|
294671
|
- |
|
ntrglobal
|
ntr_activex_control
|
Multiple stack-based buffer overflows in the NTR ActiveX control before 2.0.4.8 allow remote attackers to execute arbitrary code via (1) a long bstrUrl parameter to the StartModule method, (2) a long…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0266
|
2024-11-21 10:34 |
2012-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294672
|
- |
|
gnome
|
glib
|
GLib 2.31.8 and earlier, when the g_str_hash function is used, computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to…
|
CWE-310
Cryptographic Issues
|
CVE-2012-0039
|
2024-11-21 10:34 |
2012-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294673
|
- |
|
openstack
|
essex
nova
|
Nova 2011.3 and Essex, when using the OpenStack API, allows remote authenticated users to bypass access restrictions for tenants of other users via an OSAPI request with a modified project_id URI par…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0030
|
2024-11-21 10:34 |
2012-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294674
|
- |
|
cogentdatahub
|
cogent_datahub
opc_datahub
cascade_datahub
|
CRLF injection vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20 and earlier allows remote attackers to inject arbitrary HTTP headers and c…
|
CWE-94
Code Injection
|
CVE-2012-0310
|
2024-11-21 10:34 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294675
|
- |
|
cogentdatahub
|
cogent_datahub
opc_datahub
cascade_datahub
|
Cross-site scripting (XSS) vulnerability in Cogent DataHub 7.1.2 and earlier, Cascade DataHub 6.4.20 and earlier, and OPC DataHub 6.4.20 and earlier allows remote attackers to inject arbitrary web sc…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0309
|
2024-11-21 10:34 |
2012-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294676
|
- |
|
microsoft
|
windows_server_2008
windows_7
windows_xp
windows_server_2003
windows_vista
|
Incomplete blacklist vulnerability in the Windows Packager configuration in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and …
|
NVD-CWE-Other
|
CVE-2012-0013
|
2024-11-21 10:34 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294677
|
- |
|
microsoft
|
windows_xp
windows_server_2003
|
Untrusted search path vulnerability in the Windows Object Packager configuration in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 allows local users to gain privileges via a Trojan horse execu…
|
NVD-CWE-Other
|
CVE-2012-0009
|
2024-11-21 10:34 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294678
|
- |
|
microsoft
|
anti-cross_site_scripting_library
|
The Microsoft Anti-Cross Site Scripting (AntiXSS) Library 3.x and 4.0 does not properly evaluate characters after the detection of a Cascading Style Sheets (CSS) escaped character, which allows remot…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0007
|
2024-11-21 10:34 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294679
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_server_2003
windows_vista
|
The Client/Server Run-time Subsystem (aka CSRSS) in the Win32 subsystem in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP2, and Server 2008 SP2, when a Chinese, Japanese, or Korean syste…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0005
|
2024-11-21 10:34 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294680
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista
|
Unspecified vulnerability in DirectShow in DirectX in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1…
|
NVD-CWE-noinfo
|
CVE-2012-0004
|
2024-11-21 10:34 |
2012-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
