258941
|
- |
|
csounds
|
csound
|
Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbitrary code via a crafted (1) hetro file to the getnum function in util/heti_main.c or (2) PVOC file…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0270
|
2014-02-19 04:49 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258942
|
- |
|
qualcomm
|
quic_mobile_station_modem_kernel
|
The CONFIG_STRICT_MEMORY_RWX implementation for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM devices and other products, does not properly consider…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4737
|
2014-02-19 04:35 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258943
|
- |
|
php
|
php
|
The libxml RSHUTDOWN function in PHP 5.x allows remote attackers to bypass the open_basedir protection mechanism and read arbitrary files via vectors involving a stream_close method call during use o…
|
CWE-200
Information Exposure
|
CVE-2012-1171
|
2014-02-19 03:57 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258944
|
- |
|
litech
|
router_advertisement_daemon
|
The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when UnicastOnly is enabled, allows remote attackers to cause a denial of service (temporary service hang) via a large…
|
CWE-20
Improper Input Validation
|
CVE-2011-3605
|
2014-02-19 03:55 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258945
|
- |
|
litech
|
router_advertisement_daemon
|
The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows remote attackers to cause a denial of service (stack-based buffer over-read and crash) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-3604
|
2014-02-19 03:54 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258946
|
- |
|
google
|
chrome
|
Google Chrome before 29 sends HTTP Cookie headers without first validating that they have the required character-set restrictions, which allows remote attackers to conduct the equivalent of a persist…
|
CWE-352
Origin Validation Error
|
CVE-2013-6166
|
2014-02-19 03:27 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258947
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox through 27 sends HTTP Cookie headers without first validating that they have the required character-set restrictions, which allows remote attackers to conduct the equivalent of a pers…
|
CWE-352
Origin Validation Error
|
CVE-2013-6167
|
2014-02-19 03:21 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258948
|
- |
|
ryan_ohara
|
piranha
|
The Piranha Configuration Tool in Piranha 0.8.6 does not properly restrict access to webpages, which allows remote attackers to bypass authentication and read or modify the LVS configuration via an H…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6492
|
2014-02-19 00:49 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258949
|
- |
|
linuxcontainers
|
lxc
|
The lxc-sshd template (templates/lxc-sshd.in) in LXC before 1.0.0.beta2 uses read-write permissions when mounting /sbin/init, which allows local users to gain privileges by modifying the init file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6441
|
2014-02-19 00:43 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258950
|
- |
|
redhat
|
jboss_operations_network
|
Red Hat JBoss Operations Network (JON) 3.0.x before 3.0.1, 2.4.2, and earlier, when LDAP authentication is enabled and the LDAP bind account credentials are invalid, allows remote attackers to login …
|
CWE-287
Improper Authentication
|
CVE-2012-1100
|
2014-02-15 04:19 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|