|
259741
|
- |
|
polarssl
|
polarssl
|
The RSA-CRT implementation in PolarSSL before 1.2.9 does not properly perform Montgomery multiplication, which might allow remote attackers to conduct a timing side-channel attack and retrieve RSA pr…
|
CWE-310
Cryptographic Issues
|
CVE-2013-5915
|
2013-10-31 12:35 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259742
|
- |
|
apple
|
iphone_os
|
Stack-based buffer overflow in the openSharedCacheFile function in dyld.cpp in dyld in Apple iOS 5.1.x and 6.x through 6.1.3 makes it easier for attackers to conduct untethering attacks via a long st…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3950
|
2013-10-31 12:34 |
2013-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259743
|
- |
|
apple
|
mac_os_x
iphone_os
|
The posix_spawn system call in the XNU kernel in Apple Mac OS X 10.8.x does not properly validate the data for file actions and port actions, which allows local users to (1) cause a denial of service…
|
CWE-20
Improper Input Validation
|
CVE-2013-3954
|
2013-10-31 12:34 |
2013-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259744
|
- |
|
openstack
|
folsom
grizzly
havana
swift
|
OpenStack Swift before 1.9.1 in Folsom, Grizzly, and Havana allows authenticated users to cause a denial of service ("superfluous" tombstone consumption and Swift cluster slowdown) via a DELETE reque…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4155
|
2013-10-31 12:34 |
2013-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259745
|
- |
|
openstack
|
cinder
|
The clear_volume function in LVMVolumeDriver driver in OpenStack Cinder 2013.1.1 through 2013.1.2 does not properly clear data when deleting a snapshot, which allows local users to obtain sensitive i…
|
CWE-200
Information Exposure
|
CVE-2013-4183
|
2013-10-31 12:34 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259746
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_brms_platform
jboss_enterprise_soa_platform
jboss_enterprise_web_platform
|
The org.jboss.remoting.transport.socket.ServerThread class in Red Hat JBoss Remoting for Red Hat JBoss SOA Platform 5.3.1 GA, Web Platform 5.2.0, Enterprise Application Platform 5.2.0, and other prod…
|
NVD-CWE-noinfo
|
CVE-2013-4210
|
2013-10-31 12:34 |
2013-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259747
|
- |
|
apple
|
iphone_os
|
Safari in Apple iOS before 7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1036
|
2013-10-31 12:31 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259748
|
- |
|
oracle
|
jdk
jre
|
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via u…
|
NVD-CWE-noinfo
|
CVE-2012-1682
|
2013-10-31 12:24 |
2012-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259749
|
- |
|
rack_project
|
rack
|
Rack before 1.1.3, 1.2.x before 1.2.5, and 1.3.x before 1.3.6 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote atta…
|
CWE-310
Cryptographic Issues
|
CVE-2011-5036
|
2013-10-31 12:21 |
2011-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259750
|
- |
|
redhat
|
jboss_community_application_server
jboss_enterprise_application_platform
|
The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and earlier, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of a…
|
NVD-CWE-noinfo
|
CVE-2012-4529
|
2013-10-30 23:49 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
