|
293051
|
- |
|
ibm
|
security_appscan
rational_policy_tester
|
IBM Security AppScan Enterprise before 8.6.0.2 and Rational Policy Tester before 8.5.0.3 do not validate X.509 certificates during scanning, which allows man-in-the-middle attackers to spoof SSL serv…
|
CWE-20
Improper Input Validation
|
CVE-2012-0738
|
2024-11-21 10:35 |
2012-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293052
|
- |
|
oracle
mysql
|
mysql
|
Buffer overflow in yaSSL, as used in MySQL 5.5.20 and possibly other versions including 5.5.x before 5.5.22 and 5.1.x before 5.1.62, allows remote attackers to execute arbitrary code via unspecified …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0882
|
2024-11-21 10:35 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293053
|
- |
|
xmlsoft
apple
|
libxml2
iphone_os
|
libxml2 before 2.8.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumptio…
|
CWE-399
Resource Management Errors
|
CVE-2012-0841
|
2024-11-21 10:35 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293054
|
- |
|
trustedcomputinggroup
|
trousers
|
tcsd in TrouSerS before 0.3.10 allows remote attackers to cause a denial of service (daemon crash) via a crafted type_offset value in a TCP packet to port 30003.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0698
|
2024-11-21 10:35 |
2012-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293055
|
- |
|
redhat
|
resteasy
|
RESTEasy before 2.3.1 allows remote attackers to read arbitrary files via an external entity reference in a DOM document, aka an XML external entity (XXE) injection attack.
|
CWE-200
Information Exposure
|
CVE-2012-0818
|
2024-11-21 10:35 |
2012-11-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293056
|
- |
|
k5n
|
webcalendar
|
Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the Location variable.
|
CWE-79
Cross-site Scripting
|
CVE-2012-0846
|
2024-11-21 10:35 |
2012-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293057
|
- |
|
python
|
python
|
SimpleXMLRPCServer.py in SimpleXMLRPCServer in Python before 2.6.8, 2.7.x before 2.7.3, 3.x before 3.1.5, and 3.2.x before 3.2.3 allows remote attackers to cause a denial of service (infinite loop an…
|
CWE-399
Resource Management Errors
|
CVE-2012-0845
|
2024-11-21 10:35 |
2012-10-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293058
|
- |
|
broadcom
|
license_software
|
CA License (aka CA Licensing) before 1.90.03 allows local users to modify or create arbitrary files, and consequently gain privileges, via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0692
|
2024-11-21 10:35 |
2012-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293059
|
- |
|
broadcom
|
license_software
|
CA License (aka CA Licensing) before 1.90.03 does not properly restrict system commands, which allows local users to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0691
|
2024-11-21 10:35 |
2012-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293060
|
- |
|
ibm
|
rational_team_concert
|
Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified services in IBM Rational Team Concert (RTC) 4.x before 4.0.0.1 allow remote attackers to hijack the authentication of arbitra…
|
CWE-352
Origin Validation Error
|
CVE-2012-0748
|
2024-11-21 10:35 |
2012-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
