|
261251
|
- |
|
openstack
|
devstack
|
OpenStack devstack uses world-readable permissions for keystone.conf, which allows local users to obtain sensitive information such as the LDAP password and admin_token secret by reading the file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1977
|
2013-05-22 13:00 |
2013-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261252
|
- |
|
dentrix
|
g5
|
Henry Schein Dentrix G5 before 15.1.294 has a single internal-database password that is shared across different customers' installations, which allows remote attackers to obtain sensitive information…
|
CWE-255
Credentials Management
|
CVE-2012-4952
|
2013-05-21 13:00 |
2013-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261253
|
- |
|
windriver
|
vxworks
|
IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to cause a denial of service (daemon outage) via a crafted authentication request.
|
CWE-20
Improper Input Validation
|
CVE-2013-0711
|
2013-05-21 12:23 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261254
|
- |
|
windriver
|
vxworks
|
IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote authenticated users to cause a denial of service (daemon outage) via a crafted pty request.
|
CWE-20
Improper Input Validation
|
CVE-2013-0713
|
2013-05-21 12:23 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261255
|
- |
|
windriver
|
vxworks
|
IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to execute arbitrary code or cause a denial of service (daemon hang) via a crafted public-key authentication r…
|
CWE-20
Improper Input Validation
|
CVE-2013-0714
|
2013-05-21 12:23 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261256
|
- |
|
windriver
|
vxworks
|
The WebCLI component in Wind River VxWorks 5.5 through 6.9 allows remote authenticated users to cause a denial of service (CLI session crash) via a crafted command string.
|
CWE-20
Improper Input Validation
|
CVE-2013-0715
|
2013-05-21 12:23 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261257
|
- |
|
windriver
|
vxworks
|
The web server in Wind River VxWorks 5.5 through 6.9 allows remote attackers to cause a denial of service (daemon crash) via a crafted URI.
|
CWE-20
Improper Input Validation
|
CVE-2013-0716
|
2013-05-21 12:23 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261258
|
- |
|
siemens
|
sipass_integrated
|
AscoServer.exe in the server in Siemens SiPass integrated MP2.6 and earlier does not properly handle IOCP RPC messages received over an Ethernet network, which allows remote attackers to write data t…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5409
|
2013-05-21 12:21 |
2012-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261259
|
- |
|
rockwellautomation
|
ab_micrologix_controller
plc-5_controller
slc_500_controller
|
Rockwell Automation Allen-Bradley MicroLogix controller 1100, 1200, 1400, and 1500; SLC 500 controller platform; and PLC-5 controller platform, when Static status is not enabled, allow remote attacke…
|
CWE-16
Configuration
|
CVE-2012-4690
|
2013-05-21 12:20 |
2012-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261260
|
- |
|
siemens
|
ros
rox_i_os
rox_ii_os
ruggedmax_os
|
Siemens RuggedCom Rugged Operating System (ROS) before 3.12, ROX I OS through 1.14.5, ROX II OS through 2.3.0, and RuggedMax OS through 4.2.1.4621.22 use hardcoded private keys for SSL and SSH commun…
|
CWE-200
Information Exposure
|
CVE-2012-4698
|
2013-05-21 12:20 |
2012-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
