| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
11451 |
CVE-2013-4431 |
264 |
|
|
2014-05-19 |
2014-05-19 |
5.5 |
None |
Remote |
Low |
Single system |
None |
Partial |
Partial |
|
Mahara before 1.5.12, 1.6.x before 1.6.7, and 1.7.x before 1.7.3 does not properly prevent access to blocks, which allows remote authenticated users to modify arbitrary blocks via the bock id in an edit request. |
|
11452 |
CVE-2013-4421 |
189 |
|
DoS |
2013-10-25 |
2018-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
The buf_decompress function in packet.c in Dropbear SSH Server before 2013.59 allows remote attackers to cause a denial of service (memory consumption) via a compressed packet that has a large size when it is decompressed. |
|
11453 |
CVE-2013-4420 |
22 |
|
Dir. Trav. |
2014-02-20 |
2014-02-20 |
5.8 |
None |
Remote |
Medium |
Not required |
None |
Partial |
Partial |
|
Multiple directory traversal vulnerabilities in the (1) tar_extract_glob and (2) tar_extract_all functions in libtar 1.2.20 and earlier allow remote attackers to overwrite arbitrary files via a .. (dot dot) in a crafted tar file. |
|
11454 |
CVE-2013-4416 |
119 |
|
DoS Overflow |
2013-11-02 |
2017-01-06 |
5.2 |
None |
Local Network |
Medium |
Single system |
None |
None |
Complete |
|
The Ocaml xenstored implementation (oxenstored) in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service (domain shutdown) via a large message reply. |
|
11455 |
CVE-2013-4413 |
22 |
|
Dir. Trav. |
2014-03-11 |
2017-08-28 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Directory traversal vulnerability in controller/concerns/render_redirect.rb in the Wicked gem before 1.0.1 for Ruby allows remote attackers to read arbitrary files via a %2E%2E%2F (encoded dot dot slash) in the step. |
|
11456 |
CVE-2013-4406 |
264 |
|
+Info |
2014-05-19 |
2014-05-19 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The Quick Tabs module 6.x-2.x before 6.x-2.2, 6.x-3.x before 6.x-3.2, and 7.x-3.x before 7.x-3.6 for Drupal does not properly check block permissions, which allows remote attackers to obtain sensitive information by reading a Quick Tab. |
|
11457 |
CVE-2013-4402 |
20 |
|
DoS |
2013-10-28 |
2014-01-03 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
The compressed packet parser in GnuPG 1.4.x before 1.4.15 and 2.0.x before 2.0.22 allows remote attackers to cause a denial of service (infinite recursion) via a crafted OpenPGP message. |
|
11458 |
CVE-2013-4394 |
264 |
|
+Priv |
2013-10-28 |
2017-06-30 |
5.9 |
None |
Local |
High |
Not required |
Complete |
Complete |
Partial |
|
The SetX11Keyboard function in systemd, when PolicyKit Local Authority (PKLA) is used to change the group permissions on the X Keyboard Extension (XKB) layouts description, allows local users in the group to modify the Xorg X11 Server configuration file and possibly gain privileges via vectors involving "special and control characters." |
|
11459 |
CVE-2013-4390 |
20 |
|
XSS |
2013-10-23 |
2013-10-25 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
Open redirect vulnerability in the AbstractAuthenticationFormServlet in the Auth Core (org.apache.sling.auth.core) bundle before 1.1.4 in Apache Sling allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the resource parameter, related to "a custom login form and XSS." |
|
11460 |
CVE-2013-4365 |
119 |
|
Overflow |
2013-10-17 |
2016-12-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Heap-based buffer overflow in the fcgid_header_bucket_read function in fcgid_bucket.c in the mod_fcgid module before 2.3.9 for the Apache HTTP Server allows remote attackers to have an unspecified impact via unknown vectors. |
|
11461 |
CVE-2013-4359 |
189 |
|
DoS Overflow |
2013-09-30 |
2016-12-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Integer overflow in kbdint.c in mod_sftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service (memory consumption) via a large response count value in an authentication request, which triggers a large memory allocation. |
|
11462 |
CVE-2013-4358 |
|
|
DoS |
2013-12-24 |
2013-12-26 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
libavcodec/h264.c in FFmpeg before 0.11.4 allows remote attackers to cause a denial of service (crash) via vectors related to alternating bit depths in H.264 data. |
|
11463 |
CVE-2013-4356 |
264 |
|
DoS |
2013-10-09 |
2017-01-06 |
5.4 |
None |
Local Network |
Medium |
Not required |
Partial |
Partial |
Partial |
|
