|
284731
|
- |
|
wireshark
|
wireshark
|
epan/dissectors/packet-bssgp.c in the BSSGP dissector in Wireshark 1.10.x before 1.10.4 incorrectly relies on a global variable, which allows remote attackers to cause a denial of service (applicatio…
|
CWE-20
Improper Input Validation
|
CVE-2013-7113
|
2024-11-21 11:00 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284732
|
- |
|
wireshark
|
wireshark
|
The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.12 and 1.10.x before 1.10.4 does not check for empty lines, which allows remote atta…
|
CWE-20
Improper Input Validation
|
CVE-2013-7112
|
2024-11-21 11:00 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284733
|
- |
|
digium
|
asterisk
asterisk_digiumphones
certified_asterisk
|
Buffer overflow in the unpacksms16 function in apps/app_sms.c in Asterisk Open Source 1.8.x before 1.8.24.1, 10.x before 10.12.4, and 11.x before 11.6.1; Asterisk with Digiumphones 10.x-digiumphones …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7100
|
2024-11-21 11:00 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284734
|
- |
|
cisco
|
epc3925
|
Cross-site request forgery (CSRF) vulnerability in goform/Quick_setup on Cisco EPC3925 devices allows remote attackers to hijack the authentication of administrators for requests that change a passwo…
|
CWE-352
Origin Validation Error
|
CVE-2013-6976
|
2024-11-21 11:00 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284735
|
- |
|
webbynode
|
webbynode
|
The message function in lib/webbynode/notify.rb in the Webbynode gem 1.0.5.3 and earlier for Ruby allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a growln…
|
CWE-94
Code Injection
|
CVE-2013-7086
|
2024-11-21 11:00 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284736
|
- |
|
mike_stefanello
|
og_features
|
The OG Features module 6.x-1.x before 6.x-1.4 for Drupal does not properly override pages that have an access callback set to false, which allows remote attackers to bypass intended access restrictio…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7067
|
2024-11-21 11:00 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284737
|
- |
|
dlink
|
dsr-150_firmware
dsr-150
dsr-250_firmware
dsr-250
dsr-1000n_firmware
dsr-1000n
dsr-150n_firmware
dsr-150n
dsr-500_firmware
dsr-500
dsr-1000_firmware
dsr-1000
dsr-2…
|
D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware bef…
|
CWE-200
Information Exposure
|
CVE-2013-7005
|
2024-11-21 11:00 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284738
|
- |
|
dlink
|
dsr-500_firmware
dsr-500
dsr-150n_firmware
dsr-150n
dsr-250n_firmware
dsr-150_firmware
dsr-150
dsr-500n_firmware
dsr-500n
dsr-1000n_firmware
dsr-1000n
dsr-250_firmwar…
|
D-Link DSR-150 with firmware before 1.08B44; DSR-150N with firmware before 1.05B64; DSR-250 and DSR-250N with firmware before 1.08B44; and DSR-500, DSR-500N, DSR-1000, and DSR-1000N with firmware bef…
|
CWE-255
Credentials Management
|
CVE-2013-7004
|
2024-11-21 11:00 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284739
|
- |
|
themebeans
|
blooog_theme
|
Cross-site scripting (XSS) vulnerability in ThemeBeans Blooog theme 1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the jQuery parameter to assets/js/jplayer.swf.
|
CWE-79
Cross-site Scripting
|
CVE-2013-7129
|
2024-11-21 11:00 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284740
|
- |
|
valvesoftware
|
steamos
|
Valve Bug Reporter in the valve-bugreporter package 2.10+bsos1 in Valve SteamOS Beta stores cleartext credentials in a .valve-bugreporter.cfg file upon a Remember Credentials action, which allows loc…
|
CWE-310
Cryptographic Issues
|
CVE-2013-7128
|
2024-11-21 11:00 |
2013-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
