|
296841
|
- |
|
synametrics
|
xeams
|
Cross-site scripting (XSS) vulnerability in Synametrics Technologies Xeams 4.4 Build 5720 allows remote attackers to inject arbitrary web script or HTML via the body of an email.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2569
|
2024-11-21 10:39 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296842
|
- |
|
axigen
|
axigen_mail_server
|
Cross-site scripting (XSS) vulnerability in Axigen Mail Server 8.0.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email.
|
CWE-79
Cross-site Scripting
|
CVE-2012-2592
|
2024-11-21 10:39 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296843
|
- |
|
netfilter
|
iptables
|
extensions/libxt_tcp.c in iptables through 1.4.21 does not match TCP SYN+FIN packets in --syn rules, which might allow remote attackers to bypass intended firewall restrictions via crafted packets. …
|
NVD-CWE-noinfo
|
CVE-2012-2663
|
2024-11-21 10:39 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296844
|
- |
|
google
|
chrome
|
Google Chrome before 21.0.1180.82 on iOS makes certain incorrect calls to WebView methods that trigger use of an applewebdata: URL, which allows remote attackers to bypass the Same Origin Policy and …
|
CWE-79
Cross-site Scripting
|
CVE-2012-2899
|
2024-11-21 10:39 |
2014-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296845
|
- |
|
google
|
chrome
|
Google Chrome before 21.0.1180.82 on iOS on iPad devices allows remote attackers to spoof the Omnibox URL via vectors involving SSL error messages, a related issue to CVE-2012-0674.
|
CWE-310
Cryptographic Issues
|
CVE-2012-2898
|
2024-11-21 10:39 |
2014-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296846
|
- |
|
cgi
|
hotscan
|
Stack-based buffer overflow in Logica HotScan allows remote attackers to cause a denial of service (crash) via a crafted packet.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2624
|
2024-11-21 10:39 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296847
|
- |
|
redhat
|
enterprise_linux
|
Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux (RHEL) 5, allows local users to cause a denial of service (autofs crash and delayed mounts) or prevent "mount expiration" via …
|
CWE-20
Improper Input Validation
|
CVE-2012-2697
|
2024-11-21 10:39 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296848
|
- |
|
openssl
|
openssl
|
crypto/evp/e_aes_cbc_hmac_sha1.c in the AES-NI functionality in the TLS 1.1 and 1.2 implementations in OpenSSL 1.0.1 before 1.0.1d allows remote attackers to cause a denial of service (application cr…
|
CWE-310
Cryptographic Issues
|
CVE-2012-2686
|
2024-11-21 10:39 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296849
|
- |
|
redhat
|
enterprise_virtualization_manager
|
The backend in Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1 does not properly check privileges, which allows remote authenticated users to query arbitrary information via a (1) SOAP …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2696
|
2024-11-21 10:39 |
2013-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296850
|
- |
|
linux
|
linux_kernel
|
The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netli…
|
CWE-20
Improper Input Validation
|
CVE-2012-2669
|
2024-11-21 10:39 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
