|
287491
|
- |
|
cisco
|
secure_access_control_system
|
The RBAC implementation in Cisco Secure Access Control System (ACS) does not properly verify privileges for support-bundle downloads, which allows remote authenticated users to obtain sensitive infor…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6695
|
2024-11-21 10:59 |
2013-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287492
|
- |
|
ibm
|
advanced_management_module_firmware
|
The Advanced Management Module (AMM) with firmware 3.64B, 3.64C, and 3.64G for IBM BladeCenter systems allows remote attackers to discover account names and passwords via use of an unspecified interf…
|
CWE-310
Cryptographic Issues
|
CVE-2013-6718
|
2024-11-21 10:59 |
2013-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287493
|
- |
|
satechi
|
smart_travel_router
|
The web interface on the Satechi travel router 1.5, when Wi-Fi is used for WAN access, exposes the console without authentication on the WAN IP address regardless of the "Web Management via WAN" sett…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6918
|
2024-11-21 10:59 |
2013-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287494
|
- |
|
codeaurora
|
android-msm
|
The genlock_dev_ioctl function in genlock.c in the Genlock driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does…
|
CWE-399
Resource Management Errors
|
CVE-2013-6392
|
2024-11-21 10:59 |
2013-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287495
|
- |
|
microsoft
|
enhanced_mitigation_experience_toolkit
|
Microsoft Enhanced Mitigation Experience Toolkit (EMET) before 4.0 uses predictable addresses for hooked functions, which makes it easier for context-dependent attackers to defeat the ASLR protection…
|
CWE-200
Information Exposure
|
CVE-2013-6791
|
2024-11-21 10:59 |
2013-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287496
|
- |
|
amd
|
16h_model_processor_firmware
16h_model_00h_processor
16h_model_0fh_processor
|
The microcode on AMD 16h 00h through 0Fh processors does not properly handle the interaction between locked instructions and write-combined memory types, which allows local users to cause a denial of…
|
CWE-399
Resource Management Errors
|
CVE-2013-6885
|
2024-11-21 10:59 |
2013-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287497
|
- |
|
cisco
|
ios_xe
|
The Cisco Express Forwarding processing module in Cisco IOS XE allows remote attackers to cause a denial of service (device reload) via crafted MPLS packets that are not properly handled during IP he…
|
CWE-20
Improper Input Validation
|
CVE-2013-6706
|
2024-11-21 10:59 |
2013-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287498
|
- |
|
cisco
|
ios_xr
|
The SNMP module in Cisco IOS XR allows remote attackers to cause a denial of service (process reload) via a request for an unspecified MIB, aka Bug ID CSCuh43144.
|
CWE-20
Improper Input Validation
|
CVE-2013-6700
|
2024-11-21 10:59 |
2013-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287499
|
- |
|
php
apple
opensuse
canonical
debian
|
php
mac_os_x
opensuse
ubuntu_linux
debian_linux
|
The scan function in ext/date/lib/parse_iso_intervals.c in PHP through 5.5.6 does not properly restrict creation of DateInterval objects, which might allow remote attackers to cause a denial of servi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6712
|
2024-11-21 10:59 |
2013-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287500
|
- |
|
ibm
|
sterling_selling_and_fulfillment_foundation
|
Cross-site scripting (XSS) vulnerability in Sterling Order Management in IBM Sterling Selling and Fulfillment Suite 8.0 before HF128 and 8.5 before HF93 allows remote authenticated users to inject ar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6322
|
2024-11-21 10:59 |
2013-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
