|
289431
|
- |
|
openstack
|
essex
folsom
|
manifests/base.pp in the puppetlabs-cinder module, as used in PackStack, uses world-readable permissions for the (1) cinder.conf and (2) api-paste.ini configuration files, which allows local users to…
|
CWE-362
Race Condition
|
CVE-2013-0266
|
2024-11-21 10:47 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289432
|
- |
|
openstack
|
essex
folsom
|
(1) installer/basedefs.py and (2) modules/ospluginutils.py in PackStack allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0261
|
2024-11-21 10:47 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289433
|
- |
|
oracle
|
javafx
jdk
jre
|
Heap-based buffer overflow in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0402
|
2024-11-21 10:47 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289434
|
- |
|
oracle
|
jdk
jre
|
The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, and 5.0 Update 41 and earlier; and OpenJDK 6 and 7; allows remote attackers to execute…
|
CWE-94
Code Injection
|
CVE-2013-0401
|
2024-11-21 10:47 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289435
|
- |
|
xen
|
xen
|
oxenstored in Xen 4.1.x, Xen 4.2.x, and xen-unstable does not properly consider the state of the Xenstore ring during read operations, which allows guest OS users to cause a denial of service (daemon…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0215
|
2024-11-21 10:47 |
2013-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289436
|
- |
|
hp
redhat
|
linux_imaging_and_printing_project
enterprise_linux
|
HP Linux Imaging and Printing (HPLIP) through 3.12.4 allows local users to overwrite arbitrary files via a symlink attack on the (1) /tmp/hpcupsfilterc_#.bmp, (2) /tmp/hpcupsfilterk_#.bmp, (3) /tmp/h…
|
CWE-59
Link Following
|
CVE-2013-0200
|
2024-11-21 10:47 |
2013-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289437
|
- |
|
freedesktop
|
dbus-glib
|
The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a …
|
CWE-20
Improper Input Validation
|
CVE-2013-0292
|
2024-11-21 10:47 |
2013-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289438
|
- |
|
arthurdejong
|
nss-pam-ldapd
|
nss-pam-ldapd before 0.7.18 and 0.8.x before 0.8.11 allows context-dependent attackers to cause a denial of service (application crash) and possibly execute arbitrary code by performing a name lookup…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0288
|
2024-11-21 10:47 |
2013-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289439
|
- |
|
thekelleys
|
dnsmasq
|
Dnsmasq before 2.66test2, when used with certain libvirt configurations, replies to queries from prohibited interfaces, which allows remote attackers to cause a denial of service (traffic amplificati…
|
CWE-20
Improper Input Validation
|
CVE-2013-0198
|
2024-11-21 10:47 |
2013-03-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289440
|
- |
|
linux
|
linux_kernel
|
The xen_iret function in arch/x86/xen/xen-asm_32.S in the Linux kernel before 3.7.9 on 32-bit Xen paravirt_ops platforms does not properly handle an invalid value in the DS segment register, which al…
|
CWE-189
Numeric Errors
|
CVE-2013-0228
|
2024-11-21 10:47 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
