258781
|
- |
|
openstack
|
grizzly havana
|
The LDAP backend in OpenStack Identity (Keystone) Grizzly and Havana, when removing a role on a tenant for a user who does not have that role, adds the role to the user, which allows local users to g…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4477
|
2014-03-6 13:47 |
2013-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258782
|
- |
|
apple
|
quicktime mac_os_x
|
QuickTime in Apple Mac OS X before 10.8.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted idsc atom in a QuickTi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1032
|
2014-03-6 13:43 |
2013-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258783
|
- |
|
linux
|
linux_kernel
|
The ipv6_create_tempaddr function in net/ipv6/addrconf.c in the Linux kernel through 3.8 does not properly handle problems with the generation of IPv6 temporary addresses, which allows remote attacke…
|
NVD-CWE-noinfo
|
CVE-2013-0343
|
2014-03-6 13:42 |
2013-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258784
|
- |
|
redhat
|
jboss_communications_platform jboss_enterprise_application_platform jboss_enterprise_brms_platform jboss_enterprise_web_platform
|
JBoss Web, as used in Red Hat JBoss Communications Platform before 5.1.3, Enterprise Web Platform before 5.1.2, Enterprise Application Platform before 5.1.2, and other products, allows remote attacke…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-4610
|
2014-03-6 13:33 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258785
|
- |
|
redhat
|
kexec-tools
|
The SSH configuration in the Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, disables…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3588
|
2014-03-6 13:32 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258786
|
- |
|
redhat
|
kexec-tools
|
The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, uses world-readable permissions f…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3589
|
2014-03-6 13:32 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258787
|
- |
|
redhat
|
kexec-tools
|
The Red Hat mkdumprd script for kexec-tools, as distributed in the kexec-tools 1.x before 1.102pre-154 and 2.x before 2.0.0-209 packages in Red Hat Enterprise Linux, includes all of root's SSH privat…
|
CWE-310
Cryptographic Issues
|
CVE-2011-3590
|
2014-03-6 13:32 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258788
|
- |
|
linux-nfs
|
nfs-utils
|
The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystem…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-2500
|
2014-03-6 13:30 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258789
|
- |
|
dlink
|
des-3800_firmware des-3800
|
Unspecified vulnerability in the Web manager implementation on D-Link Japan DES-3800 devices with firmware before R4.50B58 allows remote attackers to cause a denial of service (device hang) via unkno…
|
NVD-CWE-noinfo
|
CVE-2013-5998
|
2014-03-6 04:23 |
2013-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258790
|
- |
|
filemaker
|
filemaker_pro filemaker_pro_advanced
|
FileMaker Pro before 12 and Pro Advanced before 12 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via …
|
CWE-310
Cryptographic Issues
|
CVE-2013-2319
|
2014-03-6 04:12 |
2013-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|