|
290991
|
- |
|
konstanty_bialkowski
debian
|
libmodplug
debian_linux
|
Integer overflow in the abc_set_parts function in load_abc.cpp in libmodplug 0.8.8.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted…
|
CWE-189
Numeric Errors
|
CVE-2013-4233
|
2024-11-21 10:55 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290992
|
- |
|
openstack
|
cinder
|
The clear_volume function in LVMVolumeDriver driver in OpenStack Cinder 2013.1.1 through 2013.1.2 does not properly clear data when deleting a snapshot, which allows local users to obtain sensitive i…
|
CWE-200
Information Exposure
|
CVE-2013-4183
|
2024-11-21 10:55 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290993
|
- |
|
openstack
canonical
|
cinder
ubuntu_linux
|
The (1) backup (api/contrib/backups.py) and (2) volume transfer (contrib/volume_transfer.py) APIs in OpenStack Cinder Grizzly 2013.1.3 and earlier allows remote attackers to cause a denial of service…
|
CWE-399
Resource Management Errors
|
CVE-2013-4202
|
2024-11-21 10:55 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290994
|
- |
|
redhat
|
enterprise_virtualization
|
Cross-site scripting (XSS) vulnerability in the addAlert function in the RedirectServlet servlet in oVirt Engine and Red Hat Enterprise Virtualization Manager (RHEV-M), as used in Red Hat Enterprise …
|
CWE-79
Cross-site Scripting
|
CVE-2013-4181
|
2024-11-21 10:55 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290995
|
- |
|
redhat
theforeman
|
openstack
foreman
|
app/controllers/api/v1/hosts_controller.rb in Foreman before 1.2.2 does not properly restrict access to hosts, which allows remote attackers to access arbitrary hosts via an API request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4182
|
2024-11-21 10:55 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290996
|
- |
|
redhat
theforeman
|
openstack
foreman
|
The (1) power and (2) ipmi_boot actions in the HostController in Foreman before 1.2.2 allow remote attackers to cause a denial of service (memory consumption) via unspecified input that is converted …
|
CWE-20
Improper Input Validation
|
CVE-2013-4180
|
2024-11-21 10:55 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290997
|
- |
|
openstack
|
havana
compute
|
The security group extension in OpenStack Compute (Nova) Grizzly 2013.1.3, Havana before havana-3, and earlier allows remote attackers to cause a denial of service (resource consumption and crash) vi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4179
|
2024-11-21 10:55 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290998
|
- |
|
moodle
|
moodle
|
Multiple cross-site scripting (XSS) vulnerabilities in Moodle through 2.2.11, 2.3.x before 2.3.9, 2.4.x before 2.4.6, and 2.5.x before 2.5.2 allow remote attackers to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4341
|
2024-11-21 10:55 |
2013-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290999
|
- |
|
moodle
|
moodle
|
Moodle through 2.2.11, 2.3.x before 2.3.9, 2.4.x before 2.4.6, and 2.5.x before 2.5.2 does not prevent use of '\0' characters in query strings, which might allow remote attackers to conduct SQL injec…
|
CWE-89
SQL Injection
|
CVE-2013-4313
|
2024-11-21 10:55 |
2013-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291000
|
- |
|
xen
|
xen
|
The xenlight library (libxl) in Xen 4.0.x through 4.2.x, when IOMMU is disabled, provides access to a busmastering-capable PCI passthrough device before the IOMMU setup is complete, which allows loca…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4329
|
2024-11-21 10:55 |
2013-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
