|
293121
|
- |
|
mozilla
|
firefox
|
The Mozilla Updater in Mozilla Firefox before 21.0 on Windows does not properly maintain Mozilla Maintenance Service registry entries in certain situations involving upgrades from older Firefox versi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1673
|
2024-11-21 10:50 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293122
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The Mozilla Maintenance Service in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 on Windows allows local users to bypa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1672
|
2024-11-21 10:50 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293123
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 21.0 does not properly implement the INPUT element, which allows remote attackers to obtain the full pathname via a crafted web site.
|
CWE-20
Improper Input Validation
|
CVE-2013-1671
|
2024-11-21 10:50 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293124
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 21.0, Firefox ESR 17.x before 17.0.6, Thunderbird before 17.0.6, and Thunderbird ESR 17.x before 17.0.6 does not prevent acqui…
|
CWE-264
CWE-79
Permissions, Privileges, and Access Controls
Cross-site Scripting
|
CVE-2013-1670
|
2024-11-21 10:50 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293125
|
- |
|
mozilla
|
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 21.0 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly exe…
|
NVD-CWE-noinfo
|
CVE-2013-1669
|
2024-11-21 10:50 |
2013-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293126
|
- |
|
canonical
suse
clamav
|
ubuntu_linux
linux_enterprise_server
clamav
|
pdf.c in ClamAV 0.97.1 through 0.97.7 allows remote attackers to cause a denial of service (out-of-bounds-read) via a crafted length value in an encrypted PDF file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2021
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293127
|
- |
|
canonical
suse
clamav
|
ubuntu_linux
linux_enterprise_server
clamav
|
Integer underflow in the cli_scanpe function in pe.c in ClamAV before 0.97.8 allows remote attackers to cause a denial of service (crash) via a skewed offset larger than the size of the PE section in…
|
CWE-189
Numeric Errors
|
CVE-2013-2020
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293128
|
- |
|
xen
|
xen
|
Xen 4.x, when using Intel VT-d for a bus mastering capable PCI device, does not properly check the source when accessing a bridge device's interrupt remapping table entries for MSI interrupts, which …
|
CWE-20
Improper Input Validation
|
CVE-2013-1952
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293129
|
- |
|
x
canonical
|
x.org-xserver
ubuntu_linux
|
X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain se…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1940
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293130
|
- |
|
xen
|
xen
|
qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1922
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
