|
259951
|
- |
|
google
|
android
|
diagchar_core.c in the Qualcomm Innovation Center (QuIC) Diagnostics (aka DIAG) kernel-mode driver for Android 2.3 through 4.2 allows attackers to execute arbitrary code or cause a denial of service …
|
NVD-CWE-noinfo
|
CVE-2012-4220
|
2013-10-11 03:28 |
2012-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259952
|
- |
|
digium
|
asterisk_business_edition
asterisk
asteriske
certified_asterisk
|
channels/chan_sip.c in Asterisk Open Source 1.8.x before 1.8.13.1 and 10.x before 10.5.2, Asterisk Business Edition C.3.x before C.3.7.5, Certified Asterisk 1.8.11-certx before 1.8.11-cert4, and Aste…
|
CWE-399
Resource Management Errors
|
CVE-2012-3863
|
2013-10-11 03:24 |
2012-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259953
|
- |
|
cisco
|
prime_central_for_hosted_collaboration_solution
|
The portal in Cisco Prime Central for Hosted Collaboration Solution (HCS) places cleartext credentials in temporary files, which allows local users to obtain sensitive information by leveraging weak …
|
CWE-255
Credentials Management
|
CVE-2013-3409
|
2013-10-11 03:21 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259954
|
- |
|
cisco
|
ios
|
The remember feature in the DHCP server in Cisco IOS allows remote attackers to cause a denial of service (device reload) by acquiring a lease and then sending a DHCPRELEASE message, aka Bug ID CSCuh…
|
NVD-CWE-noinfo
|
CVE-2013-5499
|
2013-10-11 03:10 |
2013-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259955
|
- |
|
squid-cache
|
squid
|
The strHdrAcptLangGetItem function in errorpage.cc in Squid 3.2.x before 3.2.9 and 3.3.x before 3.3.3 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a ",…
|
CWE-20
Improper Input Validation
|
CVE-2013-1839
|
2013-10-11 02:41 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259956
|
- |
|
cisco
|
video_surveillance_operations_manager
|
The administrative web interface in Cisco Video Surveillance Operations Manager does not properly perform authentication, which allows remote attackers to watch video feeds via a crafted URL, aka Bug…
|
CWE-287
Improper Authentication
|
CVE-2013-3417
|
2013-10-11 01:54 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259957
|
- |
|
emeric_vernat
|
javamelody
|
Cross-site scripting (XSS) vulnerability in HtmlSessionInformationsReport.java in JavaMelody 1.46 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted X-Forwarded-…
|
CWE-79
Cross-site Scripting
|
CVE-2013-4378
|
2013-10-11 01:52 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259958
|
- |
|
adobe
|
robohelp
|
MDBMS.dll in Adobe RoboHelp 10 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5327
|
2013-10-10 22:39 |
2013-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259959
|
- |
|
sophos
|
web_appliance_firmware
|
The get_referers function in /opt/ws/bin/sblistpack in Sophos Web Appliance before 3.7.9.1 and 3.8 before 3.8.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the…
|
CWE-78
OS Command
|
CVE-2013-4983
|
2013-10-9 23:51 |
2013-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259960
|
- |
|
metaclassy
|
byword
|
The Metaclassy Byword app 2.x before 2.1 for iOS does not require confirmation of Replace file actions, which allows remote attackers to overwrite arbitrary files via the name and text parameters in …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5725
|
2013-10-9 06:21 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
