|
293951
|
- |
|
trustwave
opensuse
fedoraproject
|
modsecurity
opensuse
fedora
|
The mod_security2 module before 2.7.0 for the Apache HTTP Server allows remote attackers to bypass rules, and deliver arbitrary POST data to a PHP application, via a multipart request in which an inv…
|
NVD-CWE-noinfo
|
CVE-2012-4528
|
2024-11-21 10:43 |
2012-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293952
|
- |
|
emc
|
data_protection_advisor
|
Directory traversal vulnerability in the Web UI in EMC Data Protection Advisor (DPA) 5.6 through SP1, 5.7 through SP1, and 5.8 through SP4 allows remote attackers to read arbitrary files via unspecif…
|
CWE-22
Path Traversal
|
CVE-2012-4616
|
2024-11-21 10:43 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293953
|
- |
|
ibm
|
rational_automation_framework
|
IBM Rational Automation Framework (RAF) 3.x through 3.0.0.5 allows remote attackers to bypass intended Env Gen Wizard (aka Environment Generation Wizard) access restrictions by visiting context roots…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4816
|
2024-11-21 10:43 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293954
|
- |
|
siemens
|
ros
rox_i_os
rox_ii_os
ruggedmax_os
|
Siemens RuggedCom Rugged Operating System (ROS) before 3.12, ROX I OS through 1.14.5, ROX II OS through 2.3.0, and RuggedMax OS through 4.2.1.4621.22 use hardcoded private keys for SSL and SSH commun…
|
CWE-200
Information Exposure
|
CVE-2012-4698
|
2024-11-21 10:43 |
2012-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293955
|
- |
|
ibm
|
tivoli_storage_manager_for_space_management
|
Unspecified vulnerability in IBM Tivoli Storage Manager for Space Management (aka TSM HSM) before 6.2.5.0 and 6.3.x before 6.3.1.0 allows local users to read or modify file system objects via unknown…
|
NVD-CWE-noinfo
|
CVE-2012-4859
|
2024-11-21 10:43 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293956
|
- |
|
linux
|
linux_kernel
|
The tcp_illinois_info function in net/ipv4/tcp_illinois.c in the Linux kernel before 3.4.19, when the net.ipv4.tcp_congestion_control illinois setting is enabled, allows local users to cause a denial…
|
CWE-189
Numeric Errors
|
CVE-2012-4565
|
2024-11-21 10:43 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293957
|
- |
|
linux
|
linux_kernel
|
Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as unini…
|
CWE-362
Race Condition
|
CVE-2012-4508
|
2024-11-21 10:43 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293958
|
- |
|
ibm
|
power_5_system_firmware
power_5
|
The Service Processor in the IBM Power 5 91##-### and 940#-### before SF240_418_382 does not ensure that firewall code is executed, which allows remote attackers to execute arbitrary code via unspeci…
|
CWE-255
Credentials Management
|
CVE-2012-4856
|
2024-11-21 10:43 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293959
|
- |
|
ibm
|
rational_clearquest
|
The OSLC interface in the Web Client (aka CQ Web) in IBM Rational ClearQuest 7.1.2.x before 7.1.2.9 and 8.0.0.x before 8.0.0.5 allows remote attackers to conduct phishing attacks via a FRAME element.
|
NVD-CWE-noinfo
|
CVE-2012-4839
|
2024-11-21 10:43 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293960
|
- |
|
ibm
|
lotus_foundations_start
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Foundations Start before 1.2.2c allow remote authenticated users to inject arbitrary web script or HTML via a Webconfig Users user-att…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4848
|
2024-11-21 10:43 |
2012-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
