|
289341
|
- |
|
sun
|
sunos
|
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows remote attackers to affect confidentiality and integrity via vectors related to NFS client mounts and IPv6.
|
NVD-CWE-noinfo
|
CVE-2013-0405
|
2024-11-21 10:47 |
2013-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289342
|
- |
|
sun
|
sunos
|
Unspecified vulnerability in Oracle Sun Solaris 10 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Kernel/Boot.
|
NVD-CWE-noinfo
|
CVE-2013-0404
|
2024-11-21 10:47 |
2013-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289343
|
- |
|
sun
|
sunos
|
Unspecified vulnerability in Oracle Sun Solaris 8, 9, 10, and 11 allows local users to affect availability via unknown vectors related to Utility.
|
NVD-CWE-noinfo
|
CVE-2013-0403
|
2024-11-21 10:47 |
2013-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289344
|
- |
|
redhat
|
jboss_enterprise_portal_platform
|
The GateIn Portal export/import gadget in JBoss Enterprise Portal Platform 5.2.2 allows remote attackers to read arbitrary files via a crafted external XML entity in an XML document, aka an XML Entit…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0315
|
2024-11-21 10:47 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289345
|
- |
|
redhat
|
jboss_enterprise_portal_platform
|
The GateIn Portal export/import gadget in JBoss Enterprise Portal Platform 5.2.2 does not properly check authentication when importing Zip files, which allows remote attackers to modify site contents…
|
CWE-287
Improper Authentication
|
CVE-2013-0314
|
2024-11-21 10:47 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289346
|
- |
|
openstack
|
keystone
|
OpenStack Keystone Grizzly before 2013.1, Folsom 2012.1.3 and earlier, and Essex does not properly check if the (1) user, (2) tenant, or (3) domain is enabled when using EC2-style authentication, whi…
|
CWE-287
Improper Authentication
|
CVE-2013-0282
|
2024-11-21 10:47 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289347
|
- |
|
ibm
|
cognos_disclosure_management
|
The EdrawSoft EDOFFICE.EDOfficeCtrl.1 ActiveX control, as used in Edraw Office Viewer Component, the client in IBM Cognos Disclosure Management (CDM) 10.2.0, and other products, allows remote attacke…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0501
|
2024-11-21 10:47 |
2013-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289348
|
- |
|
nori_gem_project
|
nori_gem
|
The nori gem 2.0.x before 2.0.2, 1.1.x before 1.1.4, and 1.0.x before 1.0.3 for Ruby does not properly restrict casts of string values, which allows remote attackers to conduct object-injection attac…
|
CWE-20
Improper Input Validation
|
CVE-2013-0285
|
2024-11-21 10:47 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289349
|
- |
|
newrelic
|
ruby_agent
|
Ruby agent 3.2.0 through 3.5.2 serializes sensitive data when communicating with servers operated by New Relic, which allows remote attackers to obtain sensitive information (database credentials and…
|
CWE-200
Information Exposure
|
CVE-2013-0284
|
2024-11-21 10:47 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289350
|
- |
|
apache
|
maven
|
The default configuration of Apache Maven 3.0.4, when using Maven Wagon 2.1, disables SSL certificate checks, which allows remote attackers to spoof servers via a man-in-the-middle (MITM) attack.
|
CWE-16
Configuration
|
CVE-2013-0253
|
2024-11-21 10:47 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
