|
287121
|
- |
|
openssl
|
openssl
|
The ssl_get_algorithm2 function in ssl/s3_lib.c in OpenSSL before 1.0.2 obtains a certain version number from an incorrect data structure, which allows remote attackers to cause a denial of service (…
|
CWE-310
Cryptographic Issues
|
CVE-2013-6449
|
2024-11-21 10:59 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287122
|
- |
|
redhat
|
subscription_asset_manager
|
Candlepin in Red Hat Subscription Asset Manager 1.0 through 1.3 uses a weak authentication scheme when the configuration file does not specify a scheme, which has unspecified impact and attack vector…
|
CWE-287
Improper Authentication
|
CVE-2013-6439
|
2024-11-21 10:59 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287123
|
- |
|
debian
canonical
haxx
|
debian_linux
ubuntu_linux
libcurl
|
The GnuTLS backend in libcurl 7.21.4 through 7.33.0, when disabling digital signature verification (CURLOPT_SSL_VERIFYPEER), also disables the CURLOPT_SSL_VERIFYHOST check for CN or SAN host name fie…
|
CWE-20
Improper Input Validation
|
CVE-2013-6422
|
2024-11-21 10:59 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287124
|
- |
|
ibm
|
security_access_manager_for_enterprise_single_sign-on
|
Cross-site scripting (XSS) vulnerability in the IMS server before Ifix 6 in IBM Security Access Manager for Enterprise Single Sign-On (ISAM ESSO) 8.2 allows remote authenticated users to inject arbit…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6745
|
2024-11-21 10:59 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287125
|
- |
|
ibm
|
websphere_portal
|
IBM WebSphere Portal 6.0.0.x through 6.0.0.1, 6.0.1.x through 6.0.1.7, 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x through 7.0.0.2 CF26, and 8.0.0.x through 8.0.0.1 CF08 allow…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6735
|
2024-11-21 10:59 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287126
|
- |
|
ibm
|
websphere_portal
|
IBM WebSphere Portal 8.0.0.1 before CF09 does not properly handle references in compute="always" Web Content Manager (WCM) navigator components, which allows remote attackers to obtain sensitive comp…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6723
|
2024-11-21 10:59 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287127
|
- |
|
ibm
|
websphere_portal
|
Cross-site scripting (XSS) vulnerability in the Web Content Manager (WCM) UI in IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x through 7.0.0.2 CF26, and 8.0.…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6328
|
2024-11-21 10:59 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287128
|
- |
|
quickheal
|
antivirus_pro
|
Stack-based buffer overflow in pepoly.dll in Quick Heal AntiVirus Pro 7.0.0.1 allows local users to execute arbitrary code or cause a denial of service (process crash) via a long *.text value in a PE…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6767
|
2024-11-21 10:59 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287129
|
- |
|
realnetworks
|
realplayer
|
Heap-based buffer overflow in RealNetworks RealPlayer before 17.0.4.61 on Windows, and Mac RealPlayer before 12.0.1.1738, allows remote attackers to execute arbitrary code via a long string in the TR…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6877
|
2024-11-21 10:59 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287130
|
- |
|
ibm
|
db2_connect
db2
db2_purescale_feature_9.8
|
The OLAP query engine in IBM DB2 and DB2 Connect 9.7 through FP9, 9.8 through FP5, 10.1 through FP3, and 10.5 through FP2, and the DB2 pureScale Feature 9.8 for Enterprise Server Edition, allows remo…
|
NVD-CWE-noinfo
|
CVE-2013-6717
|
2024-11-21 10:59 |
2013-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
