259241
|
- |
|
redhat
|
enterprise_virtualization_hypervisor
|
libspice, as used in QEMU-KVM in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H or rhev-hypervisor) before 5.5-2.2 and possibly other products, allows guest OS users to read from or write t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2010-0430
|
2013-12-28 00:20 |
2013-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259242
|
- |
|
novatech
|
orion5_dnp_master orion5_dnp_slave orion5r_dnp_master orion5r_dnp_slave orionlx_dnp_master orionlx_dnp_slave
|
NovaTech Orion Substation Automation Platform OrionLX DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier and Orion5/Orion5r DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier allow remote attacke…
|
CWE-20
Improper Input Validation
|
CVE-2013-2821
|
2013-12-27 01:44 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259243
|
- |
|
novatech
|
orion5_dnp_master orion5_dnp_slave orion5r_dnp_master orion5r_dnp_slave orionlx_dnp_master orionlx_dnp_slave
|
NovaTech Orion Substation Automation Platform OrionLX DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier and Orion5/Orion5r DNP Master 1.27.38 and DNP Slave 1.23.10 and earlier allow physically pro…
|
CWE-20
Improper Input Validation
|
CVE-2013-2822
|
2013-12-27 01:43 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259244
|
- |
|
redhat
|
jboss_operations_network
|
Red Hat JBoss Operations Network 3.1.2 uses world-readable permissions for the (1) server and (2) agent configuration files, which allows local users to obtain authentication credentials and other un…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4452
|
2013-12-27 00:50 |
2013-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259245
|
- |
|
optimizepress
|
optimizepress
|
Multiple unrestricted file upload vulnerabilities in (1) media-upload.php, (2) media-upload-lncthumb.php, and (3) media-upload-sq_button.php in lib/admin/ in the OptimizePress theme before 1.61 for W…
|
CWE-20
Improper Input Validation
|
CVE-2013-7102
|
2013-12-25 07:07 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259246
|
- |
|
debian fedoraproject phil_schwartz
|
debian_linux fedora denyhosts
|
denyhosts 2.6 uses an incorrect regular expression when analyzing authentication logs, which allows remote attackers to cause a denial of service (incorrect block of IP addresses) via crafted login n…
|
CWE-287
Improper Authentication
|
CVE-2013-6890
|
2013-12-25 02:16 |
2013-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259247
|
- |
|
novell
|
client
|
The VBA32 AntiRootKit component for Novell Client 2 SP3 before IR5 on Windows allows local users to cause a denial of service (bugcheck and BSOD) via an IOCTL call for an invalid IOCTL.
|
CWE-20
Improper Input Validation
|
CVE-2013-3705
|
2013-12-24 07:29 |
2013-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259248
|
- |
|
cisco
|
nx-os
|
Directory traversal vulnerability in filesys in Cisco NX-OS 6.1(2) and earlier allows local users to access arbitrary files via crafted command-line arguments during a delete action, aka Bug IDs CSCt…
|
CWE-22
Path Traversal
|
CVE-2012-4135
|
2013-12-24 02:15 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259249
|
- |
|
cisco
|
nx-os
|
Directory traversal vulnerability in tar in Cisco NX-OS allows local users to access arbitrary files via crafted command-line arguments, aka Bug IDs CSCty07157, CSCty07159, CSCty07162, and CSCty07164.
|
CWE-22
Path Traversal
|
CVE-2012-4131
|
2013-12-24 01:09 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
259250
|
- |
|
idleman
|
leed
|
Multiple cross-site request forgery (CSRF) vulnerabilities in action.php in Leed (Light Feed), possibly before 1.5 Stable, allow remote attackers to hijack the authentication of administrators for un…
|
CWE-352
Origin Validation Error
|
CVE-2013-2628
|
2013-12-24 00:28 |
2013-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|