|
292591
|
- |
|
globus
|
globus_toolkit
|
The GridFTP in Globus Toolkit (GT) before 5.2.2, when certain autoconf macros are defined, does not properly check the return value from the getpwnam_r function, which might allow remote attackers to…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3292
|
2024-11-21 10:40 |
2012-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292592
|
- |
|
infradead
|
openconnect
|
Heap-based buffer overflow in OpenConnect 3.18 allows remote servers to cause a denial of service via a crafted greeting banner.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3291
|
2024-11-21 10:40 |
2012-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292593
|
- |
|
google
acer
samsung
|
chrome_os
ac700_chromebook
cr-48_chromebook
chromebox_3
series_5_550_chromebook
series_5_chromebook
|
Multiple unspecified vulnerabilities in Google Chrome before 20.0.1132.22 on the Acer AC700; Samsung Series 5, 5 550, and Chromebox 3; and Cr-48 Chromebook platforms have unknown impact and attack ve…
|
NVD-CWE-noinfo
|
CVE-2012-3290
|
2024-11-21 10:40 |
2012-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292594
|
- |
|
mozilla
|
seamonkey
firefox
thunderbird
thunderbird_esr
|
The glBufferData function in the WebGL implementation in Mozilla Firefox 4.x through 12.0, Firefox ESR 10.x before 10.0.5, Thunderbird 5.0 through 12.0, Thunderbird ESR 10.x before 10.0.5, and SeaMon…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3105
|
2024-11-21 10:40 |
2012-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292595
|
- |
|
asterisk
sangoma
|
certified_asterisk
open_source
asterisk
|
chan_skinny.c in the Skinny (aka SCCP) channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1 allows remote authent…
|
CWE-399
Resource Management Errors
|
CVE-2012-2948
|
2024-11-21 10:40 |
2012-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292596
|
- |
|
debian
digium
|
debian_linux
asterisk
certified_asterisk
|
chan_iax2.c in the IAX2 channel driver in Certified Asterisk 1.8.11-cert before 1.8.11-cert2 and Asterisk Open Source 1.8.x before 1.8.12.1 and 10.x before 10.4.1, when a certain mohinterpret setting…
|
CWE-284
Improper Access Control
|
CVE-2012-2947
|
2024-11-21 10:40 |
2012-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292597
|
- |
|
jaow
|
jaow
|
SQL injection vulnerability in add_ons.php in Jaow 2.4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the add_ons parameter.
|
CWE-89
SQL Injection
|
CVE-2012-2952
|
2024-11-21 10:40 |
2012-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292598
|
- |
|
zte
|
score_m
|
The ZTE sync_agent program for Android 2.3.4 on the Score M device uses a hardcoded ztex1609523 password to control access to commands, which allows remote attackers to gain privileges via a crafted …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2949
|
2024-11-21 10:40 |
2012-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292599
|
9.8 |
CRITICAL
Network
|
golang
|
go
|
golang/go in 1.0.2 fixes all.bash on shared machines. dotest() in src/pkg/debug/gosym/pclntab_test.go creates a temporary file with predicable name and executes it as shell script.
|
-
|
CVE-2012-2666
|
2024-11-21 10:39 |
2021-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292600
|
8.8 |
HIGH
Network
|
axous
|
axous
|
Multiple cross-site request forgery (CSRF) and cross-site scripting (XSS) vulnerabilities in Axous 1.1.1 and earlier allow remote attackers to hijack the authentication of administrators for requests…
|
CWE-352
Origin Validation Error
|
CVE-2012-2629
|
2024-11-21 10:39 |
2020-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
