259071
|
- |
|
thecus
|
n8800_nas_server_firmware n8800_nas_server
|
The Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to execute arbitrary commands via a get_userid action with shell metacharacters in the username parameter.
|
CWE-78
OS Command
|
CVE-2013-5667
|
2014-01-25 01:23 |
2014-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259072
|
- |
|
spice_project canonical
|
spice ubuntu_linux
|
The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attack…
|
CWE-399
Resource Management Errors
|
CVE-2013-4130
|
2014-01-24 13:35 |
2013-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259073
|
- |
|
djvulibre_project
|
djvulibre
|
DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a…
|
CWE-94
Code Injection
|
CVE-2012-6535
|
2014-01-24 13:30 |
2013-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259074
|
- |
|
augeas
|
augeas
|
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augsave file in a backup …
|
CWE-22
Path Traversal
|
CVE-2012-6607
|
2014-01-24 13:30 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259075
|
- |
|
augeas
|
augeas
|
The transform_save function in transform.c in Augeas before 1.0.0 allows local users to overwrite arbitrary files and obtain sensitive information via a symlink attack on a .augnew file.
|
CWE-59
Link Following
|
CVE-2012-0786
|
2014-01-24 13:24 |
2013-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259076
|
- |
|
juniper
|
junos junose screenos
|
The OSPF implementation in Juniper Junos through 13.x, JunosE, and ScreenOS through 6.3.x does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets…
|
NVD-CWE-Other
|
CVE-2013-7313
|
2014-01-24 05:26 |
2014-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259077
|
- |
|
juniper
|
junos junose screenos
|
Per: http://cwe.mitre.org/data/definitions/694.html
"CWE-694: Use of Multiple Resources with Duplicate Identifier"
|
NVD-CWE-Other
|
CVE-2013-7313
|
2014-01-24 05:26 |
2014-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259078
|
- |
|
nec
|
ip38x_1000 ip38x_105 ip38x_107e ip38x_1100 ip38x_1200 ip38x_140 ip38x_1500 ip38x_2000 ip38x_250i ip38x_300 ip38x_3000 ip38x_810
|
The OSPF implementation on NEC IP38X, IX1000, IX2000, and IX3000 routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performin…
|
NVD-CWE-Other
|
CVE-2013-7314
|
2014-01-24 04:54 |
2014-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259079
|
- |
|
nec
|
ip38x_1000 ip38x_105 ip38x_107e ip38x_1100 ip38x_1200 ip38x_140 ip38x_1500 ip38x_2000 ip38x_250i ip38x_300 ip38x_3000 ip38x_810
|
Per: http://cwe.mitre.org/data/definitions/694.html "CWE-694: Use of Multiple Resources with Duplicate Identifier"
|
NVD-CWE-Other
|
CVE-2013-7314
|
2014-01-24 04:54 |
2014-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259080
|
- |
|
enterasys
|
c5 g3 k10 k6 s130 s140 s150 s155 s180
|
The OSPF implementation on Enterasys switches and routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on…
|
NVD-CWE-Other
|
CVE-2013-7312
|
2014-01-24 04:49 |
2014-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|