|
294611
|
- |
|
ibm
|
rational_automation_framework
|
IBM Rational Automation Framework (RAF) 3.x through 3.0.0.5 allows remote attackers to bypass intended Env Gen Wizard (aka Environment Generation Wizard) access restrictions by visiting context roots…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4816
|
2024-11-21 10:43 |
2012-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294612
|
- |
|
siemens
|
ros
rox_i_os
rox_ii_os
ruggedmax_os
|
Siemens RuggedCom Rugged Operating System (ROS) before 3.12, ROX I OS through 1.14.5, ROX II OS through 2.3.0, and RuggedMax OS through 4.2.1.4621.22 use hardcoded private keys for SSL and SSH commun…
|
CWE-200
Information Exposure
|
CVE-2012-4698
|
2024-11-21 10:43 |
2012-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294613
|
- |
|
ibm
|
tivoli_storage_manager_for_space_management
|
Unspecified vulnerability in IBM Tivoli Storage Manager for Space Management (aka TSM HSM) before 6.2.5.0 and 6.3.x before 6.3.1.0 allows local users to read or modify file system objects via unknown…
|
NVD-CWE-noinfo
|
CVE-2012-4859
|
2024-11-21 10:43 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294614
|
- |
|
linux
|
linux_kernel
|
The tcp_illinois_info function in net/ipv4/tcp_illinois.c in the Linux kernel before 3.4.19, when the net.ipv4.tcp_congestion_control illinois setting is enabled, allows local users to cause a denial…
|
CWE-189
Numeric Errors
|
CVE-2012-4565
|
2024-11-21 10:43 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294615
|
- |
|
linux
|
linux_kernel
|
Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as unini…
|
CWE-362
Race Condition
|
CVE-2012-4508
|
2024-11-21 10:43 |
2012-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294616
|
- |
|
ibm
|
power_5_system_firmware
power_5
|
The Service Processor in the IBM Power 5 91##-### and 940#-### before SF240_418_382 does not ensure that firewall code is executed, which allows remote attackers to execute arbitrary code via unspeci…
|
CWE-255
Credentials Management
|
CVE-2012-4856
|
2024-11-21 10:43 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294617
|
- |
|
ibm
|
rational_clearquest
|
The OSLC interface in the Web Client (aka CQ Web) in IBM Rational ClearQuest 7.1.2.x before 7.1.2.9 and 8.0.0.x before 8.0.0.5 allows remote attackers to conduct phishing attacks via a FRAME element.
|
NVD-CWE-noinfo
|
CVE-2012-4839
|
2024-11-21 10:43 |
2012-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294618
|
- |
|
ibm
|
lotus_foundations_start
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Foundations Start before 1.2.2c allow remote authenticated users to inject arbitrary web script or HTML via a Webconfig Users user-att…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4848
|
2024-11-21 10:43 |
2012-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294619
|
- |
|
ibm
|
lotus_notes
|
IBM Lotus Notes 8.5.x before 8.5.3 FP3 does not include the HTTPOnly flag in a Set-Cookie header for a web-application cookie, which makes it easier for remote attackers to obtain potentially sensiti…
|
CWE-200
Information Exposure
|
CVE-2012-4846
|
2024-11-21 10:43 |
2012-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
294620
|
- |
|
apache
|
tomcat
|
org/apache/tomcat/util/net/NioEndpoint.java in Apache Tomcat 6.x before 6.0.36 and 7.x before 7.0.28, when the NIO connector is used in conjunction with sendfile and HTTPS, allows remote attackers to…
|
CWE-399
Resource Management Errors
|
CVE-2012-4534
|
2024-11-21 10:43 |
2012-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
