|
287861
|
- |
|
cob\'s_products
|
cobime
|
The COBIME application before 0.9.4 for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local filesyst…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0720
|
2024-11-21 10:48 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287862
|
- |
|
codedesign
|
artime_japanese_input
|
The ArtIME Japanese Input application 1.1.2 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesse…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0719
|
2024-11-21 10:48 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287863
|
- |
|
simeji
|
simeji
|
The Simeji application 4.8.1 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local fil…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0718
|
2024-11-21 10:48 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287864
|
- |
|
mailup
|
wp-mailup
|
ajax.functions.php in the MailUp plugin before 1.3.3 for WordPress does not properly restrict access to unspecified Ajax functions, which allows remote attackers to modify plugin settings and conduct…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0731
|
2024-11-21 10:48 |
2013-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287865
|
- |
|
linux
|
linux_kernel
|
The flush_signal_handlers function in kernel/signal.c in the Linux kernel before 3.8.4 preserves the value of the sa_restorer field across an exec operation, which makes it easier for local users to …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0914
|
2024-11-21 10:48 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287866
|
- |
|
canonical
|
ubuntu_linux
|
pam-xdg-support, as used in Ubuntu 12.10, does not properly handle the PATH environment variable, which allows local users to gain privileges via unspecified vectors related to sudo.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1052
|
2024-11-21 10:48 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287867
|
- |
|
debian
canonical
|
apt
advanced_package_tool
ubuntu_linux
|
apt 0.8.16, 0.9.7, and possibly other versions does not properly handle InRelease files, which allows man-in-the-middle attackers to modify packages before installation via unknown vectors, possibly …
|
CWE-20
Improper Input Validation
|
CVE-2013-1051
|
2024-11-21 10:48 |
2013-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287868
|
- |
|
windriver
|
vxworks
|
The web server in Wind River VxWorks 5.5 through 6.9 allows remote attackers to cause a denial of service (daemon crash) via a crafted URI.
|
CWE-20
Improper Input Validation
|
CVE-2013-0716
|
2024-11-21 10:48 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287869
|
- |
|
windriver
|
vxworks
|
The WebCLI component in Wind River VxWorks 5.5 through 6.9 allows remote authenticated users to cause a denial of service (CLI session crash) via a crafted command string.
|
CWE-20
Improper Input Validation
|
CVE-2013-0715
|
2024-11-21 10:48 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287870
|
- |
|
windriver
|
vxworks
|
IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to execute arbitrary code or cause a denial of service (daemon hang) via a crafted public-key authentication r…
|
CWE-20
Improper Input Validation
|
CVE-2013-0714
|
2024-11-21 10:48 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
