CVE-2013-2064 (debian_linux, fedora, libxcb, opensuse, secure_global_desktop, ubuntu_linux)

CVE-2013-2064 (debian_linux, fedora, libxcb, opensuse, secure_global_desktop, ubuntu_linux)

Integer overflow in X.org libxcb 1.9 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the read_packet function.

Source: CVE-2013-2064 (debian_linux, fedora, libxcb, opensuse, secure_global_desktop, ubuntu_linux)

CVE-2013-3136 (windows_7, windows_8, windows_server_2003, windows_server_2008, windows_vista, windows_xp)

CVE-2013-3136 (windows_7, windows_8, windows_server_2003, windows_server_2008, windows_vista, windows_xp)

The kernel in Microsoft Windows XP SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, and Windows 8 on 32-bit platforms does not properly handle unspecified page-fault system calls, which allows local users to obtain sensitive information from kernel memory via a crafted application, aka "Kernel Information Disclosure Vulnerability."

Source: CVE-2013-3136 (windows_7, windows_8, windows_server_2003, windows_server_2008, windows_vista, windows_xp)

CVE-2013-3139 (internet_explorer)

CVE-2013-3139 (internet_explorer)

Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3112, CVE-2013-3113, CVE-2013-3121, and CVE-2013-3142.

Source: CVE-2013-3139 (internet_explorer)

CVE-2013-3142 (internet_explorer)

CVE-2013-3142 (internet_explorer)

Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3112, CVE-2013-3113, CVE-2013-3121, and CVE-2013-3139.

Source: CVE-2013-3142 (internet_explorer)

CVE-2013-3138 (windows_7, windows_8, windows_rt, windows_server_2008, windows_vista)

CVE-2013-3138 (windows_7, windows_8, windows_rt, windows_server_2008, windows_vista)

Integer overflow in the TCP/IP kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allows remote attackers to cause a denial of service (system hang) via crafted TCP packets, aka "TCP/IP Integer Overflow Vulnerability."

Source: CVE-2013-3138 (windows_7, windows_8, windows_rt, windows_server_2008, windows_vista)

CVE-2013-3121 (internet_explorer)

CVE-2013-3121 (internet_explorer)

Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2013-3112, CVE-2013-3113, CVE-2013-3139, and CVE-2013-3142.

Source: CVE-2013-3121 (internet_explorer)