|
285801
|
- |
|
photogallerycreator
|
flash-album-gallery
|
Cross-site scripting (XSS) vulnerability in wp-admin/admin.php in the GRAND FlAGallery plugin before 2.72 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parame…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3261
|
2024-11-21 10:53 |
2013-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285802
|
- |
|
tibco
|
silver_mobile
|
The server in TIBCO Silver Mobile 1.1.0 does not properly verify access to the administrator role before executing a command, which allows authenticated users to gain privileges via unspecified vecto…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3315
|
2024-11-21 10:53 |
2013-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285803
|
- |
|
opensuse
debian
wireshark
|
opensuse
debian_linux
wireshark
|
Multiple integer signedness errors in the tvb_unmasked function in epan/dissectors/packet-websocket.c in the Websocket dissector in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a deni…
|
CWE-189
Numeric Errors
|
CVE-2013-3562
|
2024-11-21 10:53 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285804
|
- |
|
opensuse
debian
wireshark
|
opensuse
debian_linux
wireshark
|
Multiple integer overflows in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (loop or application crash) via a malformed packet, related to a crash of the Websocket …
|
CWE-189
Numeric Errors
|
CVE-2013-3561
|
2024-11-21 10:53 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285805
|
- |
|
opensuse
debian
wireshark
|
opensuse
debian_linux
wireshark
|
The dissect_dsmcc_un_download function in epan/dissectors/packet-mpeg-dsmcc.c in the MPEG DSM-CC dissector in Wireshark 1.8.x before 1.8.7 uses an incorrect format string, which allows remote attacke…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2013-3560
|
2024-11-21 10:53 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285806
|
- |
|
opensuse
debian
wireshark
|
opensuse
debian_linux
wireshark
|
epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.8.x before 1.8.7 uses incorrect integer data types, which allows remote attackers to cause a denial of service (integer over…
|
CWE-189
Numeric Errors
|
CVE-2013-3559
|
2024-11-21 10:53 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285807
|
- |
|
wireshark
opensuse
debian
|
wireshark
opensuse
debian_linux
|
The dissect_ccp_bsdcomp_opt function in epan/dissectors/packet-ppp.c in the PPP CCP dissector in Wireshark 1.8.x before 1.8.7 does not terminate a bit-field list, which allows remote attackers to cau…
|
CWE-189
Numeric Errors
|
CVE-2013-3558
|
2024-11-21 10:53 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285808
|
- |
|
wireshark
opensuse
debian
|
wireshark
opensuse
debian_linux
|
The dissect_ber_choice function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.6.x before 1.6.15 and 1.8.x before 1.8.7 does not properly initialize a certain variable, whi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3557
|
2024-11-21 10:53 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285809
|
- |
|
wireshark
opensuse
debian
|
wireshark
opensuse
debian_linux
|
The fragment_add_seq_common function in epan/reassemble.c in the ASN.1 BER dissector in Wireshark before r48943 has an incorrect pointer dereference during a comparison, which allows remote attackers…
|
CWE-20
Improper Input Validation
|
CVE-2013-3556
|
2024-11-21 10:53 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285810
|
- |
|
opensuse
debian
wireshark
|
opensuse
debian_linux
wireshark
|
epan/dissectors/packet-gtpv2.c in the GTPv2 dissector in Wireshark 1.8.x before 1.8.7 calls incorrect functions in certain contexts related to ciphers, which allows remote attackers to cause a denial…
|
CWE-20
Improper Input Validation
|
CVE-2013-3555
|
2024-11-21 10:53 |
2013-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
