|
291981
|
- |
|
microfocus
|
privileged_user_manager
|
Directory traversal vulnerability in the set_log_config function in regclnt.dll in unifid.exe in NetIQ Privileged User Manager 2.3.x before 2.3.1 HF2 allows remote authenticated users to create or ov…
|
CWE-22
Path Traversal
|
CVE-2012-5931
|
2024-11-21 10:45 |
2012-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291982
|
- |
|
microfocus
|
privileged_user_manager
|
The pa_modify_accounts function in auth.dll in unifid.exe in NetIQ Privileged User Manager 2.3.x before 2.3.1 HF2 does not require authentication for the modifyAccounts method, which allows remote at…
|
CWE-287
Improper Authentication
|
CVE-2012-5930
|
2024-11-21 10:45 |
2012-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291983
|
- |
|
ibm
|
tivoli_storage_manager_for_space_management
|
Unspecified vulnerability in IBM Tivoli Storage Manager for Space Management (aka TSM HSM) before 6.2.5.0 and 6.3.x before 6.3.1.0 allows remote attackers to read or modify HSM-managed file system ob…
|
NVD-CWE-noinfo
|
CVE-2012-5954
|
2024-11-21 10:45 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291984
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of arbitrary signed Xtras via a Shockwave movie that contains an Xtra URL, as demonstrated by a URL for an ou…
|
NVD-CWE-Other
|
CVE-2012-6271
|
2024-11-21 10:45 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291985
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player through 11.6.8.638 allows remote attackers to trigger installation of a Shockwave Player 10.4.0.025 compatibility feature via a crafted HTML document that references Shockwave …
|
NVD-CWE-Other
|
CVE-2012-6270
|
2024-11-21 10:45 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291986
|
- |
|
ibm
|
http_server
websphere_application_server
|
Unspecified vulnerability in the IBM HTTP Server component 5.3 in IBM WebSphere Application Server (WAS) for z/OS allows remote attackers to execute arbitrary commands via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2012-5955
|
2024-11-21 10:45 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291987
|
- |
|
ibm
|
rational_clearquest
|
The Web Client (aka CQ Web) in IBM Rational ClearQuest 7.1.2.x before 7.1.2.9 and 8.0.0.x before 8.0.0.5 allows remote attackers to obtain sensitive information via unspecified vectors that trigger a…
|
CWE-200
Information Exposure
|
CVE-2012-5765
|
2024-11-21 10:45 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291988
|
- |
|
squid-cache
|
squid
|
Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service (memory…
|
CWE-20
Improper Input Validation
|
CVE-2012-5643
|
2024-11-21 10:45 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291989
|
- |
|
ovirt
|
sanlock
|
The setup_logging function in log.h in SANLock uses world-writable permissions for /var/log/sanlock.log, which allows local users to overwrite the file content or bypass intended disk-quota restricti…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5638
|
2024-11-21 10:45 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291990
|
- |
|
cisco
|
wireless_lan_controller_software
2000_wireless_lan_controller
2100_wireless_lan_controller
2500_wireless_lan_controller
4100_wireless_lan_controller
4400_wireless_lan_controller
550…
|
Cross-site scripting (XSS) vulnerability in screens/base/web_auth_custom.html on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allows remote authenticated users to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6007
|
2024-11-21 10:45 |
2012-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
