|
287561
|
- |
|
bouncycastle
|
legion-of-the-bouncy-castle-java-crytography-api
legion-of-the-bouncy-castle-c\#-cryptography-api
|
The TLS implementation in the Bouncy Castle Java library before 1.48 and C# library before 1.8 does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the …
|
CWE-310
Cryptographic Issues
|
CVE-2013-1624
|
2024-11-21 10:50 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287562
|
- |
|
yassl
|
cyassl
|
The TLS and DTLS implementations in wolfSSL CyaSSL before 2.5.0 do not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC paddi…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1623
|
2024-11-21 10:50 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287563
|
- |
|
polarssl
|
polarssl
|
Array index error in the SSL module in PolarSSL before 1.2.5 might allow remote attackers to cause a denial of service via vectors involving a crafted padding-length value during validation of CBC pa…
|
CWE-20
Improper Input Validation
|
CVE-2013-1621
|
2024-11-21 10:50 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287564
|
- |
|
mozilla
canonical
oracle
redhat
|
network_security_services
ubuntu_linux
glassfish_server
iplanet_web_proxy_server
traffic_director
iplanet_web_server
vm_server
glassfish_communications_server
enterprise_manag…
|
The TLS implementation in Mozilla Network Security Services (NSS) does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC p…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2013-1620
|
2024-11-21 10:50 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287565
|
- |
|
gnu
|
gnutls
|
The TLS implementation in GnuTLS before 2.12.23, 3.0.x before 3.0.28, and 3.1.x before 3.1.7 does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the pr…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1619
|
2024-11-21 10:50 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287566
|
- |
|
opera
|
opera_browser
|
The TLS implementation in Opera before 12.13 does not properly consider timing side-channel attacks on a MAC check operation during the processing of malformed CBC padding, which allows remote attack…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1618
|
2024-11-21 10:50 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287567
|
- |
|
opera
|
opera_browser
|
Opera before 12.13 does not send CORS preflight requests in all required cases, which allows remote attackers to bypass a CSRF protection mechanism via a crafted web site that triggers a CORS request.
|
CWE-352
Origin Validation Error
|
CVE-2013-1639
|
2024-11-21 10:50 |
2013-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287568
|
- |
|
opera
|
opera_browser
|
Opera before 12.13 allows remote attackers to execute arbitrary code via crafted clipPaths in an SVG document.
|
CWE-94
Code Injection
|
CVE-2013-1638
|
2024-11-21 10:50 |
2013-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287569
|
- |
|
opera
|
opera_browser
|
Opera before 12.13 allows remote attackers to execute arbitrary code via vectors involving DOM events.
|
CWE-94
Code Injection
|
CVE-2013-1637
|
2024-11-21 10:50 |
2013-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287570
|
9.8 |
CRITICAL
Network
|
cardozatechnologies
|
wordpress_poll
|
Multiple security bypass vulnerabilities in the editAnswer, deleteAnswer, addAnswer, and deletePoll functions in WordPress Poll Plugin 34.5 for WordPress allow a remote attacker to add, edit, and del…
|
CWE-89
SQL Injection
|
CVE-2013-1401
|
2024-11-21 10:49 |
2020-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
