|
286201
|
9.8 |
CRITICAL
Network
|
littlecms
|
little_cms_color_engine
|
Double free vulnerability in the DefaultICCintents function in cmscnvrt.c in liblcms2 in Little CMS 2.x before 2.6 allows remote attackers to execute arbitrary code via a malformed ICC profile that t…
|
NVD-CWE-Other
|
CVE-2013-7455
|
2024-11-21 11:01 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286202
|
6.5 |
MEDIUM
Network
|
canonical
xchat
hexchat_project
|
ubuntu_linux
xchat
xchat_gnome
hexchat
|
The ssl_do_connect function in common/server.c in HexChat before 2.10.2, XChat, and XChat-GNOME does not verify that the server hostname matches a domain name in the X.509 certificate, which allows m…
|
CWE-310
Cryptographic Issues
|
CVE-2013-7449
|
2024-11-21 11:01 |
2016-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286203
|
7.5 |
HIGH
Network
|
debian
didiwiki_project
|
debian_linux
didiwiki
|
Directory traversal vulnerability in wiki.c in didiwiki allows remote attackers to read arbitrary files via the page parameter to api/page/get.
|
CWE-22
Path Traversal
|
CVE-2013-7448
|
2024-11-21 11:01 |
2016-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286204
|
6.5 |
MEDIUM
Network
|
canonical
samsung
|
ubuntu_linux
x14j_firmware
|
Integer overflow in the gdk_cairo_set_source_pixbuf function in gdk/gdkcairo.c in GTK+ before 3.9.8, as used in eom, gnome-photos, eog, gambas3, thunar, pinpoint, and possibly other applications, all…
|
NVD-CWE-Other
|
CVE-2013-7447
|
2024-11-21 11:01 |
2016-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286205
|
5.3 |
MEDIUM
Local
|
linux
|
linux_kernel
|
Use-after-free vulnerability in net/unix/af_unix.c in the Linux kernel before 4.3.3 allows local users to bypass intended AF_UNIX socket permissions or cause a denial of service (panic) via crafted e…
|
NVD-CWE-Other
|
CVE-2013-7446
|
2024-11-21 11:01 |
2015-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286206
|
- |
|
linux
|
linux_kernel
|
The Direct Rendering Manager (DRM) subsystem in the Linux kernel through 4.x mishandles requests for Graphics Execution Manager (GEM) objects, which allows context-dependent attackers to cause a deni…
|
CWE-399
Resource Management Errors
|
CVE-2013-7445
|
2024-11-21 11:01 |
2015-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286207
|
- |
|
mediawiki
|
mediawiki
|
The Special:Contributions page in MediaWiki before 1.22.0 allows remote attackers to determine if an IP is autoblocked via the "Change block" text.
|
CWE-200
Information Exposure
|
CVE-2013-7444
|
2024-11-21 11:01 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286208
|
- |
|
canonical
sqlite
|
ubuntu_linux
sqlite
|
Buffer overflow in the skip-scan optimization in SQLite 3.8.2 allows remote attackers to cause a denial of service (crash) via crafted SQL statements.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-7443
|
2024-11-21 11:01 |
2015-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286209
|
- |
|
gehealthcare
|
centricity_pacs_workstation
|
GE Healthcare Centricity PACS Workstation 4.0 and 4.0.1 has a password of (1) CANal1 for the Administrator user and (2) iis for the IIS user, which has unspecified impact and attack vectors related t…
|
CWE-255
Credentials Management
|
CVE-2013-7442
|
2024-11-21 11:01 |
2015-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286210
|
- |
|
apache
oracle
|
tomcat
virtualization
|
Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x before 8.0.9 does not properly handle cases where an HTTP response occurs before finishing the reading of an entire request body, which all…
|
CWE-399
Resource Management Errors
|
CVE-2014-0230
|
2024-11-21 11:01 |
2015-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
