259641
|
- |
|
apple
|
iphone_os
|
WebKit in Apple iOS before 7 allows remote attackers to bypass the Same Origin Policy and obtain potentially sensitive information about use of the window.webkitRequestAnimationFrame API via an IFRAM…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5159
|
2013-10-23 04:20 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259642
|
- |
|
apple
|
iphone_os
|
Springboard in Apple iOS before 7 does not properly manage the lock state in Lost Mode, which allows physically proximate attackers to read notifications via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5153
|
2013-10-23 04:07 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259643
|
- |
|
cisco
|
virtualization_experience_client_6000 virtualization_experience_client_6000_series_firmware
|
The diagnostic module in the firmware on Cisco Virtualization Experience Client 6000 devices allows local users to bypass intended access restrictions and execute arbitrary commands via unspecified v…
|
CWE-20
Improper Input Validation
|
CVE-2013-5493
|
2013-10-23 03:54 |
2013-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259644
|
- |
|
cisco
|
telepresence_multipoint_switch
|
The Media Snapshot implementation on Cisco TelePresence Multipoint Switch (CTMS) devices allows remote authenticated users to cause a denial of service (device reload) by sending many Media Snapshot …
|
CWE-399
Resource Management Errors
|
CVE-2013-5516
|
2013-10-23 03:51 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259645
|
- |
|
cisco
|
unified_computing_system
|
The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service via crafted command parameters that trigger hardware-component write operatio…
|
CWE-20
Improper Input Validation
|
CVE-2013-5550
|
2013-10-23 03:07 |
2013-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259646
|
- |
|
cisco
|
unified_computing_system
|
The fabric-interconnect component in Cisco Unified Computing System (UCS) does not encrypt KVM virtual-media data, which allows man-in-the-middle attackers to obtain sensitive information by sniffing…
|
CWE-310
Cryptographic Issues
|
CVE-2012-4115
|
2013-10-22 02:18 |
2013-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259647
|
- |
|
watchguard
|
fireware watchguard_system_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in WebCenter in WatchGuard WSM and Fireware before 11.8 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5702
|
2013-10-22 00:42 |
2013-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259648
|
- |
|
cisco
|
unity_connection
|
Directory traversal vulnerability in the attachment service in the Voice Message Web Service (aka VMWS or Cisco Unity Web Service) in Cisco Unity Connection allows remote authenticated users to creat…
|
CWE-22
Path Traversal
|
CVE-2013-5534
|
2013-10-21 23:43 |
2013-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259649
|
- |
|
iodata
|
hdl2-a\/e hdl2-ah hdl2-a_firmware hdl-a\/e hdl-ah hdl-as hdl-a_firmware
|
I-O DATA DEVICE HDL-A and HDL2-A devices with firmware 1.07 and earlier do not properly manage sessions, which allows remote attackers to obtain sensitive information or modify data via unspecified v…
|
CWE-399
Resource Management Errors
|
CVE-2013-4712
|
2013-10-21 23:31 |
2013-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259650
|
- |
|
cisco
|
unified_computing_system
|
The fabric-interconnect component in Cisco Unified Computing System (UCS) does not properly verify X.509 certificates, which allows man-in-the-middle attackers to watch SSL KVM video-channel traffic …
|
CWE-20
Improper Input Validation
|
CVE-2012-4117
|
2013-10-21 22:51 |
2013-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|