|
292811
|
- |
|
wireshark
|
wireshark
|
The dissect_sip_common function in epan/dissectors/packet-sip.c in the SIP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly initialize a data structure, which all…
|
CWE-20
Improper Input Validation
|
CVE-2013-6338
|
2024-11-21 10:59 |
2013-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292812
|
- |
|
wireshark
|
wireshark
|
Unspecified vulnerability in the NBAP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
NVD-CWE-noinfo
|
CVE-2013-6337
|
2024-11-21 10:59 |
2013-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292813
|
- |
|
wireshark
|
wireshark
|
The ieee802154_map_rec function in epan/dissectors/packet-ieee802154.c in the IEEE 802.15.4 dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 uses an incorrect pointer chain, which …
|
CWE-20
Improper Input Validation
|
CVE-2013-6336
|
2024-11-21 10:59 |
2013-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292814
|
- |
|
mcafee
|
email_gateway
|
McAfee Email Gateway (MEG) 7.0 before 7.0.4 and 7.5 before 7.5.1 allows remote authenticated users to execute arbitrary commands via unspecified vectors.
|
CWE-94
Code Injection
|
CVE-2013-6349
|
2024-11-21 10:59 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292815
|
- |
|
apache
|
struts
|
Multiple cross-site scripting (XSS) vulnerabilities in Apache Struts 2.3.15.3 allow remote attackers to inject arbitrary web script or HTML via the namespace parameter to (1) actionNames.action and (…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6348
|
2024-11-21 10:59 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292816
|
- |
|
novell
|
zenworks_configuration_management
|
Session fixation vulnerability in Novell ZENworks Configuration Management (ZCM) before 11.2.4 allows remote attackers to hijack web sessions via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2013-6347
|
2024-11-21 10:59 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292817
|
- |
|
novell
|
zenworks_configuration_management
|
Cross-site request forgery (CSRF) vulnerability in the ZCC page in Novell ZENworks Configuration Management (ZCM) before 11.2.4 allows remote attackers to hijack the authentication of unspecified vic…
|
CWE-352
Origin Validation Error
|
CVE-2013-6346
|
2024-11-21 10:59 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292818
|
- |
|
novell
|
zenworks_configuration_management
|
Unspecified vulnerability in the ZCC page in Novell ZENworks Configuration Management (ZCM) before 11.2.4 has unknown impact and attack vectors related to an "Application Exception."
|
NVD-CWE-noinfo
|
CVE-2013-6345
|
2024-11-21 10:59 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292819
|
- |
|
novell
|
zenworks_configuration_management
|
The ZCC page in Novell ZENworks Configuration Management (ZCM) before 11.2.4 allows attackers to conduct cross-frame scripting attacks via unknown vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-6344
|
2024-11-21 10:59 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292820
|
9.8 |
CRITICAL
Network
|
qnap
|
viocard-30_firmware
viocard-100_firmware
viocard-300_firmware
viogate-340a_firmware
viogate-340_firmware
|
QNAP F_VioCard 2312 and F_VioGate 2308 have hardcoded entries in authorized_keys files. NOTE: 1. All active models are not affected. The last affected model was EOL since 2010. 2. The legacy authoriz…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2013-6276
|
2024-11-21 10:58 |
2021-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
