|
292801
|
- |
|
microsoft
|
windows_7
|
Unspecified vulnerability in the kernel in Microsoft Windows 7 allows local users to gain privileges via unknown vectors, as demonstrated by Nils and Jon of MWR Labs during a Pwn2Own competition at C…
|
NVD-CWE-noinfo
|
CVE-2013-2553
|
2024-11-21 10:51 |
2013-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292802
|
- |
|
microsoft
|
internet_explorer
|
Unspecified vulnerability in Microsoft Internet Explorer 10 on Windows 8 allows remote attackers to bypass the sandbox protection mechanism by leveraging access to a Medium integrity process, as demo…
|
NVD-CWE-noinfo
|
CVE-2013-2552
|
2024-11-21 10:51 |
2013-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292803
|
- |
|
adobe
|
acrobat_reader
|
Unspecified vulnerability in Adobe Reader 11.0.02 allows attackers to bypass the sandbox protection mechanism via unknown vectors, as demonstrated by George Hotz during a Pwn2Own competition at CanSe…
|
NVD-CWE-noinfo
|
CVE-2013-2550
|
2024-11-21 10:51 |
2013-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292804
|
- |
|
adobe
|
acrobat_reader
|
Unspecified vulnerability in Adobe Reader 11.0.02 allows remote attackers to execute arbitrary code via vectors related to a "break into the sandbox," as demonstrated by George Hotz during a Pwn2Own …
|
CWE-94
Code Injection
|
CVE-2013-2549
|
2024-11-21 10:51 |
2013-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292805
|
- |
|
ffmpeg
|
ffmpeg
|
The msrle_decode_8_16_24_32 function in msrledec.c in libavcodec in FFmpeg through 1.1.3 does not properly determine certain end pointers, which allows remote attackers to cause a denial of service (…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2496
|
2024-11-21 10:51 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292806
|
- |
|
ffmpeg
|
ffmpeg
|
The iff_read_header function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format (IFF) data during operations involving a CMAP chunk or a v…
|
CWE-189
Numeric Errors
|
CVE-2013-2495
|
2024-11-21 10:51 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292807
|
- |
|
spreecommerce
|
spree
|
app/models/spree/user.rb in spree_auth_devise in Spree 1.1.x before 1.1.6, 1.2.x, and 1.3.x does not perform mass assignment safely when updating a user, which allows remote authenticated users to as…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2506
|
2024-11-21 10:51 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292808
|
- |
|
google
|
chrome_frame
|
The Hook_Terminate function in chrome_frame/protocol_sink_wrap.cc in the Google Chrome Frame plugin before 26.0.1410.28 for Internet Explorer does not properly handle attach tab requests, which allow…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2493
|
2024-11-21 10:51 |
2013-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292809
|
- |
|
wireshark
opensuse
debian
|
wireshark
opensuse
debian_linux
|
The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a…
|
CWE-20
Improper Input Validation
|
CVE-2013-2488
|
2024-11-21 10:51 |
2013-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292810
|
- |
|
opensuse
debian
wireshark
|
opensuse
debian_linux
wireshark
|
epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x before 1.8.6 uses incorrect integer data types, which allows remote attackers to cause…
|
CWE-189
Numeric Errors
|
CVE-2013-2487
|
2024-11-21 10:51 |
2013-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
