CVE List - 2013 / December
Showing 201 - 300 of 484 CVEs for December 2013 (Page 3 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2013-5615 | 2013-12-11 | The JavaScript implementation in Mozilla Firefox before 26.0, Firefox ESR... |
| CVE-2013-5616 | 2013-12-11 | Use-after-free vulnerability in the nsEventListenerManager::HandleEventSubType function in Mozilla Firefox before... |
| CVE-2013-5618 | 2013-12-11 | Use-after-free vulnerability in the nsNodeUtils::LastRelease function in the table-editing user... |
| CVE-2013-5619 | 2013-12-11 | Multiple integer overflows in the binary-search implementation in SpiderMonkey in... |
| CVE-2013-6671 | 2013-12-11 | The nsGfxScrollFrameInner::IsLTR function in Mozilla Firefox before 26.0, Firefox ESR... |
| CVE-2013-6672 | 2013-12-11 | Mozilla Firefox before 26.0 and SeaMonkey before 2.23 on Linux... |
| CVE-2013-6673 | 2013-12-11 | Mozilla Firefox before 26.0, Firefox ESR 24.x before 24.2, Thunderbird... |
| CVE-2013-6810 | 2013-12-12 | The server in Brocade Network Advisor before 12.1.0, as used... |
| CVE-2013-6986 | 2013-12-12 | The ZippyYum Subway CA Kiosk app 3.4 for iOS uses... |
| CVE-2013-7030 | 2013-12-12 | The TFTP service in Cisco Unified Communications Manager (aka CUCM... |
| CVE-2011-4971 | 2013-12-12 | Multiple integer signedness errors in the (1) process_bin_sasl_auth, (2) process_bin_complete_sasl_auth,... |
| CVE-2013-1447 | 2013-12-12 | OpenJPEG 1.3 and earlier allows remote attackers to cause a... |
| CVE-2013-1812 | 2013-12-12 | The ruby-openid gem before 2.2.2 for Ruby allows remote OpenID... |
| CVE-2013-1913 | 2013-12-12 | Integer overflow in the load_image function in file-xwd.c in the... |
| CVE-2013-1978 | 2013-12-12 | Heap-based buffer overflow in the read_xwd_cols function in file-xwd.c in... |
| CVE-2013-2751 | 2013-12-12 | Eval injection vulnerability in frontview/lib/np_handler.pl in the FrontView web interface... |
| CVE-2013-2752 | 2013-12-12 | Cross-site request forgery (CSRF) vulnerability in frontview/lib/np_handler.pl in NETGEAR ReadyNAS... |
| CVE-2013-4458 | 2013-12-12 | Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in... |
| CVE-2013-4566 | 2013-12-12 | mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none... |
| CVE-2013-6045 | 2013-12-12 | Multiple heap-based buffer overflows in OpenJPEG 1.3 and earlier might... |
| CVE-2013-6052 | 2013-12-12 | OpenJPEG 1.3 and earlier allows remote attackers to obtain sensitive... |
| CVE-2013-6054 | 2013-12-12 | Heap-based buffer overflow in OpenJPEG 1.3 has unspecified impact and... |
| CVE-2013-6421 | 2013-12-12 | The unpack_zip function in archive_unpacker.rb in the sprout gem 0.7.246... |
| CVE-2013-5763 | 2013-12-12 | Unspecified vulnerability in the Oracle Outside In Technology component in... |
| CVE-2013-4988 | 2013-12-13 | Stack-based buffer overflow in IcoFX 2.5 and earlier allows remote... |
| CVE-2013-6005 | 2013-12-13 | Cross-site scripting (XSS) vulnerability in Cybozu Dezie before 8.1.0 allows... |
| CVE-2013-6839 | 2013-12-13 | SQL injection vulnerability in InstantSoft InstantCMS 1.10.3 and earlier allows... |
| CVE-2012-6151 | 2013-12-13 | Net-SNMP 5.7.1 and earlier, when AgentX is registering to handle... |
| CVE-2013-5676 | 2013-12-13 | The Jenkins Plugin for SonarQube 3.7 and earlier allows remote... |
| CVE-2013-6048 | 2013-12-13 | The get_group_tree function in lib/Munin/Master/HTMLConfig.pm in Munin before 2.0.18 allows... |
| CVE-2013-6359 | 2013-12-13 | Munin::Master::Node in Munin before 2.0.18 allows remote attackers to cause... |
| CVE-2013-6400 | 2013-12-13 | Xen 4.2.x and 4.3.x, when using Intel VT-d and a... |
| CVE-2013-6809 | 2013-12-13 | Format string vulnerability in the client in Tftpd32 before 4.50... |
