|
285191
|
- |
|
microsoft
|
.net_framework
|
Microsoft .NET Framework 2.0 SP2, 3.5, 3.5 SP1, 3.5.1, 4, and 4.5 does not properly parse a DTD during XML digital-signature validation, which allows remote attackers to cause a denial of service (ap…
|
CWE-20
Improper Input Validation
|
CVE-2013-3860
|
2024-11-21 10:54 |
2013-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285192
|
- |
|
mcafee
|
agent
|
FrameworkService.exe in McAfee Framework Service in McAfee Managed Agent (MA) before 4.5.0.1927 and 4.6 before 4.6.0.3258 allows remote attackers to cause a denial of service (service crash) via a ma…
|
CWE-399
Resource Management Errors
|
CVE-2013-3627
|
2024-11-21 10:54 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285193
|
- |
|
redhat
|
storage_server
|
Red Hat Storage 2.0 allows local users to overwrite arbitrary files via a symlink attack on the (1) e, (2) local-bricks.list, (3) bricks.err, or (4) limits.conf files in /tmp.
|
CWE-59
Link Following
|
CVE-2013-4157
|
2024-11-21 10:54 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285194
|
- |
|
baramundi
|
management_suite
|
An unspecified DLL file in Baramundi Management Suite 7.5 through 8.9 uses a hardcoded encryption key, which makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging …
|
CWE-255
Credentials Management
|
CVE-2013-3625
|
2024-11-21 10:54 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285195
|
- |
|
baramundi
|
management_suite
|
The OS deployment feature in Baramundi Management Suite 7.5 through 8.9 stores credentials in cleartext on deployed machines, which allows remote attackers to obtain sensitive information by reading …
|
CWE-310
Cryptographic Issues
|
CVE-2013-3624
|
2024-11-21 10:54 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285196
|
- |
|
ibm
|
infosphere_information_server
|
IBM InfoSphere Information Server 8.0, 8.1, 8.5 through FP3, 8.7, and 9.1 allows remote attackers to hijack sessions and read cookie values, or conduct phishing attacks to capture credentials, via un…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4067
|
2024-11-21 10:54 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285197
|
- |
|
ibm
|
infosphere_information_server
|
IBM InfoSphere Information Server 8.0, 8.1, 8.5 through FP3, 8.7, and 9.1 allows remote attackers to conduct clickjacking attacks by creating an overlay interface on top of the Web Console interface.
|
CWE-20
Improper Input Validation
|
CVE-2013-4066
|
2024-11-21 10:54 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285198
|
- |
|
ibm
|
db2
|
The Fast Communications Manager (FCM) in IBM DB2 Enterprise Server Edition and Advanced Enterprise Server Edition 10.1 before FP3 and 10.5, when a multi-node configuration is used, allows remote atta…
|
CWE-20
Improper Input Validation
|
CVE-2013-4032
|
2024-11-21 10:54 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285199
|
- |
|
mongodb
|
mongodb
|
The find prototype in scripting/engine_v8.h in MongoDB 2.4.0 through 2.4.4 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and server crash) or possi…
|
CWE-399
Resource Management Errors
|
CVE-2013-3969
|
2024-11-21 10:54 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285200
|
- |
|
samsung
|
shr-5082
shr-5162
|
Cross-site scripting (XSS) vulnerability in Samsung SHR-5162, SHR-5082, and possibly other models, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3964
|
2024-11-21 10:54 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
