|
289151
|
- |
|
apache
|
struts
|
Apache Struts 2.0.0 through 2.3.15.1 allows remote attackers to bypass access controls via a crafted action: prefix.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4310
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289152
|
- |
|
redhat
|
libvirt
|
The virFileNBDDeviceAssociate function in util/virfile.c in libvirt 1.1.2 and earlier allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and crash) via …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4297
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289153
|
- |
|
redhat
canonical
|
libvirt
ubuntu_linux
enterprise_linux
|
The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated u…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4296
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289154
|
- |
|
redhat
|
libvirt
|
libvirt 1.1.0 and 1.1.1 allows local users to cause a denial of service (memory consumption) via a large number of domain migrate parameters in certain RPC calls in (1) daemon/remote.c and (2) remote…
|
CWE-399
Resource Management Errors
|
CVE-2013-4292
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289155
|
- |
|
redhat
|
libvirt
|
The virSecurityManagerSetProcessLabel function in libvirt 0.10.2.7, 1.0.5.5, and 1.1.1, when the domain has read an uid:gid label, does not properly set group memberships, which allows local users to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4291
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289156
|
- |
|
redhat
|
libvirt
|
The xenDaemonListDefinedDomains function in xen/xend_internal.c in libvirt 1.1.1 allows remote authenticated users to cause a denial of service (memory corruption and crash) via vectors involving the…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4239
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289157
|
- |
|
redhat
|
jboss_a-mq
jboss_fuse
|
Multiple cross-site scripting (XSS) vulnerabilities in Fuse Management Console in Red Hat JBoss Fuse 6.0.0 before patch 3 and JBoss A-MQ 6.0.0 before patch 3 allow remote attackers to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4372
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289158
|
- |
|
proftpd
|
proftpd
|
Integer overflow in kbdint.c in mod_sftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service (memory consumption) via a large response count value in an authentication …
|
CWE-189
Numeric Errors
|
CVE-2013-4359
|
2024-11-21 10:55 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289159
|
- |
|
littlecms
|
little_cms_color_engine
|
Multiple stack-based buffer overflows in LittleCMS (aka lcms or liblcms) 1.19 and earlier allow remote attackers to cause a denial of service (crash) via a crafted (1) ICC color profile to the icctra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4276
|
2024-11-21 10:55 |
2013-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289160
|
- |
|
libtiff
|
libtiff
|
The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4244
|
2024-11-21 10:55 |
2013-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
