22 matches found
DEBIAN-CVE-2013-0233
Devise gem 2.2.x before 2.2.3, 2.1.x before 2.1.3, 2.0.x before 2.0.5, and 1.5.x before 1.5.4 for Ruby, when using certain databases, does not properly perform type conversion when performing database queries, which might allow remote attackers to cause incorrect results to be returned and bypass...
HP-UX FTPD REST Command Remote Arbitrary Memory Disclosure
The remote FTP server seems to be vulnerable to an integer conversion bug when it receives a malformed argument to the 'REST' command. An attacker may exploit this flaw to force the remote FTP daemon to disclose portions of the memory of the remote host. %NASLMINLEVEL 70300 C Tenable Network...