CVE List - 2013 / December
Showing 1 - 100 of 484 CVEs for December 2013 (Page 1 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2013-3708 | 2013-12-01 | The id1.GetPrinterURLList function in Novell iPrint Client before 5.93 allows... |
| CVE-2013-6718 | 2013-12-01 | The Advanced Management Module (AMM) with firmware 3.64B, 3.64C, and... |
| CVE-2013-2818 | 2013-12-01 | The DNP Master Driver in Alstom e-terracontrol 3.5, 3.6, and... |
| CVE-2013-3707 | 2013-12-01 | The HTTPSTK service in the novell-nrm package before 2.0.2-297.305.302.3 in... |
| CVE-2012-0414 | 2013-12-02 | Cross-site scripting (XSS) vulnerability in the Spacewalk service in SUSE... |
| CVE-2012-0420 | 2013-12-02 | zypp-refresh-wrapper in SUSE Zypper before 1.3.20 and 1.6.x before 1.6.166... |
| CVE-2012-0425 | 2013-12-02 | LanItems.ycp in save_y2logs in yast2-network before 2.24.4 in SUSE YaST... |
| CVE-2012-0426 | 2013-12-02 | Race condition in sap_suse_cluster_connector before 1.0.0-0.8.1 in SUSE Linux Enterprise... |
| CVE-2012-0427 | 2013-12-02 | yast2-add-on-creator in SUSE inst-source-utils 2008.11.26 before 2008.11.26-0.9.1 and 2012.9.13 before... |
| CVE-2012-0434 | 2013-12-02 | The server in Crowbar, as used in SUSE Cloud 1.0,... |
| CVE-2012-6535 | 2013-12-02 | DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader,... |
| CVE-2013-6695 | 2013-12-02 | The RBAC implementation in Cisco Secure Access Control System (ACS)... |
| CVE-2013-6696 | 2013-12-02 | Cisco Adaptive Security Appliance (ASA) Software does not properly handle... |
| CVE-2012-6150 | 2013-12-03 | The winbind_name_list_to_sid_string_list function in nsswitch/pam_winbind.c in Samba through 4.1.2 handles... |
| CVE-2013-6690 | 2013-12-03 | Multiple cross-site scripting (XSS) vulnerabilities in the web interface in... |
| CVE-2013-6703 | 2013-12-03 | The TLS/SSLv3 module on Cisco ONS 15454 controller cards allows... |
| CVE-2013-6704 | 2013-12-03 | Cisco IOS XE does not properly manage memory for TFTP... |
| CVE-2013-6705 | 2013-12-03 | The IP Device Tracking (IPDT) feature in Cisco IOS and... |
| CVE-2013-5449 | 2013-12-04 | Cross-site scripting (XSS) vulnerability in workingSet.jsp in IBM Eclipse Help... |
| CVE-2013-6029 | 2013-12-04 | Stack-based buffer overflow in the AT&T Connect Participant Application before... |
| CVE-2013-3519 | 2013-12-04 | lgtosync.sys in VMware Workstation 9.x before 9.0.3, VMware Player 5.x... |
| CVE-2013-6702 | 2013-12-04 | The management implementation on Cisco ONS 15454 controller cards with... |
| CVE-2013-6935 | 2013-12-04 | Buffer overflow in VideoCharge Software Watermark Master 2.2.23 allows remote... |
| CVE-2013-6936 | 2013-12-04 | Multiple SQL injection vulnerabilities in ajaxfs.php in the Ajax forum... |
| CVE-2013-6937 | 2013-12-04 | Buffer overflow in VideoCharge Software Watermark Master 2.2.23 allows remote... |
| CVE-2013-2825 | 2013-12-04 | The DNP3 service in the Outstation component on Elecsys Director... |
| CVE-2013-6945 | 2013-12-04 | The M2M Broker in OSEHRA VistA, as distributed before September... |
| CVE-2013-6000 | 2013-12-05 | Directory traversal vulnerability in Tattyan HP TOWN before 5_10_1 allows... |
| CVE-2013-6001 | 2013-12-05 | SQL injection vulnerability in the Space function in Cybozu Garoon... |
| CVE-2013-6002 | 2013-12-05 | The server in Cybozu Garoon before 3.7 SP1 allows remote... |
| CVE-2013-6003 | 2013-12-05 | CRLF injection vulnerability in Cybozu Garoon 3.1 through 3.5 SP5,... |
| CVE-2013-6004 | 2013-12-05 | Session fixation vulnerability in Cybozu Garoon before 3.7.2 allows remote... |
| CVE-2013-6900 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in the system-administration component in Cybozu... |
| CVE-2013-6901 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in the Space function in Cybozu... |
