|
293461
|
- |
|
google
|
chrome
|
The PepperFlashRendererHost::OnNavigate function in renderer/pepper/pepper_flash_renderer_host.cc in Google Chrome before 33.0.1750.146 does not verify that all headers are Cross-Origin Resource Shar…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6666
|
2024-11-21 10:59 |
2014-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293462
|
- |
|
google
|
chrome
|
Heap-based buffer overflow in the ResourceProvider::InitializeSoftware function in cc/resources/resource_provider.cc in Google Chrome before 33.0.1750.146 allows remote attackers to cause a denial of…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6665
|
2024-11-21 10:59 |
2014-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293463
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in the FormAssociatedElement::formRemovedFromTree function in core/html/FormAssociatedElement.cpp in Blink, as used in Google Chrome before 33.0.1750.146, allows remote a…
|
CWE-399
Resource Management Errors
|
CVE-2013-6664
|
2024-11-21 10:59 |
2014-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293464
|
- |
|
google
|
chrome
|
Use-after-free vulnerability in the SVGImage::setContainerSize function in core/svg/graphics/SVGImage.cpp in the SVG implementation in Blink, as used in Google Chrome before 33.0.1750.146, allows rem…
|
CWE-399
Resource Management Errors
|
CVE-2013-6663
|
2024-11-21 10:59 |
2014-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293465
|
- |
|
ibm
|
websphere_portal
|
IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3 CF27, 7.0.0.x before 7.0.0.2 CF27, and 8.0.0.x before 8.0.0.1 CF10, when the wcm.path.traversal.security setting is enabled,…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6730
|
2024-11-21 10:59 |
2014-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293466
|
- |
|
redhat
|
icedtea-web
|
The LiveConnect implementation in plugin/icedteanp/IcedTeaNPPlugin.cc in IcedTea-Web before 1.4.2 allows local users to read the messages between a Java applet and a web browser by pre-creating a tem…
|
CWE-200
Information Exposure
|
CVE-2013-6493
|
2024-11-21 10:59 |
2014-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293467
|
- |
|
ibm
|
netezza_performance_portal
|
IBM Netezza Performance Portal 2.x before 2.0.0.3 allows remote authenticated users to change arbitrary passwords via an HTTP POST request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6731
|
2024-11-21 10:59 |
2014-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293468
|
- |
|
google
|
chrome
|
Multiple unspecified vulnerabilities in Google Chrome before 33.0.1750.117 allow attackers to bypass the sandbox protection mechanism after obtaining renderer access, or have other impact, via unknow…
|
NVD-CWE-noinfo
|
CVE-2013-6661
|
2024-11-21 10:59 |
2014-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293469
|
- |
|
google
|
chrome
|
The drag-and-drop implementation in Google Chrome before 33.0.1750.117 does not properly restrict the information in WebDropData data structures, which allows remote attackers to discover full pathna…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6660
|
2024-11-21 10:59 |
2014-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293470
|
- |
|
google
|
chrome
|
The SSLClientSocketNSS::Core::OwnAuthCertHandler function in net/socket/ssl_client_socket_nss.cc in Google Chrome before 33.0.1750.117 does not prevent changes to server X.509 certificates during ren…
|
CWE-310
Cryptographic Issues
|
CVE-2013-6659
|
2024-11-21 10:59 |
2014-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
