Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse opensuse 12.3 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2014-1498
The crypto.generateCRMFRequest method in Mozilla Firefox prior to 28.0 and SeaMonkey prior to 2.25 does not properly validate a certain key type, which allows remote malicious users to cause a denial of service (application crash) via vectors that trigger generation of a key that...
Suse Linux Enterprise Server 11
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Software Development Kit 11
Oracle Solaris 11.3
Opensuse Opensuse 13.1
Opensuse Project Opensuse 12.3
Opensuse Project Opensuse 11.4
Mozilla Seamonkey
Mozilla Firefox
383
VMScore
CVE-2014-1499
Mozilla Firefox prior to 28.0 and SeaMonkey prior to 2.25 allow remote malicious users to spoof the domain name in the WebRTC (1) camera or (2) microphone permission prompt by triggering navigation at a certain time during generation of this prompt.
Suse Linux Enterprise Desktop 11
Suse Linux Enterprise Server 11
Suse Linux Enterprise Software Development Kit 11
Mozilla Seamonkey
Oracle Solaris 11.3
Mozilla Firefox
Opensuse Project Opensuse 11.4
Opensuse Opensuse 13.1
Opensuse Project Opensuse 12.3
605
VMScore
CVE-2014-1502
The (1) WebGL.compressedTexImage2D and (2) WebGL.compressedTexSubImage2D functions in Mozilla Firefox prior to 28.0 and SeaMonkey prior to 2.25 allow remote malicious users to bypass the Same Origin Policy and render content in a different domain via unspecified vectors.
Opensuse Project Opensuse 12.3
Opensuse Opensuse 13.1
Opensuse Project Opensuse 11.4
Suse Linux Enterprise Software Development Kit 11
Suse Linux Enterprise Server 11
Suse Linux Enterprise Desktop 11
Oracle Solaris 11.3
Mozilla Firefox
Mozilla Seamonkey
445
VMScore
CVE-2013-4076
Buffer overflow in the dissect_iphc_crtp_fh function in epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x prior to 1.8.8 allows remote malicious users to cause a denial of service (application crash) via a crafted packet.
Opensuse Opensuse 12.3
Debian Debian Linux 7.0
Opensuse Opensuse 12.2
Opensuse Opensuse 11.4
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.2
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.6
Wireshark Wireshark 1.8.7
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
445
VMScore
CVE-2013-4078
epan/dissectors/packet-rdp.c in the RDP dissector in Wireshark 1.8.x prior to 1.8.8 does not validate return values during checks for data availability, which allows remote malicious users to cause a denial of service (application crash) via a crafted packet.
Wireshark Wireshark 1.8.2
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.6
Wireshark Wireshark 1.8.7
Opensuse Opensuse 12.2
Opensuse Opensuse 12.3
Debian Debian Linux 7.0
Opensuse Opensuse 11.4
445
VMScore
CVE-2013-4075
epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.x prior to 1.8.8 does not properly initialize memory, which allows remote malicious users to cause a denial of service (application crash) via a crafted packet.
Wireshark Wireshark 1.8.2
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.6
Wireshark Wireshark 1.8.7
Opensuse Opensuse 12.2
Opensuse Opensuse 12.3
Debian Debian Linux 7.0
Opensuse Opensuse 11.4
445
VMScore
CVE-2013-4077
Array index error in the NBAP dissector in Wireshark 1.8.x prior to 1.8.8 allows remote malicious users to cause a denial of service (application crash) via a crafted packet, related to nbap.cnf and packet-nbap.c.
Opensuse Opensuse 12.3
Opensuse Opensuse 12.2
Opensuse Opensuse 11.4
Debian Debian Linux 7.0
Wireshark Wireshark 1.8.2
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
Wireshark Wireshark 1.8.6
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.7
668
VMScore
CVE-2014-2323
SQL injection vulnerability in mod_mysql_vhost.c in lighttpd prior to 1.4.35 allows remote malicious users to execute arbitrary SQL commands via the host name, related to request_check_hostname.
Lighttpd Lighttpd
Debian Debian Linux 6.0
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Opensuse Opensuse 11.4
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Suse Linux Enterprise High Availability Extension 11
Suse Linux Enterprise Software Development Kit 11
1 Github repository
447
VMScore
CVE-2013-4082
The vwr_read function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x prior to 1.8.8 does not validate the relationship between a record length and a trailer length, which allows remote malicious users to cause a denial of service (heap-based buffer overflo...
Wireshark Wireshark 1.8.0
Wireshark Wireshark 1.8.7
Wireshark Wireshark 1.8.3
Wireshark Wireshark 1.8.4
Wireshark Wireshark 1.8.5
Wireshark Wireshark 1.8.6
Wireshark Wireshark 1.8.1
Wireshark Wireshark 1.8.2
Opensuse Opensuse 11.4
Debian Debian Linux 7.0
Opensuse Opensuse 12.3
Opensuse Opensuse 12.2
605
VMScore
CVE-2014-1526
The XrayWrapper implementation in Mozilla Firefox prior to 29.0 and SeaMonkey prior to 2.26 allows user-assisted remote malicious users to bypass intended access restrictions via a crafted web site that is visited in the debugger, leading to unwrapping operations and calls to DOM...
Mozilla Firefox
Mozilla Seamonkey
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 14.04
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Fedoraproject Fedora 19
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »