|
293161
|
- |
|
nagios
icinga
|
nagios
icinga
|
Multiple stack-based buffer overflows in the get_history function in history.cgi in Nagios Core before 3.4.4, and Icinga 1.6.x before 1.6.2, 1.7.x before 1.7.4, and 1.8.x before 1.8.4, might allow re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6096
|
2024-11-21 10:45 |
2013-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293162
|
- |
|
3s-software
|
codesys_runtime_system
|
Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a .. (dot dot) in a reques…
|
CWE-22
Path Traversal
|
CVE-2012-6069
|
2024-11-21 10:45 |
2013-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293163
|
- |
|
3s-software
|
codesys_runtime_system
|
The Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x does not require authentication, which allows remote attackers to (1) execute commands via the command-line interface in the TCP listener…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6068
|
2024-11-21 10:45 |
2013-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293164
|
- |
|
php
|
php
|
The openssl_encrypt function in ext/openssl/openssl.c in PHP 5.3.9 through 5.3.13 does not initialize a certain variable, which allows remote attackers to obtain sensitive information from process me…
|
CWE-200
Information Exposure
|
CVE-2012-6113
|
2024-11-21 10:45 |
2013-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293165
|
- |
|
cisco
|
adaptive_security_appliance_software
adaptive_security_appliance
asa_1000v_cloud_firewall
asa_5500
|
Cisco Adaptive Security Appliances (ASA) devices with firmware 8.x through 8.4(1) do not properly manage SSH sessions, which allows remote authenticated users to cause a denial of service (device cra…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5717
|
2024-11-21 10:45 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293166
|
- |
|
rpm
|
rpm
|
The rpmpkgRead function in lib/package.c in RPM 4.10.x before 4.10.2 does not return an error code in certain situations involving an "unparseable signature," which allows remote attackers to bypass …
|
CWE-255
Credentials Management
|
CVE-2012-6088
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293167
|
- |
|
fireflymediaserver
|
firefly_media_server
|
Firefly Media Server 1.0.0.1359 allows remote attackers to cause a denial of service (NULL pointer dereference) via a (1) crafted Connection HTTP header; a return carriage control character in the (2…
|
NVD-CWE-Other
|
CVE-2012-5875
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293168
|
5.5 |
MEDIUM
Local
|
inkscape
fedoraproject
canonical
opensuse
|
inkscape
fedora
ubuntu_linux
opensuse
|
The rasterization process in Inkscape before 0.48.4 allows local users to read arbitrary files via an external entity in a SVG file, aka an XML external entity (XXE) injection attack.
|
CWE-611
XXE
|
CVE-2012-5656
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293169
|
- |
|
specview
|
specview
|
Directory traversal vulnerability in the web server in SpecView 2.5 build 853 and earlier allows remote attackers to read arbitrary files via a ... (dot dot dot) in a URI.
|
CWE-22
Path Traversal
|
CVE-2012-5972
|
2024-11-21 10:45 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293170
|
- |
|
elite-board
|
elite_bulletin_board
|
Multiple SQL injection vulnerabilities in the (1) update_whosonline_reg and (2) update_whosonline_guest functions in Elite Bulletin Board before 2.1.22 allow remote attackers to execute arbitrary SQL…
|
CWE-89
SQL Injection
|
CVE-2012-5874
|
2024-11-21 10:45 |
2013-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
