Total
11925 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2013-1042 | 1 Apple | 1 Iphone Os | 2014-01-28 | 6.8 MEDIUM | N/A |
| WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-09-18-2. | |||||
| CVE-2013-3482 | 1 Hexagon | 1 Erdas Er Viewer | 2014-01-21 | 9.3 HIGH | N/A |
| Stack-based buffer overflow in the rf_report_error function in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a long string in an ERS file. | |||||
| CVE-2013-3483 | 1 Hexagon | 1 Erdas Er Viewer | 2014-01-21 | 9.3 HIGH | N/A |
| Stack-based buffer overflow in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ERS file. | |||||
| CVE-2009-5137 | 1 Mini-stream | 1 Castripper | 2014-01-07 | 7.5 HIGH | N/A |
| Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows remote attackers to execute arbitrary code via a long URL in the [playlist] section in a .pls file, a different vector than CVE-2009-1667. | |||||
| CVE-2013-6937 | 1 Videocharge | 1 Watermark Master | 2014-01-04 | 6.8 MEDIUM | N/A |
| Buffer overflow in VideoCharge Software Watermark Master 2.2.23 allows remote attackers to execute arbitrary code via a long string in the name attribute of the cols element in a .wstyle file. | |||||
| CVE-2013-6932 | 1 Irfanview | 1 Irfanview | 2013-12-30 | 7.6 HIGH | N/A |
| Buffer overflow in IrfanView before 4.37, when a multibyte-character directory name is used, allows user-assisted remote attackers to execute arbitrary code via a crafted file that is incorrectly handled by the Thumbnail tooltips feature in the Thumbnails window. | |||||
| CVE-2010-0430 | 1 Redhat | 1 Enterprise Virtualization Hypervisor | 2013-12-27 | 7.4 HIGH | N/A |
| libspice, as used in QEMU-KVM in Red Hat Enterprise Virtualization Hypervisor (aka RHEV-H or rhev-hypervisor) before 5.5-2.2 and possibly other products, allows guest OS users to read from or write to arbitrary QEMU memory by modifying the address that is used by Cairo for memory mappings. | |||||
| CVE-2013-7105 | 1 Fujitsu | 2 Interstage Application Server, Interstage Studio | 2013-12-20 | 10.0 HIGH | N/A |
| Buffer overflow in the Interstage HTTP Server log functionality, as used in Fujitsu Interstage Application Server 9.0.0, 9.1.0, 9.2.0, 9.3.1, and 10.0.0; and Interstage Studio 9.0.0, 9.1.0, 9.2.0, and 10.0.0, has unspecified impact and attack vectors related to "ihsrlog/rotatelogs." | |||||
| CVE-2012-0806 | 1 Duckcorp | 1 Bip | 2013-12-13 | 6.5 MEDIUM | N/A |
| Buffer overflow in Bip 0.8.8 and earlier might allow remote authenticated users to execute arbitrary code via vectors involving a series of TCP connections that triggers use of many open file descriptors. | |||||
| CVE-2011-0524 | 1 Iain | 1 Gypsy | 2013-12-13 | 2.1 LOW | N/A |
| Multiple buffer overflows in the NMEA parser (nmea-gen.c) in gypsy 0.8 allow local users to cause a denial of service (crash) via unspecified vectors related to the sprintf function. | |||||
| CVE-2013-5334 | 1 Adobe | 1 Shockwave Player | 2013-12-12 | 10.0 HIGH | N/A |
| Adobe Shockwave Player before 12.0.7.148 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-5333. | |||||
| CVE-2013-5333 | 1 Adobe | 1 Shockwave Player | 2013-12-12 | 10.0 HIGH | N/A |
| Adobe Shockwave Player before 12.0.7.148 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-5334. | |||||
| CVE-2011-4351 | 1 Ffmpeg | 1 Ffmpeg | 2013-12-10 | 7.5 HIGH | N/A |
| Buffer overflow in FFmpeg before 0.5.6, 0.6.x before 0.6.4, 0.7.x before 0.7.8, and 0.8.x before 0.8.8 allows remote attackers to execute arbitrary code via unspecified vectors. | |||||
| CVE-2013-1997 | 1 X | 1 Libx11 | 2013-12-01 | 6.8 MEDIUM | N/A |
| Multiple buffer overflows in X.org libX11 1.5.99.901 (1.6 RC1) and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XAllocColorCells, (2) _XkbReadGetDeviceInfoReply, (3) _XkbReadGeomShapes, (4) _XkbReadGetGeometryReply, (5) _XkbReadKeySyms, (6) _XkbReadKeyActions, (7) _XkbReadKeyBehaviors, (8) _XkbReadModifierMap, (9) _XkbReadExplicitComponents, (10) _XkbReadVirtualModMap, (11) _XkbReadGetNamesReply, (12) _XkbReadGetMapReply, (13) _XimXGetReadData, (14) XListFonts, (15) XListExtensions, and (16) XGetFontPath functions. | |||||
| CVE-2013-1912 | 1 Haproxy | 1 Haproxy | 2013-12-01 | 5.1 MEDIUM | N/A |
| Buffer overflow in HAProxy 1.4 through 1.4.22 and 1.5-dev through 1.5-dev17, when HTTP keep-alive is enabled, using HTTP keywords in TCP inspection rules, and running with rewrite rules that appends to requests, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted pipelined HTTP requests that prevent request realignment from occurring. | |||||
| CVE-2013-1428 | 1 Tinc-vpn | 1 Tinc | 2013-12-01 | 6.5 MEDIUM | N/A |
| Stack-based buffer overflow in the receive_tcppacket function in net_packet.c in tinc before 1.0.21 and 1.1 before 1.1pre7 allows remote authenticated peers to cause a denial of service (crash) or possibly execute arbitrary code via a large TCP packet. | |||||
| CVE-2013-6874 | 1 Vortexgroup | 1 Light Alloy | 2013-11-27 | 9.3 HIGH | N/A |
| Stack-based buffer overflow in Vortex Light Alloy before 4.7.4 allows remote attackers to execute arbitrary code via a long URL in a .m3u file. | |||||
| CVE-2013-2066 | 2 X, X.org | 2 Libxv, Libxv | 2013-11-25 | 6.8 MEDIUM | N/A |
| Buffer overflow in X.org libXv 1.0.7 and earlier allows X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the XvQueryPortAttributes function. | |||||
| CVE-2013-2001 | 1 X | 1 Libxxf86vm | 2013-11-25 | 6.8 MEDIUM | N/A |
| Buffer overflow in X.org libXxf86vm 1.1.2 and earlier allows X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the XF86VidModeGetGammaRamp function. | |||||
| CVE-2013-2000 | 1 X | 1 Libxxf86dga | 2013-11-25 | 6.8 MEDIUM | N/A |
| Multiple buffer overflows in X.org libXxf86dga 1.1.3 and earlier allow X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the (1) XDGAQueryModes and (2) XDGASetMode functions. | |||||