|
291161
|
- |
|
mozilla
|
thunderbird_esr
thunderbird
seamonkey
firefox
|
Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 24.0, Firefox ESR 17.x before 17.0.9, Thunderbird before 24.0, Thunderbird ESR 17.x before 17.0.9, and SeaMonkey b…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1718
|
2024-11-21 10:50 |
2013-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291162
|
- |
|
redhat
apple
php
|
enterprise_linux
mac_os_x
php
|
The SOAP parser in PHP before 5.3.22 and 5.4.x before 5.4.12 allows remote attackers to read arbitrary files via a SOAP WSDL file containing an XML external entity declaration in conjunction with an …
|
CWE-611
XXE
|
CVE-2013-1824
|
2024-11-21 10:50 |
2013-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291163
|
- |
|
open-xchange
|
open-xchange_server
|
OXUpdater in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spo…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1651
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291164
|
- |
|
open-xchange
|
open-xchange_server
|
Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 uses weak permissions (group "other" readable) under opt/open-xchange/etc/, which allows local users to obtain se…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1650
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291165
|
- |
|
open-xchange
|
open-xchange_server
|
Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 uses the crypt and SHA-1 algorithms for password hashing, which makes it easier for context-dependent attackers t…
|
CWE-255
Credentials Management
|
CVE-2013-1649
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291166
|
- |
|
open-xchange
|
open-xchange_server
|
The Subscriptions feature in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 does not properly validate the publication-source URL, which allows remote authentic…
|
CWE-20
Improper Input Validation
|
CVE-2013-1648
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291167
|
- |
|
open-xchange
|
open-xchange_server
|
Multiple CRLF injection vulnerabilities in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 allow remote attackers to inject arbitrary HTTP headers and conduct HT…
|
CWE-94
Code Injection
|
CVE-2013-1647
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291168
|
- |
|
open-xchange
|
open-xchange_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 allow remote attackers to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1646
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291169
|
- |
|
open-xchange
|
open-xchange_server
|
Directory traversal vulnerability in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 allows remote authenticated users to read arbitrary files via a .. (dot dot)…
|
CWE-22
Path Traversal
|
CVE-2013-1645
|
2024-11-21 10:50 |
2013-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291170
|
- |
|
vmware
|
esxi
esx
|
VMware ESXi 4.0 through 5.1, and ESX 4.0 and 4.1, does not properly implement the Network File Copy (NFC) protocol, which allows man-in-the-middle attackers to cause a denial of service (unhandled ex…
|
CWE-20
Improper Input Validation
|
CVE-2013-1661
|
2024-11-21 10:50 |
2013-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
