# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
501 |
CVE-2013-2190 |
264 |
|
|
2013-10-17 |
2018-10-30 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
The translate_hierarchy_event function in x11/clutter-device-manager-xi2.c in Clutter, when resuming the system, does not properly handle XIQueryDevice errors when a device has "disappeared," which causes the gnome-shell to crash and allows physically proximate attackers to access the previous gnome-shell session via unspecified vectors. |
502 |
CVE-2013-2186 |
20 |
|
|
2013-10-28 |
2018-01-09 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
The DiskFileItem class in Apache Commons FileUpload, as used in Red Hat JBoss BRMS 5.3.1; JBoss Portal 4.3 CP07, 5.2.2, and 6.0.0; and Red Hat JBoss Web Server 1.0.2 allows remote attackers to write to arbitrary files via a NULL byte in a file name in a serialized instance. |
503 |
CVE-2013-2138 |
20 |
|
|
2013-10-10 |
2013-10-10 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
The (1) uploadify and (2) flowplayer SWF files in Gallery 3 before 3.0.8 do not properly remove query parameters and fragments, which allows remote attackers to have an unspecified impact via a replay attack. |
504 |
CVE-2013-2102 |
287 |
|
+Info |
2013-10-28 |
2013-10-30 |
3.3 |
None |
Local Network |
Low |
Not required |
Partial |
None |
None |
The default configuration of Red Hat JBoss Portal before 6.1.0 enables the JGroups diagnostics service with no authentication when a JGroups channel is started, which allows remote attackers to obtain sensitive information (diagnostics) by accessing the service. |
505 |
CVE-2013-2099 |
399 |
|
DoS |
2013-10-09 |
2016-06-09 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
Algorithmic complexity vulnerability in the ssl.match_hostname function in Python 3.2.x, 3.3.x, and earlier, and unspecified versions of python-backports-ssl_match_hostname as used for older Python versions, allows remote attackers to cause a denial of service (CPU consumption) via multiple wildcard characters in the common name in a certificate. |
506 |
CVE-2013-2013 |
200 |
|
+Info |
2013-10-01 |
2017-09-19 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
The user-password-update command in python-keystoneclient before 0.2.4 accepts the new password in the --password argument, which allows local users to obtain sensitive information by listing the process. |
507 |
CVE-2013-1892 |
20 |
2
|
DoS Exec Code |
2013-10-01 |
2013-12-01 |
6.0 |
None |
Remote |
Medium |
??? |
Partial |
Partial |
Partial |
MongoDB before 2.0.9 and 2.2.x before 2.2.4 does not properly validate requests to the nativeHelper function in SpiderMonkey, which allows remote authenticated users to cause a denial of service (invalid memory access and server crash) or execute arbitrary code via a crafted memory address in the first argument. |
508 |
CVE-2013-1881 |
20 |
|
|
2013-10-10 |
2016-12-08 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
GNOME libsvg before 2.39.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. |
509 |
CVE-2013-1743 |
79 |
|
XSS |
2013-10-24 |
2013-10-24 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Multiple cross-site scripting (XSS) vulnerabilities in report.cgi in Bugzilla 4.1.x and 4.2.x before 4.2.7 and 4.3.x and 4.4.x before 4.4.1 allow remote attackers to inject arbitrary web script or HTML via a field value that is not properly handled during construction of a tabular report, as demonstrated by the (1) summary or (2) real name field. NOTE: this issue exists because of an incomplete fix for CVE-2012-4189. |
510 |
CVE-2013-1742 |
79 |
|
XSS |
2013-10-24 |
2013-10-24 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Multiple cross-site scripting (XSS) vulnerabilities in editflagtypes.cgi in Bugzilla 2.x, 3.x, and 4.0.x before 4.0.11; 4.1.x and 4.2.x before 4.2.7; and 4.3.x and 4.4.x before 4.4.1 allow remote attackers to inject arbitrary web script or HTML via the (1) id or (2) sortkey parameter. |
511 |
CVE-2013-1739 |
|
|
DoS |
2013-10-22 |
2018-10-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
Mozilla Network Security Services (NSS) before 3.15.2 does not ensure that data structures are initialized before read operations, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger a decryption failure. |
512 |
CVE-2013-1734 |
352 |
|
CSRF |
2013-10-24 |
