|
294541
|
- |
|
kingsoft
|
office_2012
|
Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute arbitrary code via a long BSTR string.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4886
|
2024-11-21 10:43 |
2014-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294542
|
- |
|
tuxfamily
|
chrony
|
cmdmon.c in Chrony before 1.29 allows remote attackers to obtain potentially sensitive information from stack memory via vectors related to (1) an invalid subnet in a RPY_SUBNETS_ACCESSED command to …
|
CWE-200
Information Exposure
|
CVE-2012-4503
|
2024-11-21 10:43 |
2013-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294543
|
- |
|
tuxfamily
|
chrony
|
Multiple integer overflows in pktlength.c in Chrony before 1.29 allow remote attackers to cause a denial of service (crash) via a crafted (1) REQ_SUBNETS_ACCESSED or (2) REQ_CLIENT_ACCESSES command r…
|
CWE-189
Numeric Errors
|
CVE-2012-4502
|
2024-11-21 10:43 |
2013-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294544
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_portal_platform
|
Red Hat JBoss Enterprise Application Platform (EAP) before 6.1.0 and JBoss Portal before 6.1.0 does not load the implementation of a custom authorization module for a new application when an implemen…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4572
|
2024-11-21 10:43 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294545
|
- |
|
redhat
|
jboss_community_application_server
jboss_enterprise_application_platform
|
The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and earlier, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of a…
|
NVD-CWE-noinfo
|
CVE-2012-4529
|
2024-11-21 10:43 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294546
|
- |
|
invensys
|
wonderware_intouch
|
Invensys Wonderware InTouch HMI 2012 R2 and earlier allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4709
|
2024-11-21 10:43 |
2013-10-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294547
|
- |
|
bestpractical
|
rt
|
Request Tracker (RT) 4.x before 4.0.13 does not properly enforce the DeleteTicket and "custom lifecycle transition" permission, which allows remote authenticated users with the ModifyTicket permissio…
|
CWE-255
Credentials Management
|
CVE-2012-4733
|
2024-11-21 10:43 |
2013-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294548
|
- |
|
huawei
|
me60
s7700
e200_usg5100
e200e-x2
e200x3
s5306
s5300
s9300
s6700
s2300
s5700
eudemon300
eudemon_usg9500
cx600
ar_g3
nip200
ne5000e
s3300
ne80e
…
|
The Huawei NE5000E, MA5200G, NE40E, NE80E, ATN, NE40, NE80, NE20E-X6, NE20, ME60, CX600, CX200, CX300, ACU, WLAN AC 6605, S9300, S7700, S2300, S3300, S5300, S3300HI, S5300HI, S5306, S6300, S2700, S37…
|
CWE-310
Cryptographic Issues
|
CVE-2012-4960
|
2024-11-21 10:43 |
2013-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294549
|
- |
|
turck
|
bl67_programmable_gateway_firmware
bl20_programmable_gateway
bl67_programmable_gateway
bl20_programmable_gateway_firmware
|
TURCK BL20 Programmable Gateway and BL67 Programmable Gateway have hardcoded accounts, which allows remote attackers to obtain administrative access via an FTP session.
|
CWE-255
Credentials Management
|
CVE-2012-4697
|
2024-11-21 10:43 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294550
|
- |
|
dentrix
|
g5
|
Henry Schein Dentrix G5 before 15.1.294 has a single internal-database password that is shared across different customers' installations, which allows remote attackers to obtain sensitive information…
|
CWE-255
Credentials Management
|
CVE-2012-4952
|
2024-11-21 10:43 |
2013-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
