|
296461
|
- |
|
wireshark
|
wireshark
|
epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 does not properly construct certain array data structures, which allows remote atta…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2393
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296462
|
- |
|
wireshark
|
wireshark
|
Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allows remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) ANSI MAP, (2) ASF, (3) IEEE 802.11, (4) IEEE 8…
|
CWE-399
Resource Management Errors
|
CVE-2012-2392
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296463
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in the outputPage function in includes/SkinTemplate.php in MediaWiki before 1.17.5, 1.18.x before 1.18.4, and 1.19.x before 1.19.1 allows remote attackers to …
|
CWE-79
Cross-site Scripting
|
CVE-2012-2698
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296464
|
- |
|
libguestfs
|
libguestfs
|
virt-edit in libguestfs before 1.18.0 does not preserve the permissions from the original file and saves the new file with world-readable permissions when editing, which might allow local guest users…
|
CWE-255
Credentials Management
|
CVE-2012-2690
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296465
|
- |
|
redhat
|
sos
|
The sosreport utility in the Red Hat sos package before 2.2-29 does not remove the root user password information from the Kickstart configuration file (/root/anaconda-ks.cfg) when creating an archiv…
|
CWE-255
Credentials Management
|
CVE-2012-2664
|
2024-11-21 10:39 |
2012-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296466
|
- |
|
mikel_olasagasti
|
revelation
|
Revelation 0.4.13-2 and earlier does not iterate through SHA hashing algorithms for AES encryption, which makes it easier for context-dependent attackers to guess passwords via a brute force attack.
|
CWE-255
Credentials Management
|
CVE-2012-2743
|
2024-11-21 10:39 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296467
|
- |
|
mikel_olasagasti
|
revelation
|
Revelation 0.4.13-2 and earlier uses only the first 32 characters of a password followed by a sequence of zeros, which reduces the entropy and makes it easier for context-dependent attackers to crack…
|
CWE-255
Credentials Management
|
CVE-2012-2742
|
2024-11-21 10:39 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296468
|
- |
|
mathew_winstone
|
mobile_tools
|
Multiple cross-site scripting (XSS) vulnerabilities in the Mobile Tools module 6.x-2.x before 6.x-2.3 for Drupal allow remote attackers to inject arbitrary web script or HTML via the (1) Mobile URL f…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2717
|
2024-11-21 10:39 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296469
|
- |
|
shlomi_fish
|
config-inifiles
|
The Config::IniFiles module before 2.71 for Perl creates temporary files with predictable names, which allows local users to overwrite arbitrary files via a symlink attack. NOTE: some of these detai…
|
NVD-CWE-Other
|
CVE-2012-2451
|
2024-11-21 10:39 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296470
|
- |
|
strongswan
|
strongswan
|
The GMP Plugin in strongSwan 4.2.0 through 4.6.3 allows remote attackers to bypass authentication via a (1) empty or (2) zeroed RSA signature, aka "RSA signature verification vulnerability."
|
CWE-287
Improper Authentication
|
CVE-2012-2388
|
2024-11-21 10:39 |
2012-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