| CVE-2013-7038 | 2013-12-13 | The MHD_http_unescape function in libmicrohttpd before 0.9.32 might allow remote... |
| CVE-2013-7039 | 2013-12-13 | Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before... |
| CVE-2012-5394 | 2013-12-13 | Cross-site request forgery (CSRF) vulnerability in the CentralAuth extension for... |
| CVE-2013-0348 | 2013-12-13 | thttpd.c in sthttpd before 2.26.4-r2 and thttpd 2.25b use world-readable... |
| CVE-2013-4567 | 2013-12-13 | Incomplete blacklist vulnerability in Sanitizer::checkCss in MediaWiki before 1.19.9, 1.20.x... |
| CVE-2013-4568 | 2013-12-13 | Incomplete blacklist vulnerability in Sanitizer::checkCss in MediaWiki before 1.19.9, 1.20.x... |
| CVE-2013-4569 | 2013-12-13 | The CleanChanges extension for MediaWiki before 1.19.9, 1.20.x before 1.20.8,... |
| CVE-2013-6394 | 2013-12-13 | Percona XtraBackup before 2.1.6 uses a constant string for the... |
| CVE-2013-6956 | 2013-12-13 | Cross-site scripting (XSS) vulnerability in the Secure Access Service Web... |
| CVE-2013-6957 | 2013-12-13 | Cross-site scripting (XSS) vulnerability in the web administrative component in... |
| CVE-2013-6958 | 2013-12-13 | Juniper NetScreen Firewall running ScreenOS 5.4, 6.2, or 6.3, when... |
| CVE-2013-7050 | 2013-12-13 | The get_main_source_dir function in scripts/uscan.pl in devscripts before 2.13.8, when... |
| CVE-2013-7091 | 2013-12-13 | Directory traversal vulnerability in /res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz in Zimbra 7.2.2 and 8.0.2... |
| CVE-2013-7092 | 2013-12-13 | Multiple SQL injection vulnerabilities in /admin/cgi-bin/rpc/doReport/18 in McAfee Email Gateway... |
| CVE-2013-7093 | 2013-12-13 | SAP Network Interface Router (SAProuter) 39.3 SP4 allows remote attackers... |
| CVE-2013-7094 | 2013-12-13 | SQL injection vulnerability in the RSDDCVER_COUNT_TAB_COLS function in SAP NetWeaver... |
| CVE-2013-7095 | 2013-12-13 | The XML parser (crm_flex_data) in SAP Customer Relationship Management (CRM)... |
| CVE-2013-7096 | 2013-12-13 | Multiple SQL injection vulnerabilities in SAP EMR Unwired allow remote... |
| CVE-2013-1364 | 2013-12-14 | The user.login function in Zabbix before 1.8.16 and 2.x before... |
| CVE-2013-5107 | 2013-12-14 | Directory traversal vulnerability in RockMongo 1.1.5 and earlier allows remote... |
| CVE-2013-6051 | 2013-12-14 | The bgp_attr_unknown function in bgp_attr.c in Quagga 0.99.21 does not... |
| CVE-2013-6391 | 2013-12-14 | The ec2tokens API in OpenStack Identity (Keystone) before Havana 2013.2.1... |
| CVE-2013-6411 | 2013-12-14 | The HandleCrashedAircraft function in aircraft_cmd.cpp in OpenTTD 0.3.6 through 1.3.2... |
| CVE-2013-6426 | 2013-12-14 | The cloudformation-compatible API in OpenStack Orchestration API (Heat) before Havana... |
| CVE-2013-6428 | 2013-12-14 | The ReST API in OpenStack Orchestration API (Heat) before Havana... |
| CVE-2013-7069 | 2013-12-14 | ack 2.00 through 2.11_02 allows remote attackers to execute arbitrary... |
| CVE-2013-7085 | 2013-12-14 | Uscan in devscripts 2.13.5, when USCAN_EXCLUSION is enabled, allows remote... |
| CVE-2013-7103 | 2013-12-14 | McAfee Email Gateway 7.6 allows remote authenticated administrators to execute... |
| CVE-2013-7104 | 2013-12-14 | McAfee Email Gateway 7.6 allows remote authenticated administrators to execute... |
| CVE-2013-4587 | 2013-12-14 | Array index error in the kvm_vm_ioctl_create_vcpu function in virt/kvm/kvm_main.c in... |
| CVE-2013-6367 | 2013-12-14 | The apic_get_tmcct function in arch/x86/kvm/lapic.c in the KVM subsystem in... |
| CVE-2013-6368 | 2013-12-14 | The KVM subsystem in the Linux kernel through 3.12.5 allows... |
| CVE-2013-6376 | 2013-12-14 | The recalculate_apic_map function in arch/x86/kvm/lapic.c in the KVM subsystem in... |
