- EPSS 5.21%
- Veröffentlicht 03.04.2013 11:56:21
- Zuletzt bearbeitet 29.04.2026 01:13:23
The CERT_DecodeCertPackage function in Mozilla Network Security Services (NSS), as used in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5, SeaMonkey before 2.17, and other pr...
CVE-2013-0800
- EPSS 3.94%
- Veröffentlicht 03.04.2013 11:56:21
- Zuletzt bearbeitet 29.04.2026 01:13:23
Integer signedness error in the pixman_fill_sse2 function in pixman-sse2.c in Pixman, as distributed with Cairo and used in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x before 17.0.5, Se...
CVE-2012-6129
- EPSS 5.1%
- Veröffentlicht 03.04.2013 00:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
Stack-based buffer overflow in utp.cpp in libutp, as used in Transmission before 2.74 and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted "micro transport protocol ...
CVE-2013-1799
- EPSS 1.03%
- Veröffentlicht 02.04.2013 03:23:26
- Zuletzt bearbeitet 29.04.2026 01:13:23
Gnome Online Accounts (GOA) 3.6.x before 3.6.3 and 3.7.x before 3.7.91, does not properly validate SSL certificates when creating accounts for providers who use the libsoup library, which allows man-in-the-middle attackers to obtain sensitive informa...
CVE-2013-0240
- EPSS 1.36%
- Veröffentlicht 02.04.2013 03:22:21
- Zuletzt bearbeitet 29.04.2026 01:13:23
Gnome Online Accounts (GOA) 3.4.x, 3.6.x before 3.6.3, and 3.7.x before 3.7.5, does not properly validate SSL certificates when creating accounts such as Windows Live and Facebook accounts, which allows man-in-the-middle attackers to obtain sensitive...
- EPSS 18.68%
- Veröffentlicht 28.03.2013 23:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
MariaDB 5.5.x before 5.5.30, 5.3.x before 5.3.13, 5.2.x before 5.2.15, and 5.1.x before 5.1.68, and Oracle MySQL 5.1.69 and earlier, 5.5.31 and earlier, and 5.6.11 and earlier allows remote attackers to cause a denial of service (crash) via a crafted...
- EPSS 2.98%
- Veröffentlicht 26.03.2013 21:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
The SMB2 implementation in Samba 3.6.x before 3.6.6, as used on the IBM Storwize V7000 Unified 1.3 before 1.3.2.3 and 1.4 before 1.4.0.1 and possibly other products, does not properly enforce CIFS share attributes, which allows remote authenticated u...
- EPSS 2.74%
- Veröffentlicht 22.03.2013 21:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) does not properly implement a quota for fixed IPs, which allows remote authenticated users to cause a denial of service (resource exhaustion and failure to spawn new instances) via...
CVE-2013-1865
- EPSS 2.61%
- Veröffentlicht 22.03.2013 21:55:01
- Zuletzt bearbeitet 29.04.2026 01:13:23
OpenStack Keystone Folsom (2012.2) does not properly perform revocation checks for Keystone PKI tokens when done through a server, which allows remote attackers to bypass intended access restrictions via a revoked PKI token.
- EPSS 2.15%
- Veröffentlicht 22.03.2013 21:55:00
- Zuletzt bearbeitet 29.04.2026 01:13:23
OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to gain access to a VM in opportunistic circumstances by using the VNC token for a deleted VM that was bound to the same VNC port.