|
288091
|
- |
|
symantec
|
security_information_manager
security_information_manager_appliance
|
Multiple cross-site scripting (XSS) vulnerabilities in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allow remot…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1614
|
2024-11-21 10:50 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288092
|
- |
|
symantec
|
security_information_manager
security_information_manager_appliance
|
SQL injection vulnerability in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote authenticated users t…
|
CWE-89
SQL Injection
|
CVE-2013-1613
|
2024-11-21 10:50 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288093
|
- |
|
remotesensing
|
libtiff
|
Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted image length …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1961
|
2024-11-21 10:50 |
2013-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288094
|
- |
|
remotesensing
|
libtiff
|
Heap-based buffer overflow in the t2p_process_jpeg_strip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1960
|
2024-11-21 10:50 |
2013-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288095
|
- |
|
mozilla
|
firefox
|
The Mozilla Maintenance Service in Mozilla Firefox before 22.0 on Windows does not properly handle inability to launch the Mozilla Updater executable file, which allows local users to gain privileges…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1700
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288096
|
- |
|
mozilla
|
firefox
|
The Internationalized Domain Name (IDN) display algorithm in Mozilla Firefox before 22.0 does not properly handle the .com, .name, and .net top-level domains, which allows remote attackers to spoof t…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1699
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288097
|
- |
|
mozilla
|
firefox
|
The getUserMedia permission implementation in Mozilla Firefox before 22.0 references the URL of a top-level document instead of the URL of a specific page, which makes it easier for remote attackers …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1698
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288098
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The XrayWrapper implementation in Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 does not properly restrict use of Defa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1697
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288099
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 22.0 does not properly enforce the X-Frame-Options protection mechanism, which allows remote attackers to conduct clickjacking attacks via a crafted web site that uses the HTTP…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1696
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
288100
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 22.0 does not properly implement certain DocShell inheritance behavior for the sandbox attribute of an IFRAME element, which allows remote attackers to bypass intended access r…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1695
|
2024-11-21 10:50 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
