|
296361
|
- |
|
cisco
|
unified_computing_system
|
The remote debug shell on the PALO adapter card in Cisco Unified Computing System (UCS) allows local users to gain privileges via malformed show-macstats parameters, aka Bug ID CSCub13772.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-1313
|
2024-11-21 10:36 |
2013-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296362
|
- |
|
juniper
|
networks_mobility_system_software
|
Cross-site scripting (XSS) vulnerability in the WebAAA login functionality (wba_login.html) in Juniper Networks Mobility System Software (MSS) 7.6.x before 7.6.3, 7.7.x before 7.7.1, 7.5.x before 7.5…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1038
|
2024-11-21 10:36 |
2013-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296363
|
- |
|
mit
|
kerberos_5
|
The pkinit_server_return_padata function in plugins/preauth/pkinit/pkinit_srv.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 attempts t…
|
CWE-476
NULL Pointer Dereference
|
CVE-2012-1016
|
2024-11-21 10:36 |
2013-03-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296364
|
- |
|
emc
|
rsa_archer_smartsuite
rsa_archer_egrc
|
Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Archer SmartSuite Framework 4.x and RSA Archer GRC 5.x before 5.2SP1 allow remote attackers to inject arbitrary web script or HTML via u…
|
CWE-79
Cross-site Scripting
|
CVE-2012-1064
|
2024-11-21 10:36 |
2013-02-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296365
|
- |
|
canonical
sebastian_heinlein
|
ubuntu_linux
aptdaemon
|
Aptdaemon 0.43 in Ubuntu 11.10 and 12.04 LTS uses short IDs when importing PPA GPG keys from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-t…
|
NVD-CWE-noinfo
|
CVE-2012-0962
|
2024-11-21 10:36 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296366
|
- |
|
debian
|
apt
advanced_package_tool
|
Apt 0.8.16~exp5ubuntu13.x before 0.8.16~exp5ubuntu13.6, 0.8.16~exp12ubuntu10.x before 0.8.16~exp12ubuntu10.7, and 0.9.7.5ubuntu5.x before 0.9.7.5ubuntu5.2, as used in Ubuntu, uses world-readable perm…
|
CWE-200
Information Exposure
|
CVE-2012-0961
|
2024-11-21 10:36 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296367
|
- |
|
ps_project_management_team
|
unity-firefox-extension
|
content/unity-api.js in the unity-firefox-extension extension 2.4.1 for Firefox exposes the toDataURL function in an API call, which allows remote attackers to bypass the Same Origin Policy and obtai…
|
NVD-CWE-Other
|
CVE-2012-0958
|
2024-11-21 10:36 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296368
|
- |
|
linux
|
linux_kernel
|
The override_release function in kernel/sys.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from kernel stack memory via a uname system call in conjunction with…
|
CWE-16
Configuration
|
CVE-2012-0957
|
2024-11-21 10:36 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296369
|
- |
|
ps_project_management_team
|
unity-firefox-extension
|
Unity integration extension (unity-firefox-extension) before 2.4.1 for Firefox does not properly handle callbacks, which allows remote attackers to cause a denial of service (Firefox crash) and possi…
|
CWE-20
Improper Input Validation
|
CVE-2012-0960
|
2024-11-21 10:36 |
2012-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296370
|
- |
|
remote_login_service_hackers
|
remote_login_service
|
Remote Login Service (RLS) 1.0.0 does not properly clear account information when switching users, which might allow physically proximate users to obtain login credentials.
|
CWE-200
Information Exposure
|
CVE-2012-0959
|
2024-11-21 10:36 |
2012-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