Xen 4.3.x writes hypervisor mappings to certain shadow pagetables when live migration is performed on hosts with more than 5TB of RAM, which allows local 64-bit PV guests to read or write to invalid memory and cause a denial of service (crash). |
|
11464 |
CVE-2013-4351 |
310 |
|
Bypass |
2013-10-09 |
2014-01-03 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
GnuPG 1.4.x, 2.0.x, and 2.1.x treats a key flags subpacket with all bits cleared (no usage permitted) as if it has all bits set (all usage permitted), which might allow remote attackers to bypass intended cryptographic protection mechanisms by leveraging the subkey. |
|
11465 |
CVE-2013-4350 |
310 |
|
+Info |
2013-09-25 |
2014-01-03 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The IPv6 SCTP implementation in net/sctp/ipv6.c in the Linux kernel through 3.11.1 uses data structures and function calls that do not trigger an intended configuration of IPsec encryption, which allows remote attackers to obtain sensitive information by sniffing the network. |
|
11466 |
CVE-2013-4347 |
310 |
|
|
2014-05-20 |
2016-11-28 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
The (1) make_nonce, (2) generate_nonce, and (3) generate_verifier functions in SimpleGeo python-oauth2 uses weak random numbers to generate nonces, which makes it easier for remote attackers to guess the nonce via a brute force attack. |
|
11467 |
CVE-2013-4345 |
189 |
|
|
2013-10-10 |
2019-04-22 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
Off-by-one error in the get_prng_bytes function in crypto/ansi_cprng.c in the Linux kernel through 3.11.4 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via multiple requests for small amounts of data, leading to improper management of the state of the consumed data. |
|
11468 |
CVE-2013-4320 |
264 |
|
|
2014-05-20 |
2014-05-21 |
5.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
None |
|
The File Abstraction Layer (FAL) in TYPO3 6.0.x before 6.0.9 and 6.1.x before 6.1.4 does not properly check permissions, which allows remote authenticated users to create or read arbitrary files via a crafted URL. |
|
11469 |
CVE-2013-4315 |
22 |
|
Dir. Trav. |
2013-09-16 |
2013-12-10 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
Directory traversal vulnerability in Django 1.4.x before 1.4.7, 1.5.x before 1.5.3, and 1.6.x before 1.6 beta 3 allows remote attackers to read arbitrary files via a file path in the ALLOWED_INCLUDE_ROOTS setting followed by a .. (dot dot) in a ssi template tag. |
|
11470 |
CVE-2013-4310 |
264 |
|
Bypass |
2013-09-30 |
2014-01-27 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
Apache Struts 2.0.0 through 2.3.15.1 allows remote attackers to bypass access controls via a crafted action: prefix. |
|
11471 |
CVE-2013-4302 |
264 |
|
Bypass CSRF |
2013-10-26 |
2017-08-28 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
(1) ApiBlock.php, (2) ApiCreateAccount.php, (3) ApiLogin.php, (4) ApiMain.php, (5) ApiQueryDeletedrevs.php, (6) ApiTokens.php, and (7) ApiUnblock.php in includes/api/ in MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 allow remote attackers to obtain CSRF tokens and bypass the cross-site request forgery (CSRF) protection mechanism via a JSONP request to wiki/api.php. |
|
11472 |
CVE-2013-4301 |
200 |
|
+Info |
2013-10-26 |
2017-08-28 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
includes/resourceloader/ResourceLoaderContext.php in MediaWiki 1.19.x before 1.19.8, 1.20.x before 1.20.7, and 1.21.x before 1.21.2 allows remote attackers to obtain sensitive information via a "<" (open angle bracket) character in the lang parameter to w/load.php, which reveals the installation path in an error message. |
|
11473 |
CVE-2013-4295 |
200 |
|
+Info |
2013-10-23 |
2013-10-24 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The gadget renderer in Apache Shindig 2.5.0 for PHP allows remote attackers to obtain sensitive information via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue. |
|
11474 |
CVE-2013-4294 |
264 |
|
Bypass |
2013-09-23 |
2013-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
The (1) mamcache and (2) KVS token backends in OpenStack Identity (Keystone) Folsom 2012.2.x and Grizzly before 2013.1.4 do not properly compare the PKI token revocation list with PKI tokens, which allow remote attackers to bypass intended access restrictions via a revoked PKI token. |
|
11475 |
CVE-2013-4286 |
20 |
|
|
2014-02-26 |
2019-04-15 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
