|
296421
|
- |
|
fenrir-inc
|
sleipnir_mobile
|
The Sleipnir Mobile application before 2.1.0 and Sleipnir Mobile Black Edition application before 2.1.0 for Android do not properly implement the WebView class, which allows remote attackers to obtai…
|
CWE-200
Information Exposure
|
CVE-2012-2646
|
2024-11-21 10:39 |
2012-07-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296422
|
- |
|
symantec
|
web_gateway
|
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to a "bl…
|
CWE-89
SQL Injection
|
CVE-2012-2574
|
2024-11-21 10:39 |
2012-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296423
|
- |
|
ray_stode
|
accountsservice
|
The user_change_icon_file_authorized_cb function in /usr/libexec/accounts-daemon in AccountsService before 0.6.22 does not properly check the UID when copying an icon file to the system cache directo…
|
CWE-362
Race Condition
|
CVE-2012-2737
|
2024-11-21 10:39 |
2012-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296424
|
- |
|
trustwave
opensuse
debian
oracle
|
modsecurity
opensuse
debian_linux
http_server
|
ModSecurity before 2.6.6, when used with PHP, does not properly handle single quotes not at the beginning of a request parameter value in the Content-Disposition field of a request with a multipart/f…
|
NVD-CWE-Other
|
CVE-2012-2751
|
2024-11-21 10:39 |
2012-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296425
|
- |
|
nalin_dahyabhai
|
vte
|
The VteTerminal in gnome-terminal (vte) before 0.32.2 allows remote authenticated users to cause a denial of service (long loop and CPU consumption) via an escape sequence with a large repeat count v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2738
|
2024-11-21 10:39 |
2012-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296426
|
- |
|
php
|
php
|
Unspecified vulnerability in the _php_stream_scandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an "ove…
|
NVD-CWE-noinfo
|
CVE-2012-2688
|
2024-11-21 10:39 |
2012-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296427
|
- |
|
postgresql
|
postgresql
|
PostgreSQL 8.3.x before 8.3.19, 8.4.x before 8.4.12, 9.0.x before 9.0.8, and 9.1.x before 9.1.4 allows remote authenticated users to cause a denial of service (server crash) by adding the (1) SECURIT…
|
CWE-399
Resource Management Errors
|
CVE-2012-2655
|
2024-11-21 10:39 |
2012-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296428
|
- |
|
yahoo
|
yahoo\!_browser
|
The Yahoo! Japan Yahoo! Browser application 1.2.0 and earlier for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted ap…
|
CWE-200
Information Exposure
|
CVE-2012-2645
|
2024-11-21 10:39 |
2012-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296429
|
- |
|
johnsoncontrols
|
network_controller
network_controller_firmware
|
The Johnson Controls CK721-A controller with firmware before SSM4388_03.1.0.14_BB allows remote attackers to perform arbitrary actions via crafted packets to TCP port 41014 (aka the download port).
|
CWE-78
OS Command
|
CVE-2012-2607
|
2024-11-21 10:39 |
2012-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296430
|
- |
|
curtis_galloway
|
exif
|
Integer overflow in the jpeg_data_load_data function in jpeg-data.c in libjpeg in exif 0.6.20 allows remote attackers to cause a denial of service (buffer over-read and application crash) or obtain p…
|
CWE-189
Numeric Errors
|
CVE-2012-2845
|
2024-11-21 10:39 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
