|
258451
|
- |
|
google
|
chrome
v8
|
The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of servi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6639
|
2014-03-6 13:49 |
2013-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258452
|
- |
|
google
|
chrome
v8
|
The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of servi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6640
|
2014-03-6 13:49 |
2013-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258453
|
- |
|
quickheal
|
antivirus_pro
|
Stack-based buffer overflow in pepoly.dll in Quick Heal AntiVirus Pro 7.0.0.1 allows local users to execute arbitrary code or cause a denial of service (process crash) via a long *.text value in a PE…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-6767
|
2014-03-6 13:49 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258454
|
- |
|
zabbix
|
zabbix
|
Zabbix before 1.8.19rc1, 2.0 before 2.0.10rc1, and 2.2 before 2.2.1rc1 allows remote Zabbix servers and proxies to execute arbitrary commands via a newline in a flexible user parameter.
|
CWE-94
Code Injection
|
CVE-2013-6824
|
2014-03-6 13:49 |
2013-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258455
|
- |
|
apple
canonical
|
cups
ubuntu_linux
|
lppasswd in CUPS before 1.7.1, when running with setuid privileges, allows local users to read portions of arbitrary files via a modified HOME environment variable and a symlink attack involving .cup…
|
CWE-59
Link Following
|
CVE-2013-6891
|
2014-03-6 13:49 |
2014-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258456
|
- |
|
belkin
|
wemo_home_automation_firmware
|
The peerAddresses API in the Belkin WeMo Home Automation firmware before 3949 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunct…
|
CWE-94
Code Injection
|
CVE-2013-6948
|
2014-03-6 13:49 |
2014-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258457
|
- |
|
belkin
|
wemo_home_automation_firmware
|
The Belkin WeMo Home Automation firmware before 3949 does not properly use the STUN and TURN protocols, which allows remote attackers to hijack connections and possibly have unspecified other impact …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-6949
|
2014-03-6 13:49 |
2014-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258458
|
- |
|
belkin
|
wemo_home_automation_firmware
|
The Belkin WeMo Home Automation firmware before 3949 does not use SSL for the distribution feed, which allows man-in-the-middle attackers to install arbitrary firmware by spoofing a distribution serv…
|
CWE-310
Cryptographic Issues
|
CVE-2013-6950
|
2014-03-6 13:49 |
2014-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258459
|
- |
|
belkin
|
wemo_home_automation_firmware
|
The Belkin WeMo Home Automation firmware before 3949 has a hardcoded GPG key, which makes it easier for remote attackers to spoof firmware updates and execute arbitrary code via crafted signed data.
|
CWE-310
Cryptographic Issues
|
CVE-2013-6952
|
2014-03-6 13:49 |
2014-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258460
|
- |
|
apple
|
iphone_os
|
The IOSerialFamily driver in Apple iOS before 7 allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds array access) via a crafted application.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5139
|
2014-03-6 13:48 |
2013-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
