|
258881
|
- |
|
openstack
|
folsom
grizzly
havana
|
OpenStack Compute (Nova) Folsom, Grizzly, and Havana does not verify the virtual size of a QCOW2 image, which allows local users to cause a denial of service (host file system disk consumption) by cr…
|
CWE-399
Resource Management Errors
|
CVE-2013-2096
|
2014-01-8 13:37 |
2013-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258882
|
- |
|
mini-stream
|
castripper
|
Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows remote attackers to execute arbitrary code via a long URL in the [playlist] section in a .pls file, a different vector than CVE-20…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2009-5137
|
2014-01-7 11:53 |
2014-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258883
|
- |
|
juniper
|
ive_os
|
Cross-site scripting (XSS) vulnerability in the Secure Access Service Web rewriting feature in Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS before 7.1r17, 7.3 before 7.3r8, 7.4…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6956
|
2014-01-4 13:51 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258884
|
- |
|
juniper
|
idp250
idp75
idp800
idp8200
|
Cross-site scripting (XSS) vulnerability in the web administrative component in Juniper IDP allows remote attackers to inject arbitrary web script or HTML via unspecified vectors to the ACM web serve…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6957
|
2014-01-4 13:51 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258885
|
- |
|
juniper
|
screenos
netscreen-5200
netscreen-5400
|
Juniper NetScreen Firewall running ScreenOS 5.4, 6.2, or 6.3, when the Ping of Death screen is disabled, allows remote attackers to cause a denial of service via a crafted packet.
|
NVD-CWE-noinfo
|
CVE-2013-6958
|
2014-01-4 13:51 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258886
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in the Image module in Drupal 7.x before 7.24 allows remote authenticated users with certain permissions to inject arbitrary web script or HTML via the descri…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6387
|
2014-01-4 13:50 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258887
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in the Color module in Drupal 7.x before 7.24 allows remote attackers to inject arbitrary web script or HTML via vectors related to CSS.
|
CWE-79
Cross-site Scripting
|
CVE-2013-6388
|
2014-01-4 13:50 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258888
|
- |
|
drupal
|
drupal
|
Open redirect vulnerability in the Overlay module in Drupal 7.x before 7.24 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2013-6389
|
2014-01-4 13:50 |
2013-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258889
|
- |
|
videocharge
|
watermark_master
|
Buffer overflow in VideoCharge Software Watermark Master 2.2.23 allows remote attackers to execute arbitrary code via a long string in the name attribute of the cols element in a .wstyle file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6937
|
2014-01-4 13:50 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258890
|
- |
|
hp
|
3com_router
5500-24g-4sfp_hi_switch_with_2_interface_slots
5500-24g-poe_ei_switch
5500-24g-poe_si_switch
5500-24g-sfp_dc_ei_switch
5500-24g-sfp_ei_switch
5500-24g_dc_ei_switch
55…
|
The OSPF implementation on HP JD9##A routers; HP J4###A, J484#B, J8###A, JD3##A, JE###A, and JF55#A switches; HP 3COM routers and switches; and HP H3C routers and switches does not consider the possi…
|
NVD-CWE-noinfo
|
CVE-2013-4806
|
2014-01-4 13:49 |
2013-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