2013-10-24 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Cross-site request forgery (CSRF) vulnerability in attachment.cgi in Bugzilla 2.x, 3.x, and 4.0.x before 4.0.11; 4.1.x and 4.2.x before 4.2.7; and 4.3.x and 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that commit an attachment change via an update action. |
513 |
CVE-2013-1733 |
352 |
|
CSRF |
2013-10-24 |
2013-10-24 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Cross-site request forgery (CSRF) vulnerability in process_bug.cgi in Bugzilla 4.4.x before 4.4.1 allows remote attackers to hijack the authentication of arbitrary users for requests that modify bugs via vectors involving a midair-collision token. |
514 |
CVE-2013-1445 |
310 |
|
+Info |
2013-10-26 |
2013-10-28 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
The Crypto.Random.atfork function in PyCrypto before 2.6.1 does not properly reseed the pseudo-random number generator (PRNG) before allowing a child process to access it, which makes it easier for context-dependent attackers to obtain sensitive information by leveraging a race condition in which a child process is created and accesses the PRNG within the same rate-limit period as another process. |
515 |
CVE-2013-1067 |
264 |
|
+Info |
2013-10-25 |
2013-10-28 |
4.9 |
None |
Local |
Low |
Not required |
Complete |
None |
None |
Apport 2.12.5 and earlier uses weak permissions for core dump files created by setuid binaries, which allows local users to obtain sensitive information by reading the file. |
516 |
CVE-2013-1066 |
264 |
|
Bypass |
2013-10-03 |
2017-08-29 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
language-selector 0.110.x before 0.110.1, 0.90.x before 0.90.1, and 0.79.x before 0.79.4 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288. |
517 |
CVE-2013-1065 |
264 |
|
Bypass |
2013-10-03 |
2013-10-04 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
backend.py in Jockey before 0.9.7-0ubuntu7.11 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288. |
518 |
CVE-2013-1064 |
264 |
|
Bypass |
2013-10-03 |
2019-07-18 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
apt-xapian-index before 0.45ubuntu2.1, 0.44ubuntu7.1, and 0.44ubuntu5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288. |
519 |
CVE-2013-1063 |
264 |
|
Bypass |
2013-10-03 |
2013-10-04 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
usb-creator 0.2.47 before 0.2.47.1, 0.2.40 before 0.2.40ubuntu2, and 0.2.38 before 0.2.38.2 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288. |
520 |
CVE-2013-1062 |
264 |
|
Bypass |
2013-10-03 |
2013-10-08 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
ubuntu-system-service 0.2.4 before 0.2.4.1. 0.2.3 before 0.2.3.1, and 0.2.2 before 0.2.2.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288. |
521 |
CVE-2013-1061 |
264 |
|
Bypass |
2013-10-03 |
2017-08-29 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
dbus/SoftwarePropertiesDBus.py in Software Properties 0.92.17 before 0.92.17.3, 0.92.9 before 0.92.9.3, and 0.82.7 before 0.82.7.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race condition via a (1) setuid process or (2) pkexec process, a related issue to CVE-2013-4288. |
522 |
CVE-2013-1056 |
|
|
DoS +Priv |
2013-10-28 |
2013-10-29 |
1.9 |
None |
Local |
Medium |
Not required |
None |
None |
Partial |
X.org X server 1.13.3 and earlier, when not run as root, allows local users to cause a denial of service (crash) or possibly gain privileges via vectors involving cached xkb files. |
523 |
CVE-2013-0742 |
119 |
1
|
DoS Exec Code Overflow |
2013-10-03 |
2013-10-07 |
9.3 |
None |
Remote |
Medium |
Not required |
Complete |
Complete |
Complete |
Stack-based buffer overflow in Corel PDF Fusion 1.11 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long ZIP directory entry name in an XPS file. |
524 |
CVE-2013-0736 |
352 |
|
XSS CSRF |
2013-10-09 |
2013-10-10 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Multiple cross-site request forgery (CSRF) vulnerabilities in the Mingle Forum plugin 1.0.34 and possibly earlier for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1) modify user privileges or (2) conduct cross-site scripting (XSS) attacks via unspecified vectors. |
525 |
CVE-2013-0694 |
255 |
|
|
2013-10-03 |
2013-10-03 |
9.0 |
None |
Remote |
Low |
??? |
Complete |
Complete |
Complete |
The Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier have hardcoded credentials in a ROM, which makes it easier for remote attackers to obtain shell access to the underlying OS by leveraging knowledge of the ROM contents from a product installation elsewhere. |
526 |
CVE-2013-0693 |
200 |
