|
297151
|
- |
|
ruby-lang
|
ruby
|
Ruby 1.9.3 before patchlevel 286 and 2.0 before revision r37068 allows context-dependent attackers to bypass safe-level restrictions and modify untainted strings via the (1) exc_to_s or (2) name_err_…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4464
|
2024-11-21 10:42 |
2013-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297152
|
- |
|
oracle
|
fusion_middleware
|
Unspecified vulnerability in the Oracle WebCenter Content component in Oracle Fusion Middleware 11.1.1.6.0 allows remote authenticated users to affect confidentiality via unknown vectors related to C…
|
NVD-CWE-noinfo
|
CVE-2012-4303
|
2024-11-21 10:42 |
2013-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297153
|
- |
|
condor_project
redhat
|
condor
enterprise_mrg
|
aviary/jobcontrol.py in Condor, as used in Red Hat Enterprise MRG 2.3, when removing a job, allows remote attackers to cause a denial of service (condor_schedd restart) via square brackets in the cpr…
|
CWE-20
Improper Input Validation
|
CVE-2012-4462
|
2024-11-21 10:42 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297154
|
- |
|
apache
|
qpid
|
The serializing/deserializing functions in the qpid::framing::Buffer class in Apache Qpid 0.20 and earlier allow remote attackers to cause a denial of service (assertion failure and daemon exit) via …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4460
|
2024-11-21 10:42 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297155
|
- |
|
apache
|
qpid
|
Integer overflow in the qpid::framing::Buffer::checkAvailable function in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (crash) via a crafted message, which trigge…
|
CWE-189
Numeric Errors
|
CVE-2012-4459
|
2024-11-21 10:42 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297156
|
- |
|
apache
|
qpid
|
The AMQP type decoder in Apache Qpid 0.20 and earlier allows remote attackers to cause a denial of service (memory consumption and server crash) via a large number of zero width elements in the clien…
|
CWE-189
Numeric Errors
|
CVE-2012-4458
|
2024-11-21 10:42 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297157
|
- |
|
apache
|
qpid
|
The default configuration for Apache Qpid 0.20 and earlier, when the federation_tag attribute is enabled, accepts AMQP connections without checking the source user ID, which allows remote attackers t…
|
CWE-287
Improper Authentication
|
CVE-2012-4446
|
2024-11-21 10:42 |
2013-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297158
|
- |
|
eucalyptus
|
eucalyptus
|
The internal message protocol for Walrus in Eucalyptus 3.2.0 and earlier does not require signatures for unspecified request headers, which allows attackers to (1) delete or (2) upload snapshots.
|
CWE-287
Improper Authentication
|
CVE-2012-4066
|
2024-11-21 10:42 |
2013-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297159
|
- |
|
stone-ware
|
webnetwork
|
Multiple cross-site scripting (XSS) vulnerabilities in Stoneware webNetwork 6.1 before SP1 allow remote attackers to inject arbitrary web script or HTML via the blogName parameter to (1) community/bl…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4352
|
2024-11-21 10:42 |
2013-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297160
|
- |
|
symantec
|
encryption_desktop
pgp_desktop
|
Integer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 allows local users to gain privileges via a crafted application.
|
CWE-189
Numeric Errors
|
CVE-2012-4351
|
2024-11-21 10:42 |
2013-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
