|
283951
|
- |
|
cisco
|
ios_xr
|
Cisco IOS XR 3.8.1 through 4.2.0 does not properly process fragmented packets within the RP-A, RP-B, PRP, and DRP-B route-processor components, which allows remote attackers to cause a denial of serv…
|
NVD-CWE-noinfo
|
CVE-2013-5549
|
2024-11-21 10:57 |
2013-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283952
|
- |
|
cisco
|
identity_services_engine_software
|
Cisco Identity Services Engine (ISE) 1.x before 1.1.1 allows remote attackers to bypass authentication, and read support-bundle configuration and credentials data, via a crafted session on TCP port 4…
|
CWE-287
Improper Authentication
|
CVE-2013-5531
|
2024-11-21 10:57 |
2013-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283953
|
- |
|
cisco
|
identity_services_engine_software
|
The web framework in Cisco Identity Services Engine (ISE) 1.0 and 1.1.0 before 1.1.0.665-5, 1.1.1 before 1.1.1.268-7, 1.1.2 before 1.1.2.145-10, 1.1.3 before 1.1.3.124-7, 1.1.4 before 1.1.4.218-7, an…
|
CWE-78
OS Command
|
CVE-2013-5530
|
2024-11-21 10:57 |
2013-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283954
|
- |
|
cisco
|
ios
catalyst_3750-x
|
Cisco IOS on Catalyst 3750X switches has default Service Module credentials, which makes it easier for local users to gain privileges via a Service Module login, aka Bug ID CSCue92286.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5522
|
2024-11-21 10:57 |
2013-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283955
|
- |
|
cisco
|
identity_services_engine_software
|
Cisco Identity Services Engine does not properly restrict the creation of guest accounts, which allows remote attackers to cause a denial of service (exhaustion of the account supply) via a series of…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5521
|
2024-11-21 10:57 |
2013-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283956
|
- |
|
cisco
|
web_security_appliance
content_security_management_appliance
email_security_appliance_firmware
|
The web framework on Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) devices does not properly manage the state of HTTP and HTTPS s…
|
CWE-20
Improper Input Validation
|
CVE-2013-5537
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283957
|
- |
|
cisco
|
secure_access_control_system
|
Cisco Secure Access Control System (ACS) does not properly implement an incoming-packet firewall rule, which allows remote attackers to cause a denial of service (process crash) via a flood of crafte…
|
CWE-20
Improper Input Validation
|
CVE-2013-5536
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283958
|
- |
|
apple
|
keynote
|
Apple Keynote before 6.0 does not properly handle the interaction between Keynote presentation mode and the Screen Lock implementation, which allows physically proximate attackers to obtain access by…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5148
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283959
|
- |
|
apple
|
os_x_server
|
The RADIUS service in Server App in Apple OS X Server before 3.0 selects a fallback X.509 certificate in unspecified circumstances, which might allow man-in-the-middle attackers to hijack RADIUS sess…
|
NVD-CWE-Other
|
CVE-2013-5143
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283960
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 6.1 disables the Private Browsing feature upon a launch of the Web Inspector, which makes it easier for context-dependent attackers to obtain browsing information by lev…
|
CWE-200
Information Exposure
|
CVE-2013-5130
|
2024-11-21 10:57 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