|
+Info |
2013-10-03 |
2013-10-03 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier performs network-beacon broadcasts, which allows remote attackers to obtain potentially sensitive information about device presence by listening for broadcast traffic. |
527 |
CVE-2013-0692 |
264 |
|
Exec Code |
2013-10-03 |
2013-10-03 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
The kernel in ENEA OSE on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows remote attackers to execute arbitrary code by connecting to the debug service. |
528 |
CVE-2013-0689 |
94 |
|
Exec Code |
2013-10-03 |
2013-10-03 |
10.0 |
None |
Remote |
Low |
Not required |
Complete |
Complete |
Complete |
The TFTP server on the Emerson Process Management ROC800 RTU with software 3.50 and earlier, DL8000 RTU with software 2.30 and earlier, and ROC800L RTU with software 1.20 and earlier allows remote attackers to upload files and consequently execute arbitrary code via unspecified vectors. |
529 |
CVE-2013-0580 |
352 |
|
CSRF |
2013-10-10 |
2017-08-29 |
4.9 |
None |
Local Network |
Medium |
??? |
Partial |
Partial |
Partial |
Cross-site request forgery (CSRF) vulnerability in the Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote authenticated users to hijack the authentication of arbitrary users. |
530 |
CVE-2013-0579 |
264 |
|
|
2013-10-10 |
2017-08-29 |
4.3 |
None |
Local Network |
Medium |
Not required |
Partial |
Partial |
None |
The Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote attackers to impersonate arbitrary users by leveraging access to a legitimate user's web browser either (1) before or (2) after authentication. |
531 |
CVE-2013-0577 |
264 |
|
Bypass |
2013-10-10 |
2017-08-29 |
5.2 |
None |
Local Network |
Low |
??? |
Partial |
Partial |
Partial |
The Optim E-Business Console in IBM Data Growth Solution for Oracle E-business Suite 6.0 through 9.1 allows remote authenticated users to bypass intended access restrictions and create, modify, or delete documents or scripts via unspecified vectors. |
532 |
CVE-2013-0500 |
20 |
|
DoS +Info |
2013-10-17 |
2017-08-29 |
5.4 |
None |
Remote |
Medium |
??? |
Partial |
Partial |
Partial |
IBM Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.2.0 does not properly handle device files that are created with the NFS protocol but accessed with a non-NFS protocol, which allows remote authenticated users to obtain sensitive information, modify programs or files, or cause a denial of service (device crash) via a (1) CIFS, (2) HTTPS, (3) SCP, or (4) SFTP operation. |
533 |
CVE-2013-0451 |
89 |
|
Exec Code Sql |
2013-10-01 |
2017-08-29 |
6.5 |
None |
Remote |
Low |
??? |
Partial |
Partial |
Partial |
SQL injection vulnerability in IBM Maximo Asset Management 6.2 through 6.2.8 and 7.1 through 7.1.1.12 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. |
534 |
CVE-2013-0337 |
264 |
|
+Info |
2013-10-27 |
2021-11-10 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
The default configuration of nginx, possibly 1.3.13 and earlier, uses world-readable permissions for the (1) access.log and (2) error.log files, which allows local users to obtain sensitive information by reading the files. |
535 |
CVE-2012-6303 |
119 |
1
|
DoS Exec Code Overflow |
2013-10-28 |
2018-10-30 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large chunk size in a WAV file. |
536 |
CVE-2012-5627 |
522 |
|
Exec Code |
2013-10-01 |
2022-05-18 |
4.0 |
None |
Remote |
Low |
??? |
Partial |
None |
None |
Oracle MySQL and MariaDB 5.5.x before 5.5.29, 5.3.x before 5.3.12, and 5.2.x before 5.2.14 does not modify the salt during multiple executions of the change_user command within the same connection which makes it easier for remote authenticated users to conduct brute force password guessing attacks. |
537 |
CVE-2012-4709 |
119 |
|
DoS Overflow |
2013-10-13 |
2013-10-15 |
6.9 |
None |
Local |
Medium |
Not required |
Complete |
Complete |
Complete |
Invensys Wonderware InTouch HMI 2012 R2 and earlier allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. |
538 |
CVE-2012-4572 |
264 |
|
|
2013-10-28 |
2013-10-30 |
3.7 |
None |
Local |
High |
Not required |
Partial |
Partial |
Partial |
Red Hat JBoss Enterprise Application Platform (EAP) before 6.1.0 and JBoss Portal before 6.1.0 does not load the implementation of a custom authorization module for a new application when an implementation is already loaded and the modules share class names, which allows local users to control certain applications' authorization decisions via a crafted application. |
