|
293571
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer before 10 allows remote attackers to obtain sensitive information about the existence of files, and read certain data from files, via a UNC share pathname in the SRC attri…
|
CWE-200
Information Exposure
|
CVE-2012-6502
|
2024-11-21 10:46 |
2013-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293572
|
- |
|
cisco
|
nx-os
nexus_7000
nexus_7000_10-slot
nexus_7000_18-slot
nexus_7000_9-slot
|
Cisco NX-OS on Nexus 7000 series switches does not properly handle certain line-card replacements, which might allow remote authenticated users to cause a denial of service (memory consumption) via a…
|
CWE-399
Resource Management Errors
|
CVE-2012-6396
|
2024-11-21 10:46 |
2013-01-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293573
|
- |
|
cisco
|
adaptive_security_appliance_software
adaptive_security_appliance
asa_1000v_cloud_firewall
asa_5500
|
Cisco Adaptive Security Appliances (ASA) devices with firmware 8.4 do not properly validate unspecified input related to UNC share pathnames, which allows remote authenticated users to cause a denial…
|
CWE-20
Improper Input Validation
|
CVE-2012-6395
|
2024-11-21 10:46 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293574
|
- |
|
ibm
|
intelligent_operations_center
|
Cross-site scripting (XSS) vulnerability in IBM Intelligent Operations Center 1.5.0 allows remote attackers to inject arbitrary web script or HTML via event data fields.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6360
|
2024-11-21 10:46 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293575
|
- |
|
ibm
|
tivoli_federated_identity_manager
tivoli_federated_identity_manager_business_gateway
|
IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.11, 6.2.1 before 6.2.1.3, and 6.2.2 before 6.2.2.2 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.2.0 before 6.2.0.1…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6359
|
2024-11-21 10:46 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293576
|
- |
|
samba
|
samba
|
Samba 4.0.x before 4.0.1, in certain Active Directory domain-controller configurations, does not properly interpret Access Control Entries that are based on an objectClass, which allows remote authen…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0172
|
2024-11-21 10:46 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293577
|
- |
|
cisco
|
quad
webex_social
|
Cross-site scripting (XSS) vulnerability in Cisco WebEx Social (formerly Cisco Quad) allows remote attackers to inject arbitrary web script or HTML via a crafted RSS service link, aka Bug ID CSCub619…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6397
|
2024-11-21 10:46 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293578
|
- |
|
cisco
|
prime_lan_management_solution
|
Cisco Prime LAN Management Solution (LMS) 4.1 through 4.2.2 on Linux does not properly validate authentication and authorization requests in TCP sessions, which allows remote attackers to execute arb…
|
CWE-20
Improper Input Validation
|
CVE-2012-6392
|
2024-11-21 10:46 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293579
|
- |
|
rubyonrails
debian
|
ruby_on_rails
rails
debian_linux
|
active_support/core_ext/hash/conversions.rb in Ruby on Rails before 2.3.15, 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly restrict casts of string values, which …
|
CWE-20
Improper Input Validation
|
CVE-2013-0156
|
2024-11-21 10:46 |
2013-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293580
|
- |
|
rubyonrails
debian
|
ruby_on_rails
rails
debian_linux
|
Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly consider differences in parameter handling between the Active Record component and the JSON implement…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0155
|
2024-11-21 10:46 |
2013-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
