|
258601
|
- |
|
yassl
|
cyassl
|
The TLS and DTLS implementations in wolfSSL CyaSSL before 2.5.0 do not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC paddi…
|
CWE-310
Cryptographic Issues
|
CVE-2013-1623
|
2014-02-21 13:58 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258602
|
- |
|
oracle
|
jdk
jre
|
Unspecified vulnerability in Oracle Java 7 before Update 11 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors, a different vulnerability than CVE-2013…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3174
|
2014-02-21 13:52 |
2013-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258603
|
- |
|
oracle
mariadb
|
mysql
mariadb
|
sql/password.c in Oracle MySQL 5.1.x before 5.1.63, 5.5.x before 5.5.24, and 5.6.x before 5.6.6, and MariaDB 5.1.x before 5.1.62, 5.2.x before 5.2.12, 5.3.x before 5.3.6, and 5.5.x before 5.5.23, whe…
|
CWE-287
Improper Authentication
|
CVE-2012-2122
|
2014-02-21 13:50 |
2012-06-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258604
|
- |
|
redhat
rhq-project
|
jboss_operations_network
rhq
|
Multiple cross-site scripting (XSS) vulnerabilities in the administration interface in RHQ 4.2.0, as used in JBoss Operations Network (aka JON or JBoss ON) before 3.0, allow remote attackers to injec…
|
CWE-79
Cross-site Scripting
|
CVE-2011-3206
|
2014-02-21 13:44 |
2012-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258605
|
- |
|
exim
|
exim
|
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2011-1764
|
2014-02-21 13:42 |
2011-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258606
|
- |
|
pureftpd
|
pure-ftpd
|
The STARTTLS implementation in ftp_parser.c in Pure-FTPd before 1.0.30 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted FTP session…
|
CWE-399
Resource Management Errors
|
CVE-2011-1575
|
2014-02-21 13:41 |
2011-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258607
|
- |
|
apple
|
itunes
|
Buffer overflow in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes before 10.2 on Windows and other products, allows remote attackers to execute arbitrary code or cause …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0191
|
2014-02-21 13:39 |
2011-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258608
|
- |
|
apple
|
itunes
|
Buffer overflow in Fax4Decode in LibTIFF 3.9.4 and possibly other versions, as used in ImageIO in Apple iTunes before 10.2 on Windows and other products, allows remote attackers to execute arbitrary …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2011-0192
|
2014-02-21 13:39 |
2011-03-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258609
|
- |
|
collectd
|
collectd
|
The cu_rrd_create_file function (src/utils_rrdcreate.c) in collectd 4.x before 4.9.4 and before 4.10.2 allow remote attackers to cause a denial of service (assertion failure) via a packet with a time…
|
CWE-399
Resource Management Errors
|
CVE-2010-4336
|
2014-02-21 13:36 |
2010-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258610
|
- |
|
apple
|
webkit
|
WebKit does not properly restrict focus changes, which allows remote attackers to read keystrokes via "cross-domain IFRAME gadgets," a different vulnerability than CVE-2010-1126, CVE-2010-1422, and C…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2010-2441
|
2014-02-21 13:33 |
2010-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
