|
297151
|
- |
|
bradfordnetworks
|
network_sentry_appliance_software
network_sentry_appliance
|
The agent in Bradford Network Sentry before 5.3.3 does not require authentication for messages, which allows remote attackers to trigger the display of arbitrary text on a workstation via a crafted p…
|
CWE-287
Improper Authentication
|
CVE-2012-2606
|
2024-11-21 10:39 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297152
|
- |
|
bradfordnetworks
|
network_sentry_appliance_software
network_sentry_appliance
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Bradford Network Sentry before 5.3.3 allow remote attackers to hijack the authentication of administrator…
|
CWE-352
Origin Validation Error
|
CVE-2012-2605
|
2024-11-21 10:39 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297153
|
- |
|
bradfordnetworks
|
network_sentry_appliance_software
network_sentry_appliance
|
Multiple cross-site scripting (XSS) vulnerabilities in GuestAccess.jsp in the Guest/Contractor access component in the administrative interface in Bradford Network Sentry before 5.3.3 allow remote au…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2604
|
2024-11-21 10:39 |
2012-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297154
|
- |
|
linux
|
linux_kernel
|
Memory leak in mm/hugetlb.c in the Linux kernel before 3.4.2 allows local users to cause a denial of service (memory consumption or system crash) via invalid MAP_HUGETLB mmap operations.
|
CWE-399
Resource Management Errors
|
CVE-2012-2390
|
2024-11-21 10:39 |
2012-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297155
|
- |
|
bloxx
|
web_filtering
|
Bloxx Web Filtering before 5.0.14 does not properly interpret X-Forwarded-For headers during access-control and logging operations for HTTPS connection attempts, which allows remote attackers to bypa…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2566
|
2024-11-21 10:39 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297156
|
- |
|
bloxx
|
web_filtering
|
Bloxx Web Filtering before 5.0.14 does not use a salt during calculation of a password hash, which makes it easier for context-dependent attackers to determine cleartext passwords via a rainbow-table…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2565
|
2024-11-21 10:39 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297157
|
- |
|
bloxx
|
web_filtering
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Bloxx Web Filtering before 5.0.14 allow remote attackers to hijack the authentication of administrators f…
|
CWE-352
Origin Validation Error
|
CVE-2012-2564
|
2024-11-21 10:39 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297158
|
- |
|
bloxx
|
web_filtering
|
Multiple cross-site scripting (XSS) vulnerabilities in Bloxx Web Filtering before 5.0.14 allow (1) remote attackers to inject arbitrary web script or HTML via web traffic that is examined within the …
|
CWE-79
Cross-site Scripting
|
CVE-2012-2563
|
2024-11-21 10:39 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297159
|
- |
|
siemens
|
wincc
|
Buffer overflow in the DiagAgent web server in Siemens WinCC 7.0 SP3 through Update 2 allows remote attackers to cause a denial of service (agent outage) via crafted input.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2598
|
2024-11-21 10:39 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297160
|
- |
|
siemens
|
wincc
|
Multiple directory traversal vulnerabilities in Siemens WinCC 7.0 SP3 before Update 2 allow remote authenticated users to read arbitrary files via a crafted parameter in a URL.
|
CWE-22
Path Traversal
|
CVE-2012-2597
|
2024-11-21 10:39 |
2012-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
