|
292301
|
- |
|
redhat
|
enterprise_linux
|
The Tomcat 6 DIGEST authentication functionality as used in Red Hat Enterprise Linux 6 allows remote attackers to bypass intended access restrictions by performing a replay attack after a nonce becom…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2051
|
2024-11-21 10:50 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292302
|
- |
|
redhat
|
enterprise_linux
jboss_enterprise_web_server
|
The (1) tomcat5, (2) tomcat6, and (3) tomcat7 init scripts, as used in the RPM distribution of Tomcat for JBoss Enterprise Web Server 1.0.2 and 2.0.0, and Red Hat Enterprise Linux 5 and 6, allow loca…
|
CWE-59
Link Following
|
CVE-2013-1976
|
2024-11-21 10:50 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292303
|
- |
|
libtirpc_project
|
libtirpc
|
The svc_dg_getargs function in libtirpc 0.2.3 and earlier allows remote attackers to cause a denial of service (rpcbind crash) via a Sun RPC request with crafted arguments that trigger a free of an i…
|
CWE-399
Resource Management Errors
|
CVE-2013-1950
|
2024-11-21 10:50 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292304
|
- |
|
symantec
|
security_information_manager
security_information_manager_appliance
|
The management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote attackers to obtain sensitive information via unspec…
|
CWE-200
Information Exposure
|
CVE-2013-1615
|
2024-11-21 10:50 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292305
|
- |
|
symantec
|
security_information_manager
security_information_manager_appliance
|
Multiple cross-site scripting (XSS) vulnerabilities in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allow remot…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1614
|
2024-11-21 10:50 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292306
|
- |
|
symantec
|
security_information_manager
security_information_manager_appliance
|
SQL injection vulnerability in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote authenticated users t…
|
CWE-89
SQL Injection
|
CVE-2013-1613
|
2024-11-21 10:50 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292307
|
- |
|
remotesensing
|
libtiff
|
Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted image length …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1961
|
2024-11-21 10:50 |
2013-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292308
|
- |
|
remotesensing
|
libtiff
|
Heap-based buffer overflow in the t2p_process_jpeg_strip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1960
|
2024-11-21 10:50 |
2013-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292309
|
- |
|
mozilla
|
firefox
|
The Mozilla Maintenance Service in Mozilla Firefox before 22.0 on Windows does not properly handle inability to launch the Mozilla Updater executable file, which allows local users to gain privileges…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1700
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292310
|
- |
|
mozilla
|
firefox
|
The Internationalized Domain Name (IDN) display algorithm in Mozilla Firefox before 22.0 does not properly handle the .com, .name, and .net top-level domains, which allows remote attackers to spoof t…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1699
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