Apache Tomcat before 6.0.39, 7.x before 7.0.47, and 8.x before 8.0.0-RC3, when an HTTP connector or AJP connector is used, does not properly handle certain inconsistent HTTP request headers, which allows remote attackers to trigger incorrect identification of a request's length and conduct request-smuggling attacks via (1) multiple Content-Length headers or (2) a Content-Length header and a "Transfer-Encoding: chunked" header. NOTE: this vulnerability exists because of an incomplete fix for CVE-2005-2090. |
|
11476 |
CVE-2013-4284 |
399 |
|
DoS |
2013-10-09 |
2013-10-10 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Cumin, as used in Red Hat Enterprise MRG 2.4, allows remote attackers to cause a denial of service (CPU and memory consumption) via a crafted Ajax update request. |
|
11477 |
CVE-2013-4283 |
20 |
|
DoS |
2013-09-10 |
2013-09-11 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
ns-slapd in 389 Directory Server before 1.3.0.8 allows remote attackers to cause a denial of service (server crash) via a crafted Distinguished Name (DN) in a MOD operation request. |
|
11478 |
CVE-2013-4282 |
119 |
|
DoS Overflow |
2013-11-02 |
2019-04-22 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Stack-based buffer overflow in the reds_handle_ticket function in server/reds.c in SPICE 0.12.0 allows remote attackers to cause a denial of service (crash) via a long password in a SPICE ticket. |
|
11479 |
CVE-2013-4279 |
200 |
|
+Info |
2014-04-18 |
2014-04-21 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
imapsync 1.564 and earlier performs a release check by default, which sends sensitive information (imapsync, operating system, and Perl version) to the developer's site. |
|
11480 |
CVE-2013-4223 |
264 |
|
|
2014-05-23 |
2017-08-28 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The Gentoo Nullmailer package before 1.11-r2 uses world-readable permissions for /etc/nullmailer/remotes, which allows local users to obtain SMTP authentication credentials by reading the file. |
|
11481 |
CVE-2013-4210 |
|
|
DoS |
2013-10-01 |
2013-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
The org.jboss.remoting.transport.socket.ServerThread class in Red Hat JBoss Remoting for Red Hat JBoss SOA Platform 5.3.1 GA, Web Platform 5.2.0, Enterprise Application Platform 5.2.0, and other products allows remote attackers to cause a denial of service (file descriptor consumption) via unspecified vectors. |
|
11482 |
CVE-2013-4200 |
264 |
|
Bypass |
2014-01-21 |
2018-10-09 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
The isURLInPortal method in the URLTool class in in_portal.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 treats URLs starting with a space as a relative URL, which allows remote attackers to bypass the allow_external_login_sites filtering property, redirect users to arbitrary web sites, and conduct phishing attacks via a space before a URL in the "next" parameter to acl_users/credentials_cookie_auth/require_login. |
|
11483 |
CVE-2013-4197 |
20 |
|
|
2014-03-11 |
2014-03-11 |
5.5 |
None |
Remote |
Low |
Single system |
None |
Partial |
Partial |
|
member_portrait.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allows remote authenticated users to modify or delete portraits of other users via unspecified vectors. |
|
11484 |
CVE-2013-4196 |
264 |
|
+Info |
2014-03-11 |
2014-03-11 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The object manager implementation (objectmanager.py) in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly restrict access to internal methods, which allows remote attackers to obtain sensitive information via a crafted request. |
|
11485 |
CVE-2013-4195 |
20 |
|
|
2014-03-11 |
2014-03-11 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
Multiple open redirect vulnerabilities in (1) marmoset_patch.py, (2) publish.py, and (3) principiaredirect.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. |
|
11486 |
CVE-2013-4191 |
264 |
|
+Info |
2014-03-11 |
2014-03-11 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
|
zip.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly enforce access restrictions when including content in a zip archive, which allows remote attackers to obtain sensitive information by reading a generated archive. |
|
11487 |
CVE-2013-4180 |
20 |
|
DoS |
2013-09-16 |
2013-09-17 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
The (1) power and (2) ipmi_boot actions in the HostController in Foreman before 1.2.2 allow remote attackers to cause a denial of service (memory consumption) via unspecified input that is converted to a symbol. |