| CVE-2013-6902 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in the Space function in Cybozu... |
| CVE-2013-6903 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in a schedule component in Cybozu... |
| CVE-2013-6904 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in a note component in Cybozu... |
| CVE-2013-6905 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in a phone component in Cybozu... |
| CVE-2013-6906 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in a mail component in Cybozu... |
| CVE-2013-6907 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in a mail component in Cybozu... |
| CVE-2013-6908 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in a mail component in Cybozu... |
| CVE-2013-6909 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in a report component in Cybozu... |
| CVE-2013-6910 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in Ajax components in Cybozu Garoon... |
| CVE-2013-6911 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in the bulletin-board component in Cybozu... |
| CVE-2013-6912 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu... |
| CVE-2013-6913 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in a search component in Cybozu... |
| CVE-2013-6914 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in a calendar component in Cybozu... |
| CVE-2013-6915 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in the system-administration component in Cybozu... |
| CVE-2013-6916 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in the Yahoo! User Interface Library... |
| CVE-2013-3921 | 2013-12-05 | Directory traversal vulnerability in Easytime Studio Easy File Manager 1.1... |
| CVE-2013-5108 | 2013-12-05 | Multiple cross-site scripting (XSS) vulnerabilities in the xn function in... |
| CVE-2013-6267 | 2013-12-05 | Multiple cross-site scripting (XSS) vulnerabilities in Claroline before 1.11.9 allow... |
| CVE-2013-6341 | 2013-12-05 | SQL injection vulnerability in Dokeos 2.2 RC2 and earlier allows... |
| CVE-2013-6395 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in header.php in Ganglia Web 3.5.8... |
| CVE-2013-6787 | 2013-12-05 | SQL injection vulnerability in the check_user_password function in main/auth/profile.php in... |
| CVE-2013-6804 | 2013-12-05 | Cross-site scripting (XSS) vulnerability in the Search module before 1.1.1... |
| CVE-2013-1090 | 2013-12-06 | The SUSE horde5 package before 5.0.2-2.4.1 sets incorrect ownership for... |
| CVE-2013-2133 | 2013-12-06 | The EJB invocation handler implementation in Red Hat JBossWS, as... |
| CVE-2013-4491 | 2013-12-07 | Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/translation_helper.rb in the internationalization component... |
| CVE-2013-4492 | 2013-12-07 | Cross-site scripting (XSS) vulnerability in exceptions.rb in the i18n gem... |
| CVE-2013-6414 | 2013-12-07 | actionpack/lib/action_view/lookup_context.rb in Action View in Ruby on Rails 3.x before... |
| CVE-2013-6415 | 2013-12-07 | Cross-site scripting (XSS) vulnerability in the number_to_currency helper in actionpack/lib/action_view/helpers/number_helper.rb... |
| CVE-2013-6416 | 2013-12-07 | Cross-site scripting (XSS) vulnerability in the simple_format helper in actionpack/lib/action_view/helpers/text_helper.rb... |
| CVE-2013-6417 | 2013-12-07 | actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before 3.2.16 and 4.x before... |
| CVE-2013-6634 | 2013-12-07 | The OneClickSigninHelper::ShowInfoBarIfPossible function in browser/ui/sync/one_click_signin_helper.cc in Google Chrome before 31.0.1650.63... |
| CVE-2013-6635 | 2013-12-07 | Use-after-free vulnerability in the editing implementation in Blink, as used... |