539 |
CVE-2012-4529 |
|
|
|
2013-10-28 |
2013-10-30 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and earlier, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of a session, which allows remote attackers to obtain the session id (1) via a man-in-the-middle attack or (2) by reading a log. |
540 |
CVE-2012-4424 |
119 |
|
DoS Exec Code Overflow |
2013-10-09 |
2017-07-01 |
5.1 |
None |
Remote |
High |
Not required |
Partial |
Partial |
Partial |
Stack-based buffer overflow in string/strcoll_l.c in the GNU C Library (aka glibc or libc6) 2.17 and earlier allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string that triggers a malloc failure and use of the alloca function. |
541 |
CVE-2012-4412 |
189 |
|
DoS Exec Code Overflow |
2013-10-09 |
2019-06-13 |
7.5 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
Partial |
Integer overflow in string/strcoll_l.c in the GNU C Library (aka glibc or libc6) 2.17 and earlier allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string, which triggers a heap-based buffer overflow. |
542 |
CVE-2012-4141 |
264 |
|
Dir. Trav. |
2013-10-05 |
2016-09-22 |
6.2 |
None |
Local |
Low |
??? |
Complete |
Complete |
None |
Directory traversal vulnerability in the CLI parser in Cisco NX-OS allows local users to create arbitrary script files via a relative pathname in the "file name" parameter, aka Bug IDs CSCua71557 and CSCua71551. |
543 |
CVE-2012-4136 |
264 |
|
DoS +Info |
2013-10-03 |
2016-09-22 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The high-availability service in the Fabric Interconnect component in Cisco Unified Computing System (UCS) does not properly bind the cluster service to the management interface, which allows remote attackers to obtain sensitive information or cause a denial of service (peer-syncing outage) via a TELNET connection, aka Bug ID CSCtz72910. |
544 |
CVE-2012-4122 |
20 |
|
Bypass |
2013-10-05 |
2017-08-29 |
6.2 |
None |
Local |
Low |
??? |
None |
Complete |
Complete |
The CLI parser in Cisco NX-OS allows local users to bypass intended access restrictions, and overwrite or create arbitrary files, via shell output redirection, aka Bug IDs CSCts56672 and CSCts56669. |
545 |
CVE-2012-4121 |
264 |
|
+Priv |
2013-10-14 |
2013-10-16 |
6.8 |
None |
Local |
Low |
??? |
Complete |
Complete |
Complete |
Cisco NX-OS allows local users to gain privileges, and read or modify arbitrary files, via the sed (1) r and (2) w commands, aka Bug IDs CSCts56559, CSCts56565, CSCts56570, and CSCts56574. |
546 |
CVE-2012-4117 |
20 |
|
|
2013-10-19 |
2013-10-21 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
The fabric-interconnect component in Cisco Unified Computing System (UCS) does not properly verify X.509 certificates, which allows man-in-the-middle attackers to watch SSL KVM video-channel traffic or modify this traffic via a crafted certificate, aka Bug ID CSCtr73033. |
547 |
CVE-2012-4116 |
200 |
|
+Info |
2013-10-19 |
2013-10-21 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
The fabric-interconnect component in Cisco Unified Computing System (UCS) does not encrypt KVM media traffic, which allows remote attackers to obtain sensitive information, and consequently complete the authentication process for a server connection, by sniffing the network, aka Bug ID CSCtr72970. |
548 |
CVE-2012-4115 |
310 |
|
+Info |
2013-10-21 |
2013-10-21 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
The fabric-interconnect component in Cisco Unified Computing System (UCS) does not encrypt KVM virtual-media data, which allows man-in-the-middle attackers to obtain sensitive information by sniffing the network or modify this traffic by inserting packets into the client-server data stream, aka Bug ID CSCtr72964. |
549 |
CVE-2012-4114 |
310 |
|
|
2013-10-19 |
2013-10-21 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
The fabric-interconnect KVM module in Cisco Unified Computing System (UCS) does not encrypt video data, which allows man-in-the-middle attackers to watch KVM display content by sniffing the network or modify this traffic by inserting packets into the client-server data stream, aka Bug ID CSCtr72949. |
550 |
CVE-2012-4113 |
264 |
|
+Priv |
2013-10-19 |
2013-10-21 |
4.6 |
None |
Local |
Low |
??? |
Complete |
None |
None |
The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges and read arbitrary files via crafted command parameters within the command-line interface, aka Bug ID CSCtr43374. |