|
293131
|
- |
|
ray_stode
|
accountsservice
|
The user_change_icon_file_authorized_cb function in /usr/libexec/accounts-daemon in AccountsService before 0.6.22 does not properly check the UID when copying an icon file to the system cache directo…
|
CWE-362
Race Condition
|
CVE-2012-2737
|
2024-11-21 10:39 |
2012-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293132
|
- |
|
trustwave
opensuse
debian
oracle
|
modsecurity
opensuse
debian_linux
http_server
|
ModSecurity before 2.6.6, when used with PHP, does not properly handle single quotes not at the beginning of a request parameter value in the Content-Disposition field of a request with a multipart/f…
|
NVD-CWE-Other
|
CVE-2012-2751
|
2024-11-21 10:39 |
2012-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293133
|
- |
|
nalin_dahyabhai
|
vte
|
The VteTerminal in gnome-terminal (vte) before 0.32.2 allows remote authenticated users to cause a denial of service (long loop and CPU consumption) via an escape sequence with a large repeat count v…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-2738
|
2024-11-21 10:39 |
2012-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293134
|
- |
|
php
|
php
|
Unspecified vulnerability in the _php_stream_scandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an "ove…
|
NVD-CWE-noinfo
|
CVE-2012-2688
|
2024-11-21 10:39 |
2012-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293135
|
- |
|
postgresql
|
postgresql
|
PostgreSQL 8.3.x before 8.3.19, 8.4.x before 8.4.12, 9.0.x before 9.0.8, and 9.1.x before 9.1.4 allows remote authenticated users to cause a denial of service (server crash) by adding the (1) SECURIT…
|
CWE-399
Resource Management Errors
|
CVE-2012-2655
|
2024-11-21 10:39 |
2012-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293136
|
- |
|
yahoo
|
yahoo\!_browser
|
The Yahoo! Japan Yahoo! Browser application 1.2.0 and earlier for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted ap…
|
CWE-200
Information Exposure
|
CVE-2012-2645
|
2024-11-21 10:39 |
2012-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293137
|
- |
|
johnsoncontrols
|
network_controller
network_controller_firmware
|
The Johnson Controls CK721-A controller with firmware before SSM4388_03.1.0.14_BB allows remote attackers to perform arbitrary actions via crafted packets to TCP port 41014 (aka the download port).
|
CWE-78
OS Command
|
CVE-2012-2607
|
2024-11-21 10:39 |
2012-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293138
|
- |
|
curtis_galloway
|
exif
|
Integer overflow in the jpeg_data_load_data function in jpeg-data.c in libjpeg in exif 0.6.20 allows remote attackers to cause a denial of service (buffer over-read and application crash) or obtain p…
|
CWE-189
Numeric Errors
|
CVE-2012-2845
|
2024-11-21 10:39 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293139
|
- |
|
libexif_project
|
libexif
|
Integer underflow in the exif_entry_get_value function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) 0.6.20 might allow remote attackers to execute arbitrary code via vectors involvin…
|
CWE-189
Numeric Errors
|
CVE-2012-2841
|
2024-11-21 10:39 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293140
|
- |
|
libexif_project
|
libexif
|
Off-by-one error in the exif_convert_utf16_to_utf8 function in exif-entry.c in the EXIF Tag Parsing Library (aka libexif) before 0.6.21 allows remote attackers to cause a denial of service or possibl…
|
CWE-189
Numeric Errors
|
CVE-2012-2840
|
2024-11-21 10:39 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
