|
290651
|
7.5 |
HIGH
Network
|
wordpress
|
wordpress
|
WordPress through 4.8.2 uses a weak MD5-based password hashing algorithm, which makes it easier for attackers to determine cleartext values by leveraging access to the hash values. NOTE: the approach…
|
CWE-326
Inadequate Encryption Strength
|
CVE-2012-6707
|
2024-11-21 10:46 |
2017-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290652
|
9.8 |
CRITICAL
Network
|
inspircd
|
inspircd
|
inspircd in Debian before 2.0.7 does not properly handle unsigned integers. NOTE: This vulnerability exists because of an incomplete fix to CVE-2012-1836.
|
CWE-20
Improper Input Validation
|
CVE-2012-6696
|
2024-11-21 10:46 |
2017-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290653
|
9.8 |
CRITICAL
Network
|
sophos
rarlab
|
threat_detection_engine
unrar
|
A VMSF_DELTA memory corruption was discovered in unrar before 5.5.5, as used in Sophos Anti-Virus Threat Detection Engine before 3.37.2 and other products, that can lead to arbitrary code execution. …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2012-6706
|
2024-11-21 10:46 |
2017-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290654
|
6.1 |
MEDIUM
Network
|
jamroom
|
jamroom
|
Cross Site Scripting (XSS) exists in Jamroom before 4.2.7 via the Status Update field.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6705
|
2024-11-21 10:46 |
2017-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290655
|
7.5 |
HIGH
Network
|
inspire_ircd
debian
|
inspircd
debian_linux
|
InspIRCd before 2.0.7 allows remote attackers to cause a denial of service (infinite loop).
|
CWE-399
Resource Management Errors
|
CVE-2012-6697
|
2024-11-21 10:46 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290656
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The sock_setsockopt function in net/core/sock.c in the Linux kernel before 3.5 mishandles negative values of sk_sndbuf and sk_rcvbuf, which allows local users to cause a denial of service (memory cor…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6704
|
2024-11-21 10:46 |
2016-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290657
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Integer overflow in the snd_compr_allocate_buffer function in sound/core/compress_offload.c in the ALSA subsystem in the Linux kernel before 3.6-rc6-next-20120917 allows local users to cause a denial…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2012-6703
|
2024-11-21 10:46 |
2016-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290658
|
5.9 |
MEDIUM
Network
|
libexpat_project
google
canonical
debian
|
libexpat
android
ubuntu_linux
debian_linux
|
Expat, when used in a parser that has not called XML_SetHashSalt or passed it a seed of 0, makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms via vectors in…
|
CWE-310
Cryptographic Issues
|
CVE-2012-6702
|
2024-11-21 10:46 |
2016-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290659
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Integer overflow in fs/aio.c in the Linux kernel before 3.4.1 allows local users to cause a denial of service or possibly have unspecified other impact via a large AIO iovec.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2012-6701
|
2024-11-21 10:46 |
2016-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290660
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The netlink_sendmsg function in net/netlink/af_netlink.c in the Linux kernel before 3.5.5 does not validate the dst_pid field, which allows local users to have an unspecified impact by spoofing Netli…
|
CWE-284
Improper Access Control
|
CVE-2012-6689
|
2024-11-21 10:46 |
2016-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
