CVE-2013-6473
- EPSS 3.43%
- Veröffentlicht 14.03.2014 15:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple heap-based buffer overflows in the urftopdf filter in cups-filters 1.0.25 before 1.0.47 allow remote attackers to execute arbitrary code via a large (1) page or (2) line in a URF file.
CVE-2013-6474
- EPSS 3.07%
- Veröffentlicht 14.03.2014 15:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Heap-based buffer overflow in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows remote attackers to execute arbitrary code via a crafted PDF file.
CVE-2013-6475
- EPSS 3.22%
- Veröffentlicht 14.03.2014 15:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Multiple integer overflows in (1) OPVPOutputDev.cxx and (2) oprs/OPVPSplash.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allow remote attackers to execute arbitrary code via a crafted PDF file, which triggers a heap-based buffer...
CVE-2013-6476
- EPSS 0.31%
- Veröffentlicht 14.03.2014 15:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
The OPVPWrapper::loadDriver function in oprs/OPVPWrapper.cxx in the pdftoopvp filter in CUPS and cups-filters before 1.0.47 allows local users to gain privileges via a Trojan horse driver in the same directory as the PDF file.
CVE-2014-2270
- EPSS 4.32%
- Veröffentlicht 14.03.2014 15:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
softmagic.c in file before 5.17 and libmagic allows context-dependent attackers to cause a denial of service (out-of-bounds memory access and crash) via crafted offsets in the softmagic of a PE executable.
- EPSS 10.64%
- Veröffentlicht 14.03.2014 10:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obtain access via brute-force ChangePasswordUser2 (1) S...
CVE-2014-0004
- EPSS 0.43%
- Veröffentlicht 11.03.2014 19:37:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
Stack-based buffer overflow in udisks before 1.0.5 and 2.x before 2.1.3 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via a long mount point.
CVE-2014-0101
- EPSS 7.05%
- Veröffentlicht 11.03.2014 13:01:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The sctp_sf_do_5_1D_ce function in net/sctp/sm_statefuns.c in the Linux kernel through 3.13.6 does not validate certain auth_enable and auth_capable fields before making an sctp_sf_authenticate call, which allows remote attackers to cause a denial of...
CVE-2011-3153
- EPSS 0.32%
- Veröffentlicht 06.03.2014 15:55:28
- Zuletzt bearbeitet 06.05.2026 22:30:45
dmrc.c in Light Display Manager (aka LightDM) before 1.1.1 allows local users to read arbitrary files via a symlink attack on ~/.dmrc.
CVE-2011-3634
- EPSS 0.8%
- Veröffentlicht 01.03.2014 00:55:04
- Zuletzt bearbeitet 29.04.2026 01:13:23
methods/https.cc in apt before 0.8.11 accepts connections when the certificate host name fails validation and Verify-Host is enabled, which allows man-in-the-middle attackers to obtain repository credentials via unspecified vectors.