|
259541
|
- |
|
x
xkeyboard_config_project
|
x.org_x11
xkeyboard-config
|
xkeyboard-config before 2.5 in X.Org before 7.6 enables certain XKB debugging functions by default, which allows physically proximate attackers to bypass an X screen lock via keyboard combinations th…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0064
|
2014-02-12 04:56 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259542
|
- |
|
symantec
|
web_gateway
|
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance before 5.2 allow remote authenticated users to execute arbitrary SQL commands via unspecif…
|
CWE-89
SQL Injection
|
CVE-2013-5012
|
2014-02-12 00:22 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259543
|
- |
|
schneider-electric
|
telvent_sage_3030_firmware
|
The Schneider Electric Telvent SAGE 3030 RTU with firmware C3413-500-001D3_P4 and C3413-500-001F0_PB allows remote attackers to cause a denial of service (temporary outage and CPU consumption) via ma…
|
CWE-399
CWE-20
Resource Management Errors
Improper Input Validation
|
CVE-2013-6143
|
2014-02-11 05:06 |
2014-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259544
|
- |
|
schneider-electric
|
telvent_sage_3030_firmware
|
Vendor advisory:
https://infrastructurecommunity.schneider-electric.com/servlet/JiveServlet/downloadBody/2966-102-1-4299/SAGE%20RTU%20DNP%20Security%20Bulletin%20123013%200102.pdf
|
CWE-399
CWE-20
Resource Management Errors
Improper Input Validation
|
CVE-2013-6143
|
2014-02-11 05:06 |
2014-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259545
|
- |
|
ubuntu_developers
|
obby
|
obby (aka libobby) does not verify SSL server certificates, which allows remote attackers to spoof servers via an arbitrary certificate.
|
CWE-20
Improper Input Validation
|
CVE-2011-4092
|
2014-02-11 04:45 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259546
|
- |
|
perl
|
perl
|
The Perl_reg_numbered_buff_fetch function in Perl 5.10.0, 5.12.0, 5.14.0, and other versions, when running with debugging enabled, allows context-dependent attackers to cause a denial of service (ass…
|
CWE-20
Improper Input Validation
|
CVE-2010-4777
|
2014-02-11 03:39 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259547
|
- |
|
light_speed_gaming
|
mumble
mumblekit
|
The (1) opus_packet_get_nb_frames and (2) opus_packet_get_samples_per_frame functions in the client in MumbleKit before commit fd190328a9b24d37382b269a5674b0c0c7a7e36d and Mumble for iOS 1.1 through …
|
CWE-399
Resource Management Errors
|
CVE-2014-1916
|
2014-02-11 02:26 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259548
|
- |
|
roundcube
|
webmail
|
Absolute path traversal vulnerability in steps/mail/sendmail.inc in Roundcube Webmail before 0.7.3 and 0.8.x before 0.8.6 allows remote attackers to read arbitrary files via a full pathname in the _v…
|
CWE-22
Path Traversal
|
CVE-2013-1904
|
2014-02-11 00:44 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259549
|
- |
|
gajim
|
gajim
|
The _ssl_verify_callback function in tls_nb.py in Gajim before 0.15.3 does not properly verify SSL certificates, which allows remote attackers to conduct man-in-the-middle (MITM) attacks and spoof se…
|
CWE-20
Improper Input Validation
|
CVE-2012-5524
|
2014-02-11 00:16 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259550
|
- |
|
libcap
|
libcap
|
The capsh program in libcap before 2.22 does not change the current working directory when the --chroot option is specified, which allows local users to bypass the chroot restrictions via unspecified…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2011-4099
|
2014-02-11 00:09 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
