|
296791
|
- |
|
symantec
|
security_information_manager
security_information_manager_appliance
|
The management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote attackers to obtain sensitive information via unspec…
|
CWE-200
Information Exposure
|
CVE-2013-1615
|
2024-11-21 10:50 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296792
|
- |
|
symantec
|
security_information_manager
security_information_manager_appliance
|
Multiple cross-site scripting (XSS) vulnerabilities in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allow remot…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1614
|
2024-11-21 10:50 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296793
|
- |
|
symantec
|
security_information_manager
security_information_manager_appliance
|
SQL injection vulnerability in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote authenticated users t…
|
CWE-89
SQL Injection
|
CVE-2013-1613
|
2024-11-21 10:50 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296794
|
- |
|
remotesensing
|
libtiff
|
Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted image length …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1961
|
2024-11-21 10:50 |
2013-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296795
|
- |
|
remotesensing
|
libtiff
|
Heap-based buffer overflow in the t2p_process_jpeg_strip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1960
|
2024-11-21 10:50 |
2013-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296796
|
- |
|
mozilla
|
firefox
|
The Mozilla Maintenance Service in Mozilla Firefox before 22.0 on Windows does not properly handle inability to launch the Mozilla Updater executable file, which allows local users to gain privileges…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1700
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296797
|
- |
|
mozilla
|
firefox
|
The Internationalized Domain Name (IDN) display algorithm in Mozilla Firefox before 22.0 does not properly handle the .com, .name, and .net top-level domains, which allows remote attackers to spoof t…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1699
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296798
|
- |
|
mozilla
|
firefox
|
The getUserMedia permission implementation in Mozilla Firefox before 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote attackers …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1698
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296799
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The XrayWrapper implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 does not properly restrict use of Defa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1697
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296800
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 22.0 does not properly enforce the X-Frame-Options protection mechanism, which allows remote attackers to conduct clickjacking attacks via a crafted web site that uses the HTTP…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1696
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
