|
292701
|
- |
|
apple
|
safari
|
Apple Safari before 6.0.1 makes http requests for https URIs in certain circumstances involving a paste into the address bar, which allows user-assisted remote attackers to obtain sensitive informati…
|
CWE-310
Cryptographic Issues
|
CVE-2012-3715
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292702
|
- |
|
apple
|
safari
|
The Form Autofill feature in Apple Safari before 6.0.1 does not restrict the filled fields to the set of fields contained in an Autofill popover, which allows remote attackers to obtain the Me card f…
|
CWE-264
CWE-200
Permissions, Privileges, and Access Controls
Information Exposure
|
CVE-2012-3714
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292703
|
- |
|
apple
|
safari
|
Apple Safari before 6.0.1 does not properly handle the Quarantine attribute of HTML documents, which allows user-assisted remote attackers to read arbitrary files by leveraging the presence of a down…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3713
|
2024-11-21 10:41 |
2012-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292704
|
- |
|
freeradius
|
freeradius
|
Stack-based buffer overflow in the cbtls_verify function in FreeRADIUS 2.1.10 through 2.1.12, when using TLS-based EAP methods, allows remote attackers to cause a denial of service (server crash) and…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3547
|
2024-11-21 10:41 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292705
|
- |
|
freedesktop
|
libdbus
|
libdbus 1.5.x and earlier, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3524
|
2024-11-21 10:41 |
2012-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292706
|
- |
|
cisco
|
ios
|
The SSLVPN implementation in Cisco IOS 15.1 and 15.2, when DTLS is enabled, does not properly handle certain outbound ACL configurations, which allows remote authenticated users to cause a denial of …
|
NVD-CWE-Other
|
CVE-2012-3924
|
2024-11-21 10:41 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292707
|
- |
|
cisco
|
ios
|
The SSLVPN implementation in Cisco IOS 12.4, 15.0, 15.1, and 15.2, when DTLS is not enabled, does not properly handle certain outbound ACL configurations, which allows remote authenticated users to c…
|
NVD-CWE-noinfo
|
CVE-2012-3923
|
2024-11-21 10:41 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292708
|
- |
|
cisco
|
application_control_engine_module
|
The Cisco Application Control Engine (ACE) module 3.0 for Cisco Catalyst switches and Cisco routers does not properly monitor Load Balancer (LB) queues, which allows remote attackers to cause a denia…
|
CWE-399
Resource Management Errors
|
CVE-2012-3919
|
2024-11-21 10:41 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292709
|
- |
|
cisco
|
ios
|
The DMVPN tunnel implementation in Cisco IOS 15.2 allows remote attackers to cause a denial of service (persistent IKE state) via a large volume of hub-to-spoke traffic, aka Bug ID CSCtq39602.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-3915
|
2024-11-21 10:41 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292710
|
- |
|
cisco
|
identity_services_engine_software
identity_services_engine
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the ISE Administrator user interface (aka the Apache Tomcat interface) on Cisco Identity Services Engine (ISE) 3300 series appliances bef…
|
CWE-352
Origin Validation Error
|
CVE-2012-3908
|
2024-11-21 10:41 |
2012-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
