|
294371
|
- |
|
redhat
|
enterprise_linux
|
Unspecified vulnerability in autofs, as used in Red Hat Enterprise Linux (RHEL) 5, allows local users to cause a denial of service (autofs crash and delayed mounts) or prevent "mount expiration" via …
|
CWE-20
Improper Input Validation
|
CVE-2012-2697
|
2024-11-21 10:39 |
2013-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294372
|
- |
|
openssl
|
openssl
|
crypto/evp/e_aes_cbc_hmac_sha1.c in the AES-NI functionality in the TLS 1.1 and 1.2 implementations in OpenSSL 1.0.1 before 1.0.1d allows remote attackers to cause a denial of service (application cr…
|
CWE-310
Cryptographic Issues
|
CVE-2012-2686
|
2024-11-21 10:39 |
2013-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294373
|
- |
|
redhat
|
enterprise_virtualization_manager
|
The backend in Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.1 does not properly check privileges, which allows remote authenticated users to query arbitrary information via a (1) SOAP …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2696
|
2024-11-21 10:39 |
2013-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294374
|
- |
|
linux
|
linux_kernel
|
The main function in tools/hv/hv_kvp_daemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netli…
|
CWE-20
Improper Input Validation
|
CVE-2012-2669
|
2024-11-21 10:39 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294375
|
- |
|
microsoft
|
windows_server_2008
windows_rt
windows_xp
windows_7
windows_8
windows_server_2003
windows_vista
windows_2003_server
windows_server_2012
|
The OpenType Font (OTF) driver in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and …
|
CWE-94
Code Injection
|
CVE-2012-2556
|
2024-11-21 10:39 |
2012-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294376
|
- |
|
microsoft
|
windows_server_2008
windows_server_2012
|
The IP-HTTPS server in Windows Server 2008 R2 and R2 SP1 and Server 2012 does not properly validate certificates, which allows remote attackers to bypass intended access restrictions via a revoked ce…
|
CWE-20
Improper Input Validation
|
CVE-2012-2549
|
2024-11-21 10:39 |
2012-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294377
|
- |
|
xen
|
xen
|
Xen 4.0, and 4.1, when running a 64-bit PV guest on "older" AMD CPUs, does not properly protect against a certain AMD processor bug, which allows local guest OS users to cause a denial of service (ho…
|
NVD-CWE-noinfo
|
CVE-2012-2934
|
2024-11-21 10:39 |
2012-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294378
|
- |
|
oracle
|
jdk
jre
openjdk
|
Oracle Java SE before 7 Update 6, and OpenJDK 7 before 7u6 build 12 and 8 before build 39, computes hash values without restricting the ability to trigger hash collisions predictably, which allows co…
|
CWE-310
Cryptographic Issues
|
CVE-2012-2739
|
2024-11-21 10:39 |
2012-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294379
|
- |
|
awcm-cms
|
ar_web_content_manager
|
ar web content manager (AWCM) 2.2 does not restrict the number of comment records that can be submitted through HTTP requests, which allows remote attackers to cause a denial of service (disk consump…
|
CWE-399
Resource Management Errors
|
CVE-2012-2438
|
2024-11-21 10:39 |
2012-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294380
|
- |
|
awcm-cms
|
ar_web_content_manager
|
cookie_gen.php in ar web content manager (AWCM) 2.2 does not require authentication, which allows remote attackers to generate arbitrary cookies via the name parameter in conjunction with the content…
|
CWE-287
Improper Authentication
|
CVE-2012-2437
|
2024-11-21 10:39 |
2012-11-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
