Skip to main content
CVE-2013-3482 CRITICAL POC THREAT Emergency

Stack-based buffer overflow in the rf_report_error function in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 66.7%.

Buffer Overflow Denial Of Service RCE Erdas Er Viewer
NVD Exploit-DB
CVSS 2.0
9.3
EPSS
66.7%
Threat
5.4
CVE-2013-3483 CRITICAL Act Now

Stack-based buffer overflow in ermapper_u.dll in Intergraph ERDAS ER Viewer before 13.0.1.1301 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Buffer Overflow Denial Of Service RCE Erdas Er Viewer
NVD
CVSS 2.0
9.3
EPSS
7.6%
CVE-2013-2185 HIGH PATCH This Week

The readObject method in the DiskFileItem class in Apache Tomcat and JBoss Web, as used in Red Hat JBoss Enterprise Application Platform 6.1.0 and Red Hat JBoss Portal 6.0.0, allows remote attackers. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

Tomcat Red Hat Apache Information Disclosure Jboss Enterprise Application Platform +1
NVD
CVSS 2.0
7.5
EPSS
5.3%
CVE-2013-4231 MEDIUM This Month

Multiple buffer overflows in libtiff before 4.0.3 allow remote attackers to cause a denial of service (out-of-bounds write) via a crafted (1) extension block in a GIF image or (2) GIF raster image to. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Epss exploitation probability 18.4% and no vendor patch available.

Red Hat Buffer Overflow Denial Of Service Libtiff
NVD
CVSS 2.0
4.3
EPSS
18.4%
CVE-2013-2142 LOW POC Monitor

userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local users to overwrite arbitrary files via a symlink attack on (1) HostCertificate.pem, (2). Rated low severity (CVSS 3.3). Public exploit code available and no vendor patch available.

Information Disclosure Libimobiledevice
NVD
CVSS 2.0
3.3
EPSS
0.0%
CVE-2013-1438 MEDIUM This Month

Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in libraw, ufraw, shotwell, and other products, allows context-dependent attackers to cause a denial of service via a crafted photo. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Denial Of Service Dcraw
NVD
CVSS 2.0
4.3
EPSS
0.5%
CVE-2013-4375 LOW Monitor

The qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before 4.3.1, and qemu 1.1 and other versions, allows local HVM guests to cause a denial of service (domain grant reference consumption). Rated low severity (CVSS 2.7), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Qemu Xen
NVD
CVSS 2.0
2.7
EPSS
0.1%
CVE-2013-7078 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the errorAction method in the ActionController base class in the Extbase Framework in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.

XSS Typo3
NVD
CVSS 2.0
2.6
EPSS
0.5%
CVE-2013-0244 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in Drupal 6.x before 6.28 and 7.x before 7.19, when running with older versions of jQuery that are vulnerable to CVE-2011-4969, allows remote attackers to. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.

XSS Drupal
NVD
CVSS 2.0
2.6
EPSS
0.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy