (7) ApiUnblock.php in includes/api/ in MediaWiki 1.19.x before 1.19.…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4302
|
2024-11-21 10:55 |
2013-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290907
|
- |
|
mediawiki
|
mediawiki
|
includes/resourceloader/ResourceLoaderContext.php in MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 allows remote attackers to obtain sensitive information via a "<" (…
|
CWE-200
Information Exposure
|
CVE-2013-4301
|
2024-11-21 10:55 |
2013-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290908
|
- |
|
simplemachines
|
simple_machines_forum
|
Unrestricted file upload vulnerability in the avatar upload functionality in Simple Machines Forum before 2.0.6 and 2.1 allows remote authenticated users to execute arbitrary code by uploading a file…
|
NVD-CWE-Other
|
CVE-2013-4465
|
2024-11-21 10:55 |
2013-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290909
|
- |
|
dropbear_ssh_project
|
dropbear_ssh
|
Dropbear SSH Server before 2013.59 generates error messages for a failed logon attempt with different time delays depending on whether the user account exists, which allows remote attackers to discov…
|
CWE-189
Numeric Errors
|
CVE-2013-4434
|
2024-11-21 10:55 |
2013-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290910
|
- |
|
dropbear_ssh_project
|
dropbear_ssh
|
The buf_decompress function in packet.c in Dropbear SSH Server before 2013.59 allows remote attackers to cause a denial of service (memory consumption) via a compressed packet that has a large size w…
|
CWE-189
Numeric Errors
|
CVE-2013-4421
|
2024-11-21 10:55 |
2013-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