| CVE-2013-4520 | 2013-12-14 | xslt.c in libxslt before 1.1.25 allows context-dependent attackers to cause... |
| CVE-2013-6271 | 2013-12-14 | Android 4.0 through 4.3 allows attackers to bypass intended access... |
| CVE-2013-7105 | 2013-12-14 | Buffer overflow in the Interstage HTTP Server log functionality, as... |
| CVE-2013-3042 | 2013-12-14 | Directory traversal vulnerability in the server in IBM Rational Software... |
| CVE-2013-3043 | 2013-12-14 | Directory traversal vulnerability in the client in IBM Rational Software... |
| CVE-2013-4000 | 2013-12-14 | Multiple cross-site request forgery (CSRF) vulnerabilities in IBM Cognos Command... |
| CVE-2013-4001 | 2013-12-14 | Session fixation vulnerability in IBM Cognos Command Center before 10.2... |
| CVE-2013-4845 | 2013-12-14 | Cross-site scripting (XSS) vulnerability on HP Officejet Pro 8500 (aka... |
| CVE-2013-5438 | 2013-12-14 | Cross-site scripting (XSS) vulnerability in the web server in IBM... |
| CVE-2013-6709 | 2013-12-14 | The registration component in Cisco WebEx Training Center provides the... |
| CVE-2013-6710 | 2013-12-14 | Cross-site request forgery (CSRF) vulnerability in Cisco WebEx Training Center... |
| CVE-2013-6711 | 2013-12-14 | Cross-site scripting (XSS) vulnerability in the product-creation administrative page in... |
| CVE-2013-6959 | 2013-12-14 | Open redirect vulnerability in Cisco WebEx Sales Center allows remote... |
| CVE-2013-6960 | 2013-12-14 | Multiple cross-site scripting (XSS) vulnerabilities in Cisco WebEx Meeting Center... |
| CVE-2013-6961 | 2013-12-14 | Cross-site scripting (XSS) vulnerability in the Collaboration Partner Access Console... |
| CVE-2013-6962 | 2013-12-14 | Cross-site scripting (XSS) vulnerability in the mobile-browser subsystem in Cisco... |
| CVE-2013-6963 | 2013-12-14 | Cross-site scripting (XSS) vulnerability in the registration component in Cisco... |
| CVE-2013-6964 | 2013-12-14 | Cisco WebEx Meeting Center allows remote authenticated users to bypass... |
| CVE-2013-6965 | 2013-12-14 | The registration component in Cisco WebEx Training Center provides the... |
| CVE-2013-6967 | 2013-12-14 | Open redirect vulnerability in the mobile-browser subsystem in Cisco WebEx... |
| CVE-2013-6968 | 2013-12-14 | Cisco WebEx Training Center provides different error messages for registration... |
| CVE-2013-6969 | 2013-12-14 | The training-registration page in Cisco WebEx Training Center allows remote... |
| CVE-2013-6970 | 2013-12-14 | Cisco WebEx Meeting Center allows remote attackers to obtain sensitive... |
| CVE-2013-6971 | 2013-12-14 | Open redirect vulnerability in Cisco WebEx Training Center allows remote... |
| CVE-2013-6972 | 2013-12-14 | Cisco WebEx Training Center allows remote attackers to discover session... |
| CVE-2013-6973 | 2013-12-14 | Cisco WebEx Training Center allows remote attackers to discover registration... |
| CVE-2013-3140 | 2013-12-16 | Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers... |
| CVE-2013-6191 | 2013-12-17 | Cross-site scripting (XSS) vulnerability in HP Operations Orchestration before 9... |
| CVE-2013-6192 | 2013-12-17 | Cross-site request forgery (CSRF) vulnerability in HP Operations Orchestration before... |
| CVE-2013-6420 | 2013-12-17 | The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x... |
| CVE-2013-6925 | 2013-12-17 | The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2... |
| CVE-2013-6926 | 2013-12-17 | The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2... |
| CVE-2013-6966 | 2013-12-17 | Open redirect vulnerability in Cisco WebEx Training Center allows remote... |
| CVE-2013-2813 | 2013-12-17 | The DNP3 component in Cooper Power Systems SMP 4, 4/DP,... |