|
298621
|
- |
|
pidgin
|
pidgin
|
Buffer overflow in http.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.7 allows remote servers to execute arbitrary code via a long HTTP header.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0272
|
2024-11-21 10:47 |
2013-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298622
|
- |
|
pidgin
|
pidgin
|
The MXit protocol plugin in libpurple in Pidgin before 2.10.7 might allow remote attackers to create or overwrite files via a crafted (1) mxit or (2) mxit/imagestrips pathname.
|
NVD-CWE-noinfo
|
CVE-2013-0271
|
2024-11-21 10:47 |
2013-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298623
|
- |
|
schneider-electric
|
accutech_manager
|
Heap-based buffer overflow in RFManagerService.exe in Schneider Electric Accutech Manager 2.00.1 and earlier allows remote attackers to execute arbitrary code via a crafted HTTP request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0658
|
2024-11-21 10:47 |
2013-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298624
|
- |
|
adobe
|
shockwave_player
|
Stack-based buffer overflow in Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0636
|
2024-11-21 10:47 |
2013-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298625
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0635
|
2024-11-21 10:47 |
2013-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298626
|
- |
|
openstack
canonical
|
essex
folsom
ubuntu_linux
|
The boot-from-volume feature in OpenStack Compute (Nova) Folsom and Essex, when using nova-volumes, allows remote authenticated users to boot from other users' volumes via a volume id in the block_de…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0208
|
2024-11-21 10:47 |
2013-02-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298627
|
- |
|
rubyonrails
|
ruby_on_rails
rails
|
ActiveRecord in Ruby on Rails before 2.3.17 and 3.x before 3.1.0 allows remote attackers to cause a denial of service or execute arbitrary code via crafted serialized attributes that cause the +seria…
|
NVD-CWE-noinfo
|
CVE-2013-0277
|
2024-11-21 10:47 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298628
|
- |
|
rubyonrails
|
rails
|
ActiveRecord in Ruby on Rails before 2.3.17, 3.1.x before 3.1.11, and 3.2.x before 3.2.12 allows remote attackers to bypass the attr_protected protection mechanism and modify protected model attribut…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0276
|
2024-11-21 10:47 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298629
|
- |
|
rubygems
|
json_gem
|
The JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7 for Ruby allows remote attackers to cause a denial of service (resource consumption) or bypass the mass assignment protection mec…
|
CWE-20
Improper Input Validation
|
CVE-2013-0269
|
2024-11-21 10:47 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
298630
|
- |
|
bitbucket
|
xnbd
|
The redirect_stderr function in xnbd_common.c in xnbd-server and xndb-wrapper in xNBD 0.1.0 allow local users to overwrite arbitrary files via a symlink attack on /tmp/xnbd.log.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0265
|
2024-11-21 10:47 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
