|
286421
|
- |
|
gnu
|
libmicrohttpd
|
Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a d…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7039
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286422
|
- |
|
gnu
|
libmicrohttpd
|
The MHD_http_unescape function in libmicrohttpd before 0.9.32 might allow remote attackers to obtain sensitive information or cause a denial of service (crash) via unspecified vectors that trigger an…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7038
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286423
|
- |
|
mcafee
|
email_gateway
|
Multiple SQL injection vulnerabilities in /admin/cgi-bin/rpc/doReport/18 in McAfee Email Gateway 7.6 allow remote authenticated users to execute arbitrary SQL commands via the (1) events_col, (2) eve…
|
CWE-89
SQL Injection
|
CVE-2013-7092
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286424
|
- |
|
synacor
|
zimbra_collaboration_suite
|
Directory traversal vulnerability in /res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz in Zimbra 7.2.2 and 8.0.2 allows remote attackers to read arbitrary files via a .. (…
|
CWE-22
Path Traversal
|
CVE-2013-7091
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286425
|
- |
|
devscripts_devel_team
|
devscripts
|
The get_main_source_dir function in scripts/uscan.pl in devscripts before 2.13.8, when using USCAN_EXCLUSION, allows remote attackers to execute arbitrary commands via shell metacharacters in a direc…
|
CWE-94
Code Injection
|
CVE-2013-7050
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286426
|
- |
|
juniper
|
screenos
netscreen-5200
netscreen-5400
|
Juniper NetScreen Firewall running ScreenOS 5.4, 6.2, or 6.3, when the Ping of Death screen is disabled, allows remote attackers to cause a denial of service via a crafted packet.
|
NVD-CWE-noinfo
|
CVE-2013-6958
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286427
|
- |
|
juniper
|
idp250
idp8200
idp800
idp75
|
Cross-site scripting (XSS) vulnerability in the web administrative component in Juniper IDP allows remote attackers to inject arbitrary web script or HTML via unspecified vectors to the ACM web serve…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6957
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286428
|
- |
|
juniper
|
ive_os
|
Cross-site scripting (XSS) vulnerability in the Secure Access Service Web rewriting feature in Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS before 7.1r17, 7.3 before 7.3r8, 7.4…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6956
|
2024-11-21 11:00 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286429
|
- |
|
cisco
|
unified_communications_manager
|
The TFTP service in Cisco Unified Communications Manager (aka CUCM or Unified CM) allows remote attackers to obtain sensitive information from a phone via an RRQ operation, as demonstrated by discove…
|
CWE-310
Cryptographic Issues
|
CVE-2013-7030
|
2024-11-21 11:00 |
2013-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286430
|
- |
|
zippyyum
|
subway_ordering_for_california
|
The ZippyYum Subway CA Kiosk app 3.4 for iOS uses cleartext storage in SQLite cache databases, which allows attackers to obtain sensitive information by reading data elements, as demonstrated by pass…
|
CWE-310
Cryptographic Issues
|
CVE-2013-6986
|
2024-11-21 11:00 |
2013-12-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
