261311
|
- |
|
cisco
|
200_series_smart_switches 300_series_managed_switches 200_series_smart_switches_software 500_series_stackable_managed_switches
|
The Cisco Small Business 200 Series Smart Switch 1.2.7.76 and earlier, Small Business 300 Series Managed Switch 1.2.7.76 and earlier, and Small Business 500 Series Stackable Managed Switch 1.2.7.76 a…
|
CWE-399
Resource Management Errors
|
CVE-2013-1154
|
2013-03-9 01:24 |
2013-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261312
|
- |
|
nec
|
universal_raid_utility
|
NEC Universal RAID Utility 1.40 Rev 680 and earlier, 2.31 Rev 1492 and earlier, and 2.5 Rev 2244 and earlier does not provide access control, which allows remote attackers to perform arbitrary RAID d…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0706
|
2013-03-8 14:00 |
2013-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261313
|
- |
|
cisco
|
prime_infrastructure
|
Cross-site request forgery (CSRF) vulnerability in the web interface in Cisco Prime Infrastructure allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCue84676.
|
CWE-352
Origin Validation Error
|
CVE-2013-1153
|
2013-03-8 14:00 |
2013-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261314
|
- |
|
google
|
chrome_frame
|
The Hook_Terminate function in chrome_frame/protocol_sink_wrap.cc in the Google Chrome Frame plugin before 26.0.1410.28 for Internet Explorer does not properly handle attach tab requests, which allow…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2493
|
2013-03-8 14:00 |
2013-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261315
|
- |
|
opera
|
opera_browser
|
The TLS implementation in Opera before 12.13 does not properly consider timing side-channel attacks on a MAC check operation during the processing of malformed CBC padding, which allows remote attack…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1618
|
2013-03-8 13:12 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261316
|
- |
|
polarssl
|
polarssl
|
Array index error in the SSL module in PolarSSL before 1.2.5 might allow remote attackers to cause a denial of service via vectors involving a crafted padding-length value during validation of CBC pa…
|
CWE-20
Improper Input Validation
|
CVE-2013-1621
|
2013-03-8 13:12 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261317
|
- |
|
opera
|
opera_browser
|
Opera before 12.13 allows remote attackers to execute arbitrary code via vectors involving DOM events.
|
CWE-94
Code Injection
|
CVE-2013-1637
|
2013-03-8 13:12 |
2013-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261318
|
- |
|
opera
|
opera_browser
|
Opera before 12.13 allows remote attackers to execute arbitrary code via crafted clipPaths in an SVG document.
|
CWE-94
Code Injection
|
CVE-2013-1638
|
2013-03-8 13:12 |
2013-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261319
|
- |
|
opera
|
opera_browser
|
Opera before 12.13 does not send CORS preflight requests in all required cases, which allows remote attackers to bypass a CSRF protection mechanism via a crafted web site that triggers a CORS request.
|
CWE-352
Origin Validation Error
|
CVE-2013-1639
|
2013-03-8 13:12 |
2013-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261320
|
- |
|
linux
|
linux_kernel
|
The xen_failsafe_callback function in Xen for the Linux kernel 2.6.23 and other versions, when running a 32-bit PVOPS guest, allows local users to cause a denial of service (guest crash) by triggerin…
|
CWE-20
Improper Input Validation
|
CVE-2013-0190
|
2013-03-8 13:11 |
2013-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|