|
297931
|
- |
|
adobe
|
shockwave_player
|
Buffer overflow in Adobe Shockwave Player before 11.6.8.638 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2012-4173, CVE-2012-4174, CVE-2012-4…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4172
|
2024-11-21 10:42 |
2012-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297932
|
- |
|
cipherdyne
|
fwknop
|
Buffer overflow in the run_last_args function in client/fwknop.c in fwknop before 2.0.3, when processing --last, might allow local users to cause a denial of service (client crash) and possibly execu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4436
|
2024-11-21 10:42 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297933
|
- |
|
cipherdyne
|
fwknop
|
fwknop before 2.0.3 does not properly validate IP addresses, which allows remote authenticated users to cause a denial of service (server crash) via a long IP address.
|
CWE-20
Improper Input Validation
|
CVE-2012-4435
|
2024-11-21 10:42 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297934
|
9.8 |
CRITICAL
Network
|
openstack
fedoraproject
redhat
|
swift
fedora
enterprise_linux_server
storage
storage_for_public_cloud
gluster_storage_server_for_on-premise
gluster_storage_management_console
|
OpenStack Object Storage (swift) before 1.7.0 uses the loads function in the pickle Python module unsafely when storing and loading metadata in memcached, which allows remote attackers to execute arb…
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2012-4406
|
2024-11-21 10:42 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297935
|
- |
|
jcore
|
jcore
|
SQL injection vulnerability in admin/index.php in jCore before 1.0pre2 allows remote attackers to execute arbitrary SQL commands via the memberloginid cookie.
|
CWE-89
SQL Injection
|
CVE-2012-4232
|
2024-11-21 10:42 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297936
|
- |
|
jcore
|
jcore
|
Cross-site scripting (XSS) vulnerability in admin/index.php in jCore before 1.0pre2 allows remote attackers to inject arbitrary web script or HTML via the path parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2012-4231
|
2024-11-21 10:42 |
2012-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297937
|
- |
|
oracle
sun
|
jdk
jre
|
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier, and 6 Update 35 and earlier, allows remote attackers to affect confidentiality and …
|
NVD-CWE-noinfo
|
CVE-2012-4416
|
2024-11-21 10:42 |
2012-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297938
|
- |
|
mozilla
suse
canonical
redhat
|
firefox
seamonkey
thunderbird
thunderbird_esr
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_software_development_kit
ubuntu_linux
enterprise_linux_server
Mozilla Firefox before 16.0.1, Firefox ESR 10.x before 10.0.9, Thunderbird before 16.0.1, Thunderbird ESR 10.x before 10.0.9, and SeaMonkey before 2.13.1 omit a security check in the defaultValue fun…
|
CWE-346
Origin Validation Error
|
CVE-2012-4193
|
2024-11-21 10:42 |
2012-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
297939
|
- |
|
mozilla
|
seamonkey
thunderbird
firefox
|
Mozilla Firefox 16.0, Thunderbird 16.0, and SeaMonkey 2.13 allow remote attackers to bypass the Same Origin Policy and read the properties of a Location object via a crafted web site, a related issue…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4192
|
2024-11-21 10:42 |
2012-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297940
|
- |
|
mozilla
canonical
|
firefox
seamonkey
thunderbird
ubuntu_linux
|
The mozilla::net::FailDelayManager::Lookup function in the WebSockets implementation in Mozilla Firefox before 16.0.1, Thunderbird before 16.0.1, and SeaMonkey before 2.13.1 allows remote attackers t…
|
CWE-787
Out-of-bounds Write
|
CVE-2012-4191
|
2024-11-21 10:42 |
2012-10-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
