|
257641
|
- |
|
x
|
libxinerama
|
Integer overflow in X.org libXinerama 1.1.2 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the XineramaQueryScreens function.
|
CWE-20
Improper Input Validation
|
CVE-2013-1985
|
2013-12-1 13:27 |
2013-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257642
|
- |
|
x
|
libxrandr
|
Multiple integer overflows in X.org libXrandr 1.4.0 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the (1) XRRQueryOutputPropert…
|
CWE-189
Numeric Errors
|
CVE-2013-1986
|
2013-12-1 13:27 |
2013-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257643
|
- |
|
x
|
libx11
|
Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1997
|
2013-12-1 13:27 |
2013-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257644
|
- |
|
tinc-vpn
|
tinc
|
Stack-based buffer overflow in the receive_tcppacket function in net_packet.c in tinc before 1.0.21 and 1.1 before 1.1pre7 allows remote authenticated peers to cause a denial of service (crash) or po…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1428
|
2013-12-1 13:26 |
2013-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257645
|
- |
|
cisco
|
ios_xr
|
The SNMP module in Cisco IOS XR allows remote attackers to cause a denial of service (process reload) via a request for an unspecified MIB, aka Bug ID CSCuh43144.
|
CWE-20
Improper Input Validation
|
CVE-2013-6700
|
2013-11-29 23:52 |
2013-11-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257646
|
- |
|
thomsonreuters
|
velocity_analytics_vhayu_analytic_server
|
VhttpdMgr in Thomson Reuters Velocity Analytics Vhayu Analytic Server 6.94 build 2995 allows remote attackers to execute arbitrary code via a URL in the fileName parameter during an importFile action.
|
CWE-94
Code Injection
|
CVE-2013-5912
|
2013-11-29 23:18 |
2013-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257647
|
- |
|
jahia
|
jahia_xcm
|
Multiple cross-site scripting (XSS) vulnerabilities in Jahia xCM 6.6.1.0 before hotfix 7 allow remote attackers to inject arbitrary web script or HTML via (1) the site parameter to engines/manager.js…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4624
|
2013-11-29 22:40 |
2013-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257648
|
- |
|
jahia
|
jahia_xcm
|
Jahia xCM before 6.6.2 does not include the HTTPOnly flag in a Set-Cookie header for the JSESSIONID cookie, which makes it easier for remote attackers to obtain potentially sensitive information via …
|
CWE-200
Information Exposure
|
CVE-2013-4617
|
2013-11-29 22:38 |
2013-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257649
|
- |
|
jahia
|
jahia_xcm
|
Cross-site scripting (XSS) vulnerability in Jahia xCM before 6.6.2 allows remote authenticated users to inject arbitrary web script or HTML via the "about me" field.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3920
|
2013-11-29 22:35 |
2013-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257650
|
- |
|
sybase
|
adaptive_server_enterprise
|
Unspecified vulnerability in SAP Sybase Adaptive Server Enterprise (ASE) before 15.0.3 ESD#4.3, 15.5 before 15.5 ESD#5.3, and 15.7 before 15.7 SP50 or 15.7 SP100 allows remote authenticated users to …
|
NVD-CWE-noinfo
|
CVE-2013-6860
|
2013-11-28 01:49 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
