|
297741
|
- |
|
cisco
|
adaptive_security_appliance_software
adaptive_security_appliance
asa_1000v_cloud_firewall
asa_5500
|
Cisco Adaptive Security Appliances (ASA) devices with firmware 8.x through 8.4(1) do not properly manage SSH sessions, which allows remote authenticated users to cause a denial of service (device cra…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5717
|
2024-11-21 10:45 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297742
|
- |
|
rpm
|
rpm
|
The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass …
|
CWE-255
Credentials Management
|
CVE-2012-6088
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297743
|
- |
|
fireflymediaserver
|
firefly_media_server
|
Firefly Media Server 1.0.0.1359 allows remote attackers to cause a denial of service (NULL pointer dereference) via a (1) crafted Connection HTTP header; a return carriage control character in the (2…
|
NVD-CWE-Other
|
CVE-2012-5875
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297744
|
5.5 |
MEDIUM
Local
|
inkscape
fedoraproject
canonical
opensuse
|
inkscape
fedora
ubuntu_linux
opensuse
|
The rasterization process in Inkscape before 0.48.4 allows local users to read arbitrary files via an external entity in a SVG file, aka an XML external entity (XXE) injection attack.
|
CWE-611
XXE
|
CVE-2012-5656
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297745
|
- |
|
specview
|
specview
|
Directory traversal vulnerability in the web server in SpecView 2.5 build 853 and earlier allows remote attackers to read arbitrary files via a ... (dot dot dot) in a URI.
|
CWE-22
Path Traversal
|
CVE-2012-5972
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297746
|
- |
|
elite-board
|
elite_bulletin_board
|
Multiple SQL injection vulnerabilities in the (1) update_whosonline_reg and (2) update_whosonline_guest functions in Elite Bulletin Board before 2.1.22 allow remote attackers to execute arbitrary SQL…
|
CWE-89
SQL Injection
|
CVE-2012-5874
|
2024-11-21 10:45 |
2013-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297747
|
- |
|
digium
|
asterisk
certified_asterisk
|
Asterisk Open Source 1.8.x before 1.8.19.1, 10.x before 10.11.1, and 11.x before 11.1.2; Certified Asterisk 1.8.11 before 1.8.11-cert10; and Asterisk Digiumphones 10.x-digiumphones before 10.11.1-dig…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5977
|
2024-11-21 10:45 |
2013-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297748
|
- |
|
swi-prolog
|
swi-prolog
|
Multiple stack-based buffer overflows in the expand function in os/pl-glob.c in SWI-Prolog before 6.2.5 and 6.3.x before 6.3.7 allow remote attackers to cause a denial of service (application crash) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6090
|
2024-11-21 10:45 |
2013-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297749
|
- |
|
swi-prolog
|
swi-prolog
|
Multiple stack-based buffer overflows in the canoniseFileName function in os/pl-os.c in SWI-Prolog before 6.2.5 and 6.3.x before 6.3.7 allow remote attackers to cause a denial of service (application…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6089
|
2024-11-21 10:45 |
2013-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297750
|
- |
|
digium
|
asterisk
certified_asterisk
|
Multiple stack consumption vulnerabilities in Asterisk Open Source 1.8.x before 1.8.19.1, 10.x before 10.11.1, and 11.x before 11.1.2; Certified Asterisk 1.8.11 before 1.8.11-cert10; and Asterisk Dig…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5976
|
2024-11-21 10:45 |
2013-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