| CVE-2013-6636 | 2013-12-07 | The FrameLoader::notifyIfInitialDocumentAccessed function in core/loader/FrameLoader.cpp in Blink, as used in... |
| CVE-2013-6637 | 2013-12-07 | Multiple unspecified vulnerabilities in Google Chrome before 31.0.1650.63 allow attackers... |
| CVE-2013-6638 | 2013-12-07 | Multiple buffer overflows in runtime.cc in Google V8 before 3.22.24.7,... |
| CVE-2013-6639 | 2013-12-07 | The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8... |
| CVE-2013-6640 | 2013-12-07 | The DehoistArrayIndex function in hydrogen-dehoist.cc (aka hydrogen.cc) in Google V8... |
| CVE-2013-6920 | 2013-12-07 | Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not... |
| CVE-2013-6999 | 2013-12-07 | The IsHandleEntrySecure function in win32k.sys in the kernel-mode drivers in... |
| CVE-2013-5455 | 2013-12-07 | IBM SmartCloud Provisioning 2.1 before FP3 IF0001 allows remote authenticated... |
| CVE-2013-6707 | 2013-12-07 | Memory leak in the connection-manager implementation in Cisco Adaptive Security... |
| CVE-2013-4171 | 2013-12-07 | Multiple cross-site scripting (XSS) vulnerabilities in Apache Roller before 5.0.2... |
| CVE-2013-4212 | 2013-12-07 | Certain getText methods in the ActionSupport controller in Apache Roller... |
| CVE-2013-4445 | 2013-12-07 | The json rendering functionality in the Context module 6.x-2.x before... |
| CVE-2013-4446 | 2013-12-07 | The _json_decode function in plugins/context_reaction_block.inc in the Context module 6.x-2.x... |
| CVE-2013-4478 | 2013-12-07 | Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows remote attackers... |
| CVE-2013-4479 | 2013-12-07 | lib/sup/message_chunks.rb in Sup before 0.13.2.1 and 0.14.x before 0.14.1.1 allows... |
| CVE-2013-4505 | 2013-12-07 | The is_this_legal function in mod_dontdothat for Apache Subversion 1.4.0 through... |
| CVE-2013-4558 | 2013-12-07 | The get_parent_resource function in repos.c in mod_dav_svn Apache HTTPD server... |
| CVE-2013-6050 | 2013-12-07 | Integer overflow in Links before 2.8 allows remote attackers to... |
| CVE-2013-6397 | 2013-12-07 | Directory traversal vulnerability in SolrResourceLoader in Apache Solr before 4.6... |
| CVE-2013-6407 | 2013-12-07 | The UpdateRequestHandler for XML in Apache Solr before 4.1 allows... |
| CVE-2013-6408 | 2013-12-07 | The DocumentAnalysisRequestHandler in Apache Solr before 4.3.1 does not properly... |
| CVE-2013-6409 | 2013-12-07 | Debian adequate before 0.8.1, when run by root with the... |
| CVE-2013-6410 | 2013-12-07 | nbd-server in Network Block Device (nbd) before 3.5 does not... |
| CVE-2012-6612 | 2013-12-07 | The (1) UpdateRequestHandler for XSLT or (2) XPathEntityProcessor in Apache... |
| CVE-2013-0844 | 2013-12-07 | Off-by-one error in the adpcm_decode_frame function in libavcodec/adpcm.c in FFmpeg... |
| CVE-2013-0845 | 2013-12-07 | libavcodec/alsdec.c in FFmpeg before 1.0.4 allows remote attackers to have... |
| CVE-2013-0846 | 2013-12-07 | Array index error in the qdm2_decode_super_block function in libavcodec/qdm2.c in... |
| CVE-2013-0847 | 2013-12-07 | The ff_id3v2_parse function in libavformat/id3v2.c in FFmpeg before 1.1 allows... |
| CVE-2013-0848 | 2013-12-07 | The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1 allows... |
| CVE-2013-0849 | 2013-12-07 | The roq_decode_init function in libavcodec/roqvideodec.c in FFmpeg before 1.1 allows... |
| CVE-2013-0850 | 2013-12-07 | The decode_slice_header function in libavcodec/h264.c in FFmpeg before 1.1 allows... |
| CVE-2013-0851 | 2013-12-07 | The decode_frame function in libavcodec/eamad.c in FFmpeg before 1.1 allows... |
| CVE-2013-0852 | 2013-12-07 | The parse_picture_segment function in libavcodec/pgssubdec.c in FFmpeg before 1.1 allows... |
| CVE-2013-0853 | 2013-12-07 | The wavpack_decode_frame function in libavcodec/wavpack.c in FFmpeg before 1.1 allows... |