|
295951
|
- |
|
secureideas
|
basic_analysis_and_security_engine
|
base_ag_main.php in Basic Analysis and Security Engine (BASE) 1.4.5 allows remote attackers to execute arbitrary code by uploading contents of the file with an executable extension via a create actio…
|
CWE-20
Improper Input Validation
|
CVE-2012-1198
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295952
|
- |
|
acd_systems
|
acdsee
|
Integer overflow in the IDE_ACDStd.apl module for ACDSee 14.1 Build 137 allows remote attackers to execute arbitrary code via crafted "image dimension values" in a BMP file, which triggers a heap-bas…
|
CWE-189
Numeric Errors
|
CVE-2012-1197
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295953
|
- |
|
secureideas
|
basic_analysis_and_security_engine
|
Multiple PHP remote file inclusion vulnerabilities in Basic Analysis and Security Engine (BASE) 1.4.5 allow remote attackers to execute arbitrary PHP code via a URL in the (1) BASE_path parameter to …
|
CWE-94
Code Injection
|
CVE-2012-1199
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295954
|
- |
|
landesk
|
lenovo_thinkmanagement_console
|
Directory traversal vulnerability in the VulCore web service (WSVulnerabilityCore/VulCore.asmx) in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to delete arbitrary files via a .. (dot…
|
CWE-22
Path Traversal
|
CVE-2012-1196
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295955
|
- |
|
landesk
|
lenovo_thinkmanagement_console
|
Unrestricted file upload vulnerability in andesk/managementsuite/core/core.anonymous/ServerSetup.asmx in the ServerSetup web service in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1195
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295956
|
- |
|
microsoft
|
windows_server_2008
|
The resolver in the DNS Server service in Microsoft Windows Server 2008 before R2 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query,…
|
NVD-CWE-Other
|
CVE-2012-1194
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295957
|
- |
|
powerdns
|
powerdns_recursor
|
The resolver in PowerDNS Recursor (aka pdns_recursor) 3.3 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote att…
|
NVD-CWE-Other
|
CVE-2012-1193
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295958
|
- |
|
unbound
|
unbound
|
The resolver in Unbound before 1.4.11 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger co…
|
NVD-CWE-Other
|
CVE-2012-1192
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295959
|
- |
|
d.j.bernstein
|
djbdns
|
The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote a…
|
CWE-20
Improper Input Validation
|
CVE-2012-1191
|
2024-11-21 10:36 |
2012-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
295960
|
- |
|
bluechip
|
bc_post2facebook
|
Cross-site scripting (XSS) vulnerability in the Post data records to facebook (bc_post2facebook) extension before 0.2.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via un…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1087
|
2024-11-21 10:36 |
2012-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
