|
287071
|
- |
|
redhat
|
libvirt
|
Multiple race conditions in the (1) virDomainBlockStats, (2) virDomainGetBlockInf, (3) qemuDomainBlockJobImpl, and (4) virDomainGetBlockIoTune functions in libvirt before 1.2.1 do not properly verify…
|
CWE-362
Race Condition
|
CVE-2013-6458
|
2024-11-21 10:59 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287072
|
- |
|
redhat
|
libvirt
|
The libxlDomainGetNumaParameters function in the libxl driver (libxl/libxl_driver.c) in libvirt before 1.2.1 does not properly initialize the nodemap, which allows local users to cause a denial of se…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6457
|
2024-11-21 10:59 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287073
|
- |
|
redhat
|
enterprise_virtualization_manager
|
The remote-viewer in Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.3, when using a native SPICE client invocation method, initially makes insecure connections to the SPICE server, which…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6434
|
2024-11-21 10:59 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287074
|
- |
|
live555
videolan
|
streaming_media
vlc_media_player
|
The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2013.11.26, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service (crash) and possibl…
|
CWE-189
Numeric Errors
|
CVE-2013-6934
|
2024-11-21 10:59 |
2014-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287075
|
- |
|
live555
|
streaming_media
|
The parseRTSPRequestString function in Live Networks Live555 Streaming Media 2011.08.13 through 2013.11.25, as used in VideoLAN VLC Media Player, allows remote attackers to cause a denial of service …
|
CWE-119
CWE-189
Incorrect Access of Indexable Resource ('Range Error')
Numeric Errors
|
CVE-2013-6933
|
2024-11-21 10:59 |
2014-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287076
|
- |
|
redhat
|
cloudforms
cloudforms_3.0_management_engine
|
CloudForms 3.0 Management Engine before 5.2.1.6 allows remote attackers to bypass the Ruby on Rails protect_from_forgery mechanism and conduct cross-site request forgery (CSRF) attacks via a destruct…
|
CWE-352
Origin Validation Error
|
CVE-2013-6443
|
2024-11-21 10:59 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287077
|
- |
|
redhat
|
jboss_seam_2_framework
|
The InterfaceGenerator handler in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and earlier, as used in JBoss Web Framework Kit, allows remote attackers to bypass the WebRemote annotation restr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6448
|
2024-11-21 10:59 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287078
|
- |
|
redhat
|
jboss_seam_2_framework
|
Multiple XML External Entity (XXE) vulnerabilities in the (1) ExecutionHandler, (2) PollHandler, and (3) SubscriptionHandler classes in JBoss Seam Remoting in JBoss Seam 2 framework 2.3.1 and earlier…
|
CWE-200
Information Exposure
|
CVE-2013-6447
|
2024-11-21 10:59 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287079
|
- |
|
augeas
|
augeas
|
The transform_save function in transform.c in Augeas 1.0.0 through 1.1.0 does not properly calculate the permission values when the umask contains a "7," which causes world-writable permissions to be…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6412
|
2024-11-21 10:59 |
2014-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287080
|
- |
|
ibm
|
filenet_p8_business_process_manager
filenet_case_foundation
filenet_content_manager
|
Cross-site scripting (XSS) vulnerability in FileNet P8 Platform Documentation Installable Info Center 4.5.1 through 5.2.0 in IBM FileNet Business Process Manager 4.5.1 through 5.1.0, FileNet Content …
|
CWE-79
Cross-site Scripting
|
CVE-2013-6746
|
2024-11-21 10:59 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
