260871
|
- |
|
parallels
|
parallels_plesk_panel
|
The suexec implementation in Parallels Plesk Panel 11.0.9 contains a cgi-wrapper whitelist entry, which allows user-assisted remote attackers to execute arbitrary PHP code via a request containing cr…
|
CWE-94
Code Injection
|
CVE-2013-0132
|
2013-04-19 13:00 |
2013-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260872
|
- |
|
parallels
|
parallels_plesk_panel
|
Untrusted search path vulnerability in /usr/local/psa/admin/sbin/wrapper in Parallels Plesk Panel 11.0.9 allows local users to gain privileges via a crafted PATH environment variable.
|
NVD-CWE-Other
|
CVE-2013-0133
|
2013-04-19 13:00 |
2013-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260873
|
- |
|
parallels
|
parallels_plesk_panel
|
Per: http://cwe.mitre.org/data/definitions/426.html
'CWE-426: Untrusted Search Path'
|
NVD-CWE-Other
|
CVE-2013-0133
|
2013-04-19 13:00 |
2013-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260874
|
- |
|
arecont
|
vision_av1355dn_megadome_camera
|
The Arecont Vision AV1355DN MegaDome camera allows remote attackers to cause a denial of service (video-capture outage) via a packet to UDP port 69.
|
NVD-CWE-noinfo
|
CVE-2013-0139
|
2013-04-19 13:00 |
2013-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260875
|
- |
|
cisco
|
telepresence_mcu_4500_series_software telepresence_mcu_4505 telepresence_mcu_4510 telepresence_mcu_4515 telepresence_mcu_4520 telepresence_mcu_4501_series_software telepresence_mcu_…
|
The DSP card on Cisco TelePresence MCU 4500 and 4501 devices before 4.3(2.30), TelePresence MCU MSE 8510 devices before 4.3(2.30), and TelePresence Server before 2.3(1.55) does not properly validate …
|
CWE-20
Improper Input Validation
|
CVE-2013-1176
|
2013-04-19 13:00 |
2013-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260876
|
- |
|
cisco
|
telepresence_mcu_4500_series_software telepresence_mcu_4505 telepresence_mcu_4510 telepresence_mcu_4515 telepresence_mcu_4520 telepresence_mcu_4501_series_software telepresence_mcu_…
|
Per: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130417-tpi
'Vulnerable Products
The following Cisco TelePresence Infrastructure products are affected by this …
|
CWE-20
Improper Input Validation
|
CVE-2013-1176
|
2013-04-19 13:00 |
2013-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260877
|
- |
|
cisco
|
network_admission_control_manager_and_server_system_software
|
SQL injection vulnerability in Cisco Network Admission Control (NAC) Manager before 4.8.3.1 and 4.9.x before 4.9.2 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a…
|
CWE-89
SQL Injection
|
CVE-2013-1177
|
2013-04-19 13:00 |
2013-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260878
|
- |
|
digium
|
asterisk certified_asterisk
|
channels/chan_iax2.c in Asterisk Open Source 1.8.x before 1.8.15.1 and 10.x before 10.7.1, Certified Asterisk 1.8.11 before 1.8.11-cert7, Asterisk Digiumphones 10.x.x-digiumphones before 10.7.1-digiu…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4737
|
2013-04-19 12:25 |
2012-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260879
|
- |
|
digium
|
asterisk asteriske certified_asterisk
|
Double free vulnerability in apps/app_voicemail.c in Asterisk Open Source 1.8.x before 1.8.13.1 and 10.x before 10.5.2, Certified Asterisk 1.8.11-certx before 1.8.11-cert4, and Asterisk Digiumphones …
|
CWE-399
Resource Management Errors
|
CVE-2012-3812
|
2013-04-19 12:24 |
2012-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260880
|
- |
|
adobe
|
photoshop_cs6
|
Buffer overflow in Adobe Photoshop CS6 13.x before 13.0.1 allows remote attackers to execute arbitrary code via a crafted file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4170
|
2013-04-19 12:24 |
2012-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|