|
289551
|
- |
|
saltstack
|
salt
|
Salt (aka SaltStack) 0.15.0 through 0.17.0 allows remote authenticated users who are using external authentication or client ACL to execute restricted routines by embedding the routine in another rou…
|
CWE-287
Improper Authentication
|
CVE-2013-4435
|
2024-11-21 10:55 |
2013-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289552
|
- |
|
linux
|
linux_kernel
|
The ipc_rcu_putref function in ipc/util.c in the Linux kernel before 3.10 does not properly manage a reference count, which allows local users to cause a denial of service (memory consumption or syst…
|
CWE-189
Numeric Errors
|
CVE-2013-4483
|
2024-11-21 10:55 |
2013-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289553
|
- |
|
linux
|
linux_kernel
|
The Linux kernel before 3.12, when UDP Fragmentation Offload (UFO) is enabled, does not properly initialize certain data structures, which allows local users to cause a denial of service (memory corr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4470
|
2024-11-21 10:55 |
2013-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289554
|
- |
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
The skb_flow_dissect function in net/core/flow_dissector.c in the Linux kernel through 3.12 allows remote attackers to cause a denial of service (infinite loop) via a small value in the IHL field of …
|
CWE-399
Resource Management Errors
|
CVE-2013-4348
|
2024-11-21 10:55 |
2013-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289555
|
- |
|
openstack
|
havana
grizzly
|
The LDAP backend in OpenStack Identity (Keystone) Grizzly and Havana, when removing a role on a tenant for a user who does not have that role, adds the role to the user, which allows local users to g…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4477
|
2024-11-21 10:55 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289556
|
- |
|
xen
|
xen
|
The Ocaml xenstored implementation (oxenstored) in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service (domain shutdown) via a large message reply.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4416
|
2024-11-21 10:55 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289557
|
- |
|
spice_project
redhat
|
spice
enterprise_linux
enterprise_virtualization
|
Stack-based buffer overflow in the reds_handle_ticket function in server/reds.c in SPICE 0.12.0 allows remote attackers to cause a denial of service (crash) via a long password in a SPICE ticket.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4282
|
2024-11-21 10:55 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289558
|
- |
|
xen
debian
|
xen
debian_linux
|
Xen before 4.1.x, 4.2.x, and 4.3.x does not take the page_alloc_lock and grant_table.lock in the same order, which allows local guest administrators with access to multiple vcpus to cause a denial of…
|
CWE-20
Improper Input Validation
|
CVE-2013-4494
|
2024-11-21 10:55 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289559
|
- |
|
openstack
|
havana
grizzly
folsom
|
OpenStack Compute (Nova) Folsom, Grizzly, and Havana, when use_cow_images is set to False, does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (ho…
|
CWE-399
Resource Management Errors
|
CVE-2013-4469
|
2024-11-21 10:55 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289560
|
- |
|
thoughtbot
|
cocaine
|
The Cocaine gem 0.4.0 through 0.5.2 for Ruby allows context-dependent attackers to execute arbitrary commands via a crafted has object, related to recursive variable interpolation.
|
CWE-78
OS Command
|
CVE-2013-4457
|
2024-11-21 10:55 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
