|
285741
|
- |
|
qemu
|
qemu
|
Buffer overflow in hw/ssi/pl022.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service or possibly execute arbitrary code via crafted tx_fifo_head and rx_fifo_head values in a sa…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4530
|
2024-11-21 10:55 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285742
|
- |
|
qemu
|
qemu
|
Buffer overflow in hw/pci/pcie_aer.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large log_num value in a savevm image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4529
|
2024-11-21 10:55 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285743
|
- |
|
qemu
|
qemu
|
Buffer overflow in hw/timer/hpet.c in QEMU before 1.7.2 might allow remote attackers to execute arbitrary code via vectors related to the number of timers.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4527
|
2024-11-21 10:55 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285744
|
- |
|
qemu
|
qemu
|
Buffer overflow in hw/ide/ahci.c in QEMU before 1.7.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via vectors related to migrating ports.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4526
|
2024-11-21 10:55 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285745
|
- |
|
payment_for_webform_project
|
payment_for_webform
|
The Payment for Webform module 7.x-1.x before 7.x-1.5 for Drupal does not restrict access by anonymous users, which allows remote anonymous users to use the payment of other anonymous users when subm…
|
CWE-287
Improper Authentication
|
CVE-2013-4594
|
2024-11-21 10:55 |
2014-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285746
|
- |
|
libgadu
|
libgadu
|
libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers.
|
CWE-310
Cryptographic Issues
|
CVE-2013-4488
|
2024-11-21 10:55 |
2014-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285747
|
- |
|
apache
|
tomcat
|
Unrestricted file upload vulnerability in Apache Tomcat 7.x before 7.0.40, in certain situations involving outdated java.io.File code and a custom JMX configuration, allows remote attackers to execut…
|
CWE-94
Code Injection
|
CVE-2013-4444
|
2024-11-21 10:55 |
2014-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285748
|
- |
|
apache
|
subversion
|
svnwcsub.py in Subversion 1.8.0 before 1.8.3, when using the --pidfile option and running in foreground mode, allows local users to gain privileges via a symlink attack on the pid file. NOTE: this i…
|
CWE-59
Link Following
|
CVE-2013-4262
|
2024-11-21 10:55 |
2014-07-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285749
|
- |
|
apache
|
http_server
|
The cache_invalidate function in modules/cache/cache_storage.c in the mod_cache module in the Apache HTTP Server 2.4.6, when a caching forward proxy is enabled, allows remote HTTP servers to cause a …
|
NVD-CWE-Other
|
CVE-2013-4352
|
2024-11-21 10:55 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285750
|
- |
|
entity_api_project
|
entity_api
|
The Entity API module 7.x-1.x before 7.x-1.2 for Drupal does not properly restrict access to node comments, which allows remote authenticated users to read the comments via unspecified vectors. NOTE:…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4273
|
2024-11-21 10:55 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
