|
258931
|
- |
|
microsoft
|
enhanced_mitigation_experience_toolkit
|
Microsoft Enhanced Mitigation Experience Toolkit (EMET) before 4.0 uses predictable addresses for hooked functions, which makes it easier for context-dependent attackers to defeat the ASLR protection…
|
CWE-200
Information Exposure
|
CVE-2013-6791
|
2013-12-13 14:22 |
2013-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258932
|
- |
|
cybozu
|
garoon
|
Cross-site scripting (XSS) vulnerability in the Space function in Cybozu Garoon before 3.7.0, when Firefox is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vect…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6901
|
2013-12-13 14:22 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258933
|
- |
|
cybozu
|
garoon
|
Cross-site scripting (XSS) vulnerability in a mail component in Cybozu Garoon before 3.7.0, when Internet Explorer 6 through 8 is used, allows remote attackers to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2013-6906
|
2013-12-13 14:22 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258934
|
- |
|
cybozu
|
garoon
|
Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu Garoon before 3.7.2, when Internet Explorer 6 through 9 is used, allows remote authenticated users to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6912
|
2013-12-13 14:22 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258935
|
- |
|
cybozu
|
garoon
|
Cross-site scripting (XSS) vulnerability in the Yahoo! User Interface Library in Cybozu Garoon before 3.7.2, when Internet Explorer 9 or 10 or Chrome is used, allows remote attackers to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6916
|
2013-12-13 14:22 |
2013-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258936
|
- |
|
nowsms
|
now_sms_\&_mms_gateway
|
The Multimedia Messaging Centre (MMSC) in NowSMS Now SMS & MMS Gateway 2013.09.26 allows remote attackers to cause a denial of service via a malformed message to a MM4 connection.
|
CWE-20
Improper Input Validation
|
CVE-2013-7000
|
2013-12-13 14:22 |
2013-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258937
|
- |
|
nowsms
|
now_sms_\&_mms_gateway
|
The Multimedia Messaging Centre (MMSC) in NowSMS Now SMS & MMS Gateway before 2013.11.15 allows remote attackers to cause a denial of service via a malformed MM1 message that is routed to a (1) MM4 o…
|
CWE-20
Improper Input Validation
|
CVE-2013-7001
|
2013-12-13 14:22 |
2013-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258938
|
- |
|
baramundi
|
management_suite
|
The OS deployment feature in Baramundi Management Suite 7.5 through 8.9 stores credentials in cleartext on deployed machines, which allows remote attackers to obtain sensitive information by reading …
|
CWE-310
Cryptographic Issues
|
CVE-2013-3624
|
2013-12-13 14:18 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258939
|
- |
|
autotrace_project
|
autotrace
|
Integer underflow in the input_bmp_reader function in input-bmp.c in AutoTrace 0.31.1 allows context-dependent attackers to have an unspecified impact via a small value in the biSize field in the hea…
|
CWE-189
Numeric Errors
|
CVE-2013-1953
|
2013-12-13 14:14 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258940
|
- |
|
novell
|
zenworks_configuration_management
|
The web server in Novell ZENworks Configuration Management (ZCM) 10.3 and 11.2 before 11.2.4 does not properly perform authentication for zenworks/jsp/index.jsp, which allows remote attackers to cond…
|
CWE-287
Improper Authentication
|
CVE-2013-1080
|
2013-12-13 14:12 |
2013-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