|
11488 |
CVE-2013-4178 |
287 |
|
|
2014-05-29 |
2014-05-30 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
|
The Google Authenticator login module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.4 for Drupal allows remote attackers to obtain access by replaying the username, password, and one-time password (OTP). |
|
11489 |
CVE-2013-4177 |
264 |
|
Bypass |
2014-05-29 |
2014-05-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
|
The Google Authenticator login module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.4 for Drupal does not properly identify user account names, which might allow remote attackers to bypass the two-factor authentication requirement via unspecified vectors. |
|
11490 |
CVE-2013-4173 |
22 |
|
Dir. Trav. |
2013-10-11 |
2013-10-15 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Directory traversal vulnerability in the trend-data daemon (xymond_rrd) in Xymon 4.x before 4.3.12 allows remote attackers to delete arbitrary files via a .. (dot dot) in the host name in a "drophost" command. |
|
11491 |
CVE-2013-4160 |
|
|
DoS |
2014-01-21 |
2014-01-22 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Little CMS (lcms2) before 2.5, as used in OpenJDK 7 and possibly other products, allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to (1) cmsStageAllocLabV2ToV4curves, (2) cmsPipelineDup, (3) cmsAllocProfileSequenceDescription, (4) CurvesAlloc, and (5) cmsnamed. |
|
11492 |
CVE-2013-4153 |
399 |
|
DoS |
2013-09-30 |
2013-10-11 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Double free vulnerability in the qemuAgentGetVCPUs function in qemu/qemu_agent.c in libvirt 1.0.6 through 1.1.0 allows remote attackers to cause a denial of service (daemon crash) via a cpu count request, as demonstrated by the "virsh vcpucount dom --guest" command. |
|
11493 |
CVE-2013-4139 |
|
|
DoS |
2013-08-28 |
2013-08-29 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
The Stage File Proxy module 7.x-1.x before 7.x-1.4 for Drupal allows remote attackers to cause a denial of service (file operations performance degradation and failure) via a large number of requests. |
|
11494 |
CVE-2013-4132 |
310 |
|
DoS |
2013-09-16 |
2018-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
KDE-Workspace 4.10.5 and earlier does not properly handle the return value of the glibc 2.17 crypt and pw_encrypt functions, which allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via (1) an invalid salt or a (2) DES or (3) MD5 encrypted password, when FIPS-140 is enable, to KDM or an (4) invalid password to KCheckPass. |
|
11495 |
CVE-2013-4130 |
399 |
|
DoS |
2013-08-20 |
2014-01-23 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
The (1) red_channel_pipes_add_type and (2) red_channel_pipes_add_empty_msg functions in server/red_channel.c in SPICE before 0.12.4 do not properly perform ring loops, which might allow remote attackers to cause a denial of service (reachable assertion and server exit) by triggering a network error. |
|
11496 |
CVE-2013-4125 |
399 |
|
DoS |
2013-07-15 |
2017-08-28 |
5.4 |
None |
Remote |
High |
Not required |
None |
None |
Complete |
|
The fib6_add_rt2node function in net/ipv6/ip6_fib.c in the IPv6 stack in the Linux kernel through 3.10.1 does not properly handle Router Advertisement (RA) messages in certain circumstances involving three routes that initially qualified for membership in an ECMP route set until a change occurred for one of the first two routes, which allows remote attackers to cause a denial of service (system crash) via a crafted sequence of messages. |
|
11497 |
CVE-2013-4124 |
189 |
|
DoS Overflow |
2013-08-05 |
2018-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (memory consumption) via a malformed packet. |
|
11498 |
CVE-2013-4123 |
20 |
|
DoS |
2013-09-16 |
2018-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
client_side_request.cc in Squid 3.2.x before 3.2.13 and 3.3.x before 3.3.8 allows remote attackers to cause a denial of service via a crafted port number in a HTTP Host header. |
|
11499 |
CVE-2013-4119 |
476 |
|
DoS |
2016-10-03 |
2016-10-04 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
FreeRDP before 1.1.0-beta+2013071101 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) by disconnecting before authentication has finished. |
|
11500 |
CVE-2013-4118 |
476 |
|
DoS |
2016-10-03 |
2018-10-30 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
|
FreeRDP before 1.1.0-beta1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors. |
