261151
|
- |
|
newrelic
|
ruby_agent
|
Ruby agent 3.2.0 through 3.5.2 serializes sensitive data when communicating with servers operated by New Relic, which allows remote attackers to obtain sensitive information (database credentials and…
|
CWE-200
Information Exposure
|
CVE-2013-0284
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261152
|
- |
|
adobe
|
shockwave_player
|
Buffer overflow in Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1383
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261153
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-1…
|
NVD-CWE-noinfo
|
CVE-2013-1384
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261154
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.0.2.122 does not prevent access to address information, which makes it easier for attackers to bypass the ASLR protection mechanism via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1385
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261155
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.0.2.122 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-1…
|
NVD-CWE-noinfo
|
CVE-2013-1386
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261156
|
- |
|
freedesktop
|
poppler
|
splash/Splash.cc in poppler before 0.22.1 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to the (1) Splash::arbitraryTransfor…
|
NVD-CWE-Other
|
CVE-2013-1789
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261157
|
- |
|
freedesktop
|
poppler
|
Per: http://cwe.mitre.org/data/definitions/476.html
'CWE-476: NULL Pointer Dereference'
|
NVD-CWE-Other
|
CVE-2013-1789
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261158
|
- |
|
john_nunemaker
|
crack
|
The crack gem 0.3.1 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1800
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261159
|
- |
|
john_nunemaker
|
httparty
|
The httparty gem 0.9.0 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or ca…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1801
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261160
|
- |
|
dan_kubb
|
extlib
|
The extlib gem 0.9.15 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cau…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1802
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|