|
294611
|
- |
|
x
canonical
|
x.org-xserver
ubuntu_linux
|
X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain se…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1940
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294612
|
- |
|
xen
|
xen
|
qemu-nbd in QEMU, as used in Xen 4.2.x, determines the format of a raw disk image based on the header, which allows local guest OS administrators to read arbitrary files on the host by modifying the …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1922
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294613
|
- |
|
xen
|
xen
|
Xen 4.2.x and 4.1.x does not properly restrict access to IRQs, which allows local stub domain clients to gain access to IRQs and cause a denial of service via vectors related to "passed-through IRQs …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1919
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294614
|
- |
|
xen
|
xen
|
Certain page table manipulation operations in Xen 4.1.x, 4.2.x, and earlier are not preemptible, which allows local PV kernels to cause a denial of service via vectors related to "deep page table tra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1918
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294615
|
- |
|
xen
|
xen
|
Xen 3.1 through 4.x, when running 64-bit hosts on Intel CPUs, does not clear the NT flag when using an IRET after a SYSENTER instruction, which allows PV guest users to cause a denial of service (hyp…
|
CWE-20
Improper Input Validation
|
CVE-2013-1917
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294616
|
- |
|
fedoraproject
|
389_directory_server
|
The do_search function in ldap/servers/slapd/search.c in 389 Directory Server 1.2.x before 1.2.11.20 and 1.3.x before 1.3.0.5 does not properly restrict access to entries when the nsslapd-allow-anony…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1897
|
2024-11-21 10:50 |
2013-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294617
|
- |
|
linux
|
linux_kernel
|
The veth (aka virtual Ethernet) driver in the Linux kernel before 2.6.34 does not properly manage skbs during congestion, which allows remote attackers to cause a denial of service (system crash) by …
|
CWE-399
Resource Management Errors
|
CVE-2013-2017
|
2024-11-21 10:50 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294618
|
- |
|
linux
|
linux_kernel
|
The scm_set_cred function in include/net/scm.h in the Linux kernel before 3.8.11 uses incorrect uid and gid values during credentials passing, which allows local users to gain privileges via a crafte…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1979
|
2024-11-21 10:50 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294619
|
- |
|
linux
|
linux_kernel
|
kernel/user_namespace.c in the Linux kernel before 3.8.9 does not have appropriate capability requirements for the uid_map and gid_map files, which allows local users to gain privileges by opening a …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1959
|
2024-11-21 10:50 |
2013-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294620
|
- |
|
apache
|
subversion
|
The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (segmentation fault and crash) via a log REPORT request with an inval…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1884
|
2024-11-21 10:50 |
2013-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
