| Page(s) : 1 2 3 4 5 [6] 7 8 9 10 11 12 13 14 15 16 ... | Result(s) : 59426 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| 9.3 | 2013-12-07 | CVE-2013-0846 | cve | Array index error in the qdm2_decode_super_block function in libavcodec/qdm2.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted QDM2 data, ... |
| 9.3 | 2013-12-07 | CVE-2013-0845 | cve | libavcodec/alsdec.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via a crafted block length, which triggers an out-of-bounds write. |
| 9.3 | 2013-12-07 | CVE-2013-0844 | cve | Off-by-one error in the adpcm_decode_frame function in libavcodec/adpcm.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via crafted DK4 data, whic... |
| 7.5 | 2013-12-07 | CVE-2012-6612 | cve | The (1) UpdateRequestHandler for XSLT or (2) XPathEntityProcessor in Apache Solr before 4.1 allows remote attackers to have an unspecified impact via XML data containing an exte... |
| 7.5 | 2013-12-07 | CVE-2013-6410 | cve | nbd-server in Network Block Device (nbd) before 3.5 does not properly check IP addresses, which might allow remote attackers to bypass intended access restrictions via an IP add... |
| 6.2 | 2013-12-07 | CVE-2013-6409 | cve | Debian adequate before 0.8.1, when run by root with the --user option, allows local users to hijack the tty and possibly gain privileges via the TIOCSTI ioctl. |
| 6.4 | 2013-12-07 | CVE-2013-6408 | cve | The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly use the EmptyEntityResolver, which allows remote attackers to have an unspecified impact via XML... |
| 6.4 | 2013-12-07 | CVE-2013-6407 | cve | The UpdateRequestHandler for XML in Apache Solr before 4.1 allows remote attackers to have an unspecified impact via XML data containing an external entity declaration in conjun... |
| 4.3 | 2013-12-07 | CVE-2013-6397 | cve | Directory traversal vulnerability in SolrResourceLoader in Apache Solr before 4.6 allows remote attackers to read arbitrary files via a .. (dot dot) or full pathname in the tr p... |
| 4.3 | 2013-12-07 | CVE-2013-6050 | cve | Integer overflow in Links before 2.8 allows remote attackers to cause a denial of service (crash) via crafted HTML tables. |
| 3.5 | 2013-12-07 | CVE-2013-4558 | cve | The get_parent_resource function in repos.c in mod_dav_svn Apache HTTPD server module in Subversion 1.7.11 through 1.7.13 and 1.8.1 through 1.8.4, when built with assertions ena... |
| 2.6 | 2013-12-07 | CVE-2013-4505 | cve | The is_this_legal function in mod_dontdothat for Apache Subversion 1.4.0 through 1.7.13 and 1.8.0 through 1.8.4 allows remote attackers to bypass intended access restrictions an... |
| 6.8 | 2013-12-07 | CVE-2013-4479 | cve | lib/sup/message_chunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the content_type of... |
| 6.8 | 2013-12-07 | CVE-2013-4478 | cve | Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an email attachment. |
| 6.8 | 2013-12-07 | CVE-2013-4446 | cve | The _json_decode function in plugins/context_reaction_block.inc in the Context module 6.x-2.x before 6.x-3.2 and 7.x-3.x before 7.x-3.0 for Drupal, when using a version of PHP t... |
| 4.9 | 2013-12-07 | CVE-2013-4445 | cve | The json rendering functionality in the Context module 6.x-2.x before 6.x-3.2 and 7.x-3.x before 7.x-3.0 for Drupal uses Drupal's token scheme to restrict access to blocks,... |
| 6.8 | 2013-12-07 | CVE-2013-4212 | cve | Certain getText methods in the ActionSupport controller in Apache Roller before 5.0.2 allow remote attackers to execute arbitrary OGNL expressions via the first or second parame... |
| 4.3 | 2013-12-07 | CVE-2013-4171 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Apache Roller before 5.0.2 allow remote attackers to inject arbitrary web script or HTML via vectors related to the search... |
| 4.3 | 2013-12-07 | CVE-2013-6707 | cve | Memory leak in the connection-manager implementation in Cisco Adaptive Security Appliance (ASA) Software 9.1(.3) and earlier allows remote attackers to cause a denial of service... |
| 4.9 | 2013-12-07 | CVE-2013-5455 | cve | IBM SmartCloud Provisioning 2.1 before FP3 IF0001 allows remote authenticated users to modify virtual-system deployment via deployer.virtualsystems CLI commands, as demonstrated... |
| Page(s) : 1 2 3 4 5 [6] 7 8 9 10 11 12 13 14 15 16 ... | Result(s) : 59426 |
