|
294171
|
- |
|
forescout
|
counteract
|
Multiple cross-site scripting (XSS) vulnerabilities on the Forescout CounterACT NAC device before 7.0 allow remote attackers to inject arbitrary web script or HTML via (1) the a parameter to assets/l…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4983
|
2024-11-21 10:43 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294172
|
- |
|
forescout
|
counteract
|
Open redirect vulnerability in assets/login on the Forescout CounterACT NAC device before 7.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL i…
|
CWE-20
Improper Input Validation
|
CVE-2012-4982
|
2024-11-21 10:43 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294173
|
- |
|
ibm
|
rational_developer_for_system_z
|
The Host Connect emulator in IBM Rational Developer for System z 7.1 through 8.5.1 does not properly store the SSL certificate password, which allows local users to obtain sensitive information via u…
|
CWE-255
Credentials Management
|
CVE-2012-4862
|
2024-11-21 10:43 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294174
|
- |
|
emc
|
rsa_netwitness_informer
|
The web interface in EMC RSA NetWitness Informer before 2.0.5.6 allows remote attackers to conduct clickjacking attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2012-4609
|
2024-11-21 10:43 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294175
|
- |
|
emc
|
rsa_netwitness_informer
|
Cross-site request forgery (CSRF) vulnerability in the web interface in EMC RSA NetWitness Informer before 2.0.5.6 allows remote attackers to hijack the authentication of arbitrary users.
|
CWE-352
Origin Validation Error
|
CVE-2012-4608
|
2024-11-21 10:43 |
2012-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294176
|
- |
|
python
|
keyring
|
Python Keyring 0.9.1 does not securely initialize the cipher when encrypting passwords for CryptedFileKeyring files, which makes it easier for local users to obtain passwords via a brute-force attack.
|
CWE-310
Cryptographic Issues
|
CVE-2012-4571
|
2024-11-21 10:43 |
2012-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294177
|
- |
|
libssh
|
libssh
|
Multiple integer overflows in libssh before 0.5.3 allow remote attackers to cause a denial of service (infinite loop or crash) and possibly execute arbitrary code via unspecified vectors, which trigg…
|
CWE-189
Numeric Errors
|
CVE-2012-4562
|
2024-11-21 10:43 |
2012-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294178
|
- |
|
libssh
|
libssh
|
The (1) publickey_make_dss, (2) publickey_make_rsa, (3) signature_from_string, (4) ssh_do_sign, and (5) ssh_sign_session_id functions in keys.c in libssh before 0.5.3 free "an invalid pointer on an e…
|
NVD-CWE-noinfo
|
CVE-2012-4561
|
2024-11-21 10:43 |
2012-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294179
|
- |
|
libssh
|
libssh
|
Multiple buffer overflows in libssh before 0.5.3 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4560
|
2024-11-21 10:43 |
2012-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294180
|
- |
|
libssh
|
libssh
|
Multiple double free vulnerabilities in the (1) agent_sign_data function in agent.c, (2) channel_request function in channels.c, (3) ssh_userauth_pubkey function in auth.c, (4) sftp_parse_attr_3 func…
|
CWE-399
Resource Management Errors
|
CVE-2012-4559
|
2024-11-21 10:43 |
2012-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
