|
296591
|
- |
|
hp
|
business_availability_center
|
Cross-site request forgery (CSRF) vulnerability in HP Business Availability Center (BAC) 8.07 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
|
CWE-352
Origin Validation Error
|
CVE-2012-3256
|
2024-11-21 10:40 |
2012-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296592
|
- |
|
hp
|
business_availability_center
|
Cross-site scripting (XSS) vulnerability in HP Business Availability Center (BAC) 8.07 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-3255
|
2024-11-21 10:40 |
2012-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296593
|
- |
|
realflex
|
realwin
flexview
realwindemo
|
Multiple untrusted search path vulnerabilities in RealFlex RealWin before 2.1.13, FlexView before 3.1.86, and RealWinDemo before 2.1.13 allow local users to gain privileges via a Trojan horse (1) rea…
|
NVD-CWE-Other
|
CVE-2012-3004
|
2024-11-21 10:40 |
2012-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296594
|
- |
|
wago
|
wago_i\/o_system_758_industrial_pc_device
|
WAGO I/O System 758 model 758-870, 758-874, 758-875, and 758-876 Industrial PC (IPC) devices have default passwords for unspecified Web Based Management accounts, which makes it easier for remote att…
|
CWE-255
Credentials Management
|
CVE-2012-3013
|
2024-11-21 10:40 |
2012-09-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296595
|
- |
|
arbiter
|
power_sentinel_1133a_firmware
power_sentinel
|
The Arbiter Power Sentinel 1133A device with firmware before 11Jun2012 Rev 421 allows remote attackers to cause a denial of service (Ethernet outage) via unspecified Ethernet traffic that fills a buf…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3012
|
2024-11-21 10:40 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296596
|
- |
|
garrettcom
|
magnum_managed_networks_software-6k
magnum_managed_networks_software-6k_secure
|
The Management Software application in GarrettCom Magnum MNS-6K before 4.4.0, and 14.x before 14.4.0, has a hardcoded password for an administrative account, which allows local users to gain privileg…
|
CWE-255
Credentials Management
|
CVE-2012-3014
|
2024-11-21 10:40 |
2012-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296597
|
- |
|
pizzashack
|
rssh
|
rssh 2.3.3 and earlier allows local users to bypass intended restricted shell access via crafted environment variables in the command line.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3478
|
2024-11-21 10:40 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296598
|
- |
|
wargio
|
naxsi
|
Directory traversal vulnerability in naxsi-ui/nx_extract.py in the Naxsi module before 0.46-1 for Nginx allows local users to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2012-3380
|
2024-11-21 10:40 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296599
|
- |
|
gnome
|
at-spi2-atk
|
The register_application function in atk-adaptor/bridge.c in GNOME at-spi2-atk 2.5.2 does not seed the random number generator and generates predictable temporary file names, which makes it easier fo…
|
CWE-310
Cryptographic Issues
|
CVE-2012-3378
|
2024-11-21 10:40 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296600
|
- |
|
oracle
|
jdk
jre
|
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 6 and earlier allows remote attackers to affect confidentiality, integrity, and availability via u…
|
NVD-CWE-noinfo
|
CVE-2012-3136
|
2024-11-21 10:40 |
2012-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
