|
292241
|
- |
|
typo3
|
typo3
|
Multiple cross-site scripting (XSS) vulnerabilities in the backend in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allow remote authenticated backend users to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3528
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292242
|
- |
|
typo3
debian
|
typo3
debian_linux
|
view_help.php in the backend help system in TYPO3 4.5.x before 4.5.19, 4.6.x before 4.6.12 and 4.7.x before 4.7.4 allows remote authenticated backend users to unserialize arbitrary objects and possib…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2012-3527
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292243
|
- |
|
thomas_eibner
|
mod_rpaf
|
The reverse proxy add forward module (mod_rpaf) 0.5 and 0.6 for the Apache HTTP Server allows remote attackers to cause a denial of service (server or application crash) via multiple X-Forwarded-For …
|
NVD-CWE-noinfo
|
CVE-2012-3526
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292244
|
- |
|
gnu
canonical
debian
|
binutils
libiberty
ubuntu_linux
debian_linux
|
Multiple integer overflows in the (1) _objalloc_alloc function in objalloc.c and (2) objalloc_alloc macro in include/objalloc.h in GNU libiberty, as used by binutils 2.22, allow remote attackers to c…
|
CWE-189
Numeric Errors
|
CVE-2012-3509
|
2024-11-21 10:41 |
2012-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292245
|
- |
|
mozilla
|
bugzilla
|
Auth/Verify/LDAP.pm in Bugzilla 2.x and 3.x before 3.6.11, 3.7.x and 4.0.x before 4.0.8, 4.1.x and 4.2.x before 4.2.3, and 4.3.x before 4.3.3 does not restrict the characters in a username, which mig…
|
CWE-255
Credentials Management
|
CVE-2012-3981
|
2024-11-21 10:41 |
2012-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292246
|
- |
|
symantec
|
pgp_universal_server
|
Symantec PGP Universal Server 3.2.x before 3.2.1 MP2 does not properly manage sessions that include key search requests, which might allow remote attackers to read a private key in opportunistic circ…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3582
|
2024-11-21 10:41 |
2012-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292247
|
- |
|
opensuse
gnugk
|
leap
opensuse
gnu_gatekeeper
|
GNU Gatekeeper before 3.1 does not limit the number of connections to the status port, which allows remote attackers to cause a denial of service (connection and thread consumption) via a large numbe…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3534
|
2024-11-21 10:41 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292248
|
- |
|
ovirt
ovirt-engine-sdk
|
ovirt-engine-cli
3.1.0.5
ovirt
|
The python SDK before 3.1.0.6 and CLI before 3.1.0.8 for oVirt 3.1 does not check the server SSL certificate against the client keys, which allows remote attackers to spoof a server via a man-in-the-…
|
CWE-310
Cryptographic Issues
|
CVE-2012-3533
|
2024-11-21 10:41 |
2012-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292249
|
- |
|
wireshark
|
wireshark
|
The dissect_drda function in epan/dissectors/packet-drda.c in Wireshark 1.6.x through 1.6.10 and 1.8.x through 1.8.2 allows remote attackers to cause a denial of service (infinite loop and CPU consum…
|
CWE-399
Resource Management Errors
|
CVE-2012-3548
|
2024-11-21 10:41 |
2012-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292250
|
- |
|
mozilla
|
firefox
thunderbird
thunderbird_esr
|
The web console in Mozilla Firefox before 15.0, Firefox ESR 10.x before 10.0.7, Thunderbird before 15.0, and Thunderbird ESR 10.x before 10.0.7 allows user-assisted remote attackers to execute arbitr…
|
CWE-94
Code Injection
|
CVE-2012-3980
|
2024-11-21 10:41 |
2012-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
