|
287301
|
- |
|
google
|
chrome
|
Google Chrome before 28.0.1500.71 on Mac OS X does not ensure a sufficient source of entropy for renderer processes, which might make it easier for remote attackers to defeat cryptographic protection…
|
NVD-CWE-noinfo
|
CVE-2013-2872
|
2024-11-21 10:52 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287302
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of…
|
CWE-20
Improper Input Validation
|
CVE-2013-2871
|
2024-11-21 10:52 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287303
|
- |
|
google
debian
|
chrome
debian_linux
|
Use-after-free vulnerability in Google Chrome before 28.0.1500.71 allows remote servers to execute arbitrary code via crafted response traffic after a URL request.
|
CWE-399
Resource Management Errors
|
CVE-2013-2870
|
2024-11-21 10:52 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287304
|
- |
|
debian
google
|
debian_linux
chrome
|
Google Chrome before 28.0.1500.71 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted JPEG2000 image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2869
|
2024-11-21 10:52 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287305
|
- |
|
debian
google
|
debian_linux
chrome
|
common/extensions/sync_helper.cc in Google Chrome before 28.0.1500.71 proceeds with sync operations for NPAPI extensions without checking for a certain plugin permission setting, which might allow re…
|
NVD-CWE-noinfo
|
CVE-2013-2868
|
2024-11-21 10:52 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287306
|
- |
|
google
debian
|
chrome
debian_linux
|
Google Chrome before 28.0.1500.71 does not properly prevent pop-under windows, which allows remote attackers to have an unspecified impact via a crafted web site.
|
NVD-CWE-noinfo
|
CVE-2013-2867
|
2024-11-21 10:52 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287307
|
- |
|
google
|
chrome
|
The HTTPS implementation in Google Chrome before 28.0.1500.71 does not ensure that headers are terminated by \r\n\r\n (carriage return, newline, carriage return, newline), which allows man-in-the-mid…
|
NVD-CWE-noinfo
|
CVE-2013-2853
|
2024-11-21 10:52 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287308
|
- |
|
ibm
|
aix
vios
|
The TFTP client in IBM AIX 6.1 and 7.1, and VIOS 2.2.2.2-FP-26 SP-02, when RBAC is enabled, allows remote authenticated users to bypass intended file-ownership restrictions, and read or overwrite arb…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3005
|
2024-11-21 10:52 |
2013-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287309
|
- |
|
ibm
|
sterling_b2b_integrator
sterling_file_gateway
|
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors…
|
CWE-200
Information Exposure
|
CVE-2013-3020
|
2024-11-21 10:52 |
2013-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287310
|
- |
|
ibm
|
sterling_b2b_integrator
sterling_file_gateway
|
IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File Gateway 2.1 and 2.2 allow remote authenticated users to obtain sensitive information about application implementation via unspecified vectors…
|
CWE-200
Information Exposure
|
CVE-2013-2987
|
2024-11-21 10:52 |
2013-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
