|
292031
|
- |
|
google
|
sketchup
|
Timbre SketchUp (formerly Google SketchUp) before 8 Maintenance 2 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers a stack-bas…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3662
|
2024-11-21 10:54 |
2014-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292032
|
- |
|
jogamp
|
jogamp
joal
|
Multiple unspecified vulnerabilities in OpenAL32.dll in JOAL 2.0-rc11, as used in JOGAMP, allow context-dependent attackers to execute arbitrary code via a crafted parameter to the (1) alAuxiliaryEff…
|
NVD-CWE-noinfo
|
CVE-2013-4099
|
2024-11-21 10:54 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292033
|
- |
|
monkey-project
|
monkey
|
Stack-based buffer overflow in the mk_request_header_process function in mk_request.c in Monkey HTTP Daemon (monkeyd) before 1.2.1 allows remote attackers to cause a denial of service (crash) and pos…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3843
|
2024-11-21 10:54 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292034
|
- |
|
google
|
sketchup
|
Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 8 Maintenance 3, allows remote attackers to execute arbitrary code via a crafted RLE8 compressed …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3663
|
2024-11-21 10:54 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292035
|
- |
|
network-weathermap
|
.network_weathermap
|
Directory traversal vulnerability in editor.php in Network Weathermap 0.97c and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the mapname parameter in a show_config ac…
|
CWE-22
Path Traversal
|
CVE-2013-3739
|
2024-11-21 10:54 |
2014-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292036
|
- |
|
david_bagley
|
xlockmore
|
The (1) checkPasswd and (2) checkGroupXlockPasswds functions in xlockmore before 5.43 do not properly handle when a NULL value is returned upon an error by the crypt or dispcrypt function as implemen…
|
NVD-CWE-Other
|
CVE-2013-4143
|
2024-11-21 10:54 |
2014-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292037
|
- |
|
ibm
|
change_and_configuration_management_database
maximo_service_desk
tivoli_service_request_manager
tivoli_it_asset_management_for_it
tivoli_asset_management_for_it
smartcloud_control_desk…
|
SQL injection vulnerability in IBM Maximo Asset Management 7.x before 7.1.1.7 LAFIX.20140319-0837, 7.1.1.11 before IFIX.20140323-0749, 7.1.1.12 before IFIX.20140321-1336, 7.5.x before 7.5.0.3 IFIX027…
|
CWE-89
SQL Injection
|
CVE-2013-4016
|
2024-11-21 10:54 |
2014-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292038
|
- |
|
ibm
|
sametime
|
The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 does not set the secure flag for an unspecified cookie in an https session, which makes it easier for remote attackers t…
|
CWE-200
Information Exposure
|
CVE-2013-3984
|
2024-11-21 10:54 |
2014-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292039
|
- |
|
ibm
|
sametime
|
The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 allows remote attackers to obtain unspecified installation information and technical data via a request to a public page.
|
CWE-200
Information Exposure
|
CVE-2013-3982
|
2024-11-21 10:54 |
2014-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292040
|
- |
|
ibm
|
sametime
|
The Meeting Server in IBM Sametime 8.x through 8.5.2.1 and 9.x through 9.0.0.1 allows remote attackers to download avatar photos of arbitrary users via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3981
|
2024-11-21 10:54 |
2014-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
