|
297041
|
- |
|
samba
|
samba
|
The (1) CreateAccount, (2) OpenAccount, (3) AddAccountRights, and (4) RemoveAccountRights LSA RPC procedures in smbd in Samba 3.4.x before 3.4.17, 3.5.x before 3.5.15, and 3.6.x before 3.6.5 do not p…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2111
|
2024-11-21 10:38 |
2012-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297042
|
- |
|
squid-cache
|
squid
|
Squid 3.1.9 allows remote attackers to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might not be reprod…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2213
|
2024-11-21 10:38 |
2012-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297043
|
- |
|
mcafee
|
web_gateway
|
McAfee Web Gateway 7.0 allows remote attackers to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might no…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2212
|
2024-11-21 10:38 |
2012-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297044
|
- |
|
openssl
|
openssl
|
Multiple integer signedness errors in crypto/buffer/buffer.c in OpenSSL 0.9.8v allow remote attackers to conduct buffer overflow attacks, and cause a denial of service (memory corruption) or possibly…
|
CWE-189
Numeric Errors
|
CVE-2012-2131
|
2024-11-21 10:38 |
2012-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297045
|
- |
|
teampass
|
teampass
|
Cross-site scripting (XSS) vulnerability in sources/users.queries.php in TeamPass before 2.1.6 allows remote authenticated users to inject arbitrary web script or HTML via the login parameter in an a…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2234
|
2024-11-21 10:38 |
2012-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297046
|
- |
|
owncloud
|
owncloud
|
Open redirect vulnerability in index.php (aka the Login Page) in ownCloud before 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the r…
|
CWE-20
Improper Input Validation
|
CVE-2012-2270
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297047
|
- |
|
owncloud
|
owncloud
|
Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 3.0.3 allow remote attackers to inject arbitrary web script or HTML via (1) an arbitrary field to apps/contacts/ajax/addcard.php…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2269
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297048
|
- |
|
ryan_walberg
|
php_gift_registry
|
SQL injection vulnerability in users.php in PHP Gift Registry 1.5.5 allows remote authenticated users to execute arbitrary SQL commands via the userid parameter in an edit action.
|
CWE-89
SQL Injection
|
CVE-2012-2236
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297049
|
- |
|
comodo
|
comodo_internet_security
|
Comodo Internet Security before 5.10.228257.2253 on Windows 7 x64 allows local users to cause a denial of service (system crash) via a crafted 32-bit Portable Executable (PE) file with a kernel Image…
|
CWE-94
Code Injection
|
CVE-2012-2273
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297050
|
- |
|
openssl
redhat
|
openssl
|
The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in OpenSSL before 0.9.8v, 1.0.0 before 1.0.0i, and 1.0.1 before 1.0.1a does not properly interpret integer data, which allows remote attackers…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2110
|
2024-11-21 10:38 |
2012-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
