|
284831
|
- |
|
apache
|
shindig
|
The gadget renderer in Apache Shindig 2.5.0 for PHP allows remote attackers to obtain sensitive information via an XML document containing an external entity declaration in conjunction with an entity…
|
CWE-200
Information Exposure
|
CVE-2013-4295
|
2024-11-21 10:55 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284832
|
- |
|
redhat
|
jboss_operations_network
|
The server in Red Hat JBoss Operations Network (JON) 3.1.2 logs passwords in plaintext, which allows local users to obtain sensitive information by reading the log files.
|
CWE-310
Cryptographic Issues
|
CVE-2013-4293
|
2024-11-21 10:55 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284833
|
- |
|
quassel-irc
|
quassel_irc
|
SQL injection vulnerability in Quassel IRC before 0.9.1, when Qt 4.8.5 or later and PostgreSQL 8.2 or later are used, allows remote attackers to execute arbitrary SQL commands via a \ (backslash) in …
|
CWE-89
SQL Injection
|
CVE-2013-4422
|
2024-11-21 10:55 |
2013-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284834
|
- |
|
nodejs
|
nodejs
|
The HTTP server in Node.js 0.10.x before 0.10.21 and 0.8.x before 0.8.26 allows remote attackers to cause a denial of service (memory and CPU consumption) by sending a large number of pipelined reque…
|
CWE-20
Improper Input Validation
|
CVE-2013-4450
|
2024-11-21 10:55 |
2013-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284835
|
- |
|
redhat
feep
|
enterprise_linux
libtar
|
Multiple integer overflows in the th_read function in lib/block.c in libtar before 1.2.20 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1…
|
CWE-189
Numeric Errors
|
CVE-2013-4397
|
2024-11-21 10:55 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284836
|
- |
|
xen
|
xen
|
Use-after-free vulnerability in the libxl_list_cpupool function in the libxl toolstack library in Xen 4.2.x and 4.3.x, when running "under memory pressure," returns the original pointer when the real…
|
CWE-399
Resource Management Errors
|
CVE-2013-4371
|
2024-11-21 10:55 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284837
|
- |
|
xen
|
xen
|
The ocaml binding for the xc_vcpu_getaffinity function in Xen 4.2.x and 4.3.x frees certain memory that may still be intended for use, which allows local users to cause a denial of service (heap corr…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4370
|
2024-11-21 10:55 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284838
|
- |
|
xen
|
xen
|
The xlu_vif_parse_rate function in the libxlu library in Xen 4.2.x and 4.3.x allows local users to cause a denial of service (NULL pointer dereference) by using the "@" character as the VIF rate conf…
|
NVD-CWE-Other
|
CVE-2013-4369
|
2024-11-21 10:55 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284839
|
- |
|
xen
|
xen
|
The outs instruction emulation in Xen 3.1.x, 4.2.x, 4.3.x, and earlier, when using FS: or GS: segment override, uses an uninitialized variable as a segment base, which allows local 64-bit PV guests t…
|
CWE-200
Information Exposure
|
CVE-2013-4368
|
2024-11-21 10:55 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284840
|
- |
|
apache
debian
opensuse
suse
|
mod_fcgid
debian_linux
opensuse
linux_enterprise_software_development_kit
cloud
|
Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified im…
|
CWE-787
Out-of-bounds Write
|
CVE-2013-4365
|
2024-11-21 10:55 |
2013-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
