261111
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
CoreTypes in Apple Mac OS X before 10.8.3 includes JNLP files in the list of safe file types, which allows remote attackers to bypass a Java plug-in disabled setting, and trigger the launch of Java W…
|
NVD-CWE-noinfo
|
CVE-2013-0967
|
2013-03-19 01:48 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261112
|
- |
|
apple
|
mac_os_x
|
Login Window in Apple Mac OS X before 10.8.3 does not prevent application launching with the VoiceOver feature, which allows physically proximate attackers to bypass authentication and make arbitrary…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0969
|
2013-03-19 01:01 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261113
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Use-after-free vulnerability in PDFKit in Apple Mac OS X before 10.8.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted ink annotations i…
|
CWE-399
Resource Management Errors
|
CVE-2013-0971
|
2013-03-19 00:50 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261114
|
- |
|
openstack
|
essex folsom
|
(1) installer/basedefs.py and (2) modules/ospluginutils.py in PackStack allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0261
|
2013-03-18 13:00 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261115
|
- |
|
openstack
|
essex folsom
|
Per http://rhn.redhat.com/errata/RHSA-2013-0595.html these are the affected products:
Red Hat OpenStack Essex
Red Hat OpenStack Folsom
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0261
|
2013-03-18 13:00 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261116
|
- |
|
openstack
|
essex folsom
|
manifests/base.pp in the puppetlabs-cinder module, as used in PackStack, uses world-readable permissions for the (1) cinder.conf and (2) api-paste.ini configuration files, which allows local users to…
|
CWE-362
Race Condition
|
CVE-2013-0266
|
2013-03-18 13:00 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261117
|
- |
|
apple
|
safari
|
WebKit in Apple Safari before 6.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2013-…
|
NVD-CWE-noinfo
|
CVE-2013-0961
|
2013-03-18 13:00 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261118
|
- |
|
apple
|
mac_os_x mac_os_x_server
|
Software Update in Apple Mac OS X through 10.7.5 does not prevent plugin loading within the marketing-text WebView, which allows man-in-the-middle attackers to execute plugin code by modifying the cl…
|
NVD-CWE-noinfo
|
CVE-2013-0973
|
2013-03-18 13:00 |
2013-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261119
|
- |
|
gnome
|
gnome_screensaver
|
The default configuration in gnome-screensaver 3.5.4 through 3.6.0 sets the AutostartCondition line to fallback mode in the .desktop file, which prevents the program from starting automatically after…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1050
|
2013-03-18 13:00 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261120
|
- |
|
novell
|
zenworks_mobile_management
|
Directory traversal vulnerability in MDM.php in Novell ZENworks Mobile Management (ZMM) 2.6.1 and 2.7.0 allows remote attackers to include and execute arbitrary local files via the language parameter.
|
CWE-22
Path Traversal
|
CVE-2013-1081
|
2013-03-18 13:00 |
2013-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|