|
296421
|
- |
|
microsoft
|
.net_framework
|
Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly validate the permissions of objects in memory, which allows remote attackers to execute arbitrary…
|
CWE-20
Improper Input Validation
|
CVE-2013-0004
|
2024-11-21 10:46 |
2013-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296422
|
- |
|
microsoft
|
.net_framework
|
Buffer overflow in a System.DirectoryServices.Protocols (S.DS.P) namespace method in Microsoft .NET Framework 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 allows remote attackers to execute arbitrary cod…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0003
|
2024-11-21 10:46 |
2013-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296423
|
- |
|
microsoft
|
.net_framework
|
Buffer overflow in the Windows Forms (aka WinForms) component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 3.5, 3.5.1, 4, and 4.5 allows remote attackers to execute arbitrary code …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0002
|
2024-11-21 10:46 |
2013-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296424
|
- |
|
microsoft
|
.net_framework
|
The Windows Forms (aka WinForms) component in Microsoft .NET Framework 1.0 SP3, 1.1 SP1, 2.0 SP2, 3.0 SP2, 4, and 4.5 does not properly initialize memory arrays, which allows remote attackers to obta…
|
CWE-200
Information Exposure
|
CVE-2013-0001
|
2024-11-21 10:46 |
2013-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296425
|
- |
|
maxtom
|
atomymaxsite
|
Unrestricted file upload vulnerability in index.php in Atomymaxsite 2.5 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing …
|
NVD-CWE-Other
|
CVE-2012-6498
|
2024-11-21 10:46 |
2013-01-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296426
|
- |
|
centrify
|
centrify_deployment_manager
centrify_suite
|
Centrify Deployment Manager 2.1.0.283, as distributed in Centrify Suite before 2012.5, allows local users to (1) overwrite arbitrary files via a symlink attack on the adcheckDMoutput temporary file, …
|
CWE-59
Link Following
|
CVE-2012-6348
|
2024-11-21 10:46 |
2013-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296427
|
- |
|
twiki
foswiki
|
twiki
foswiki
|
The localization functionality in TWiki before 5.1.3, and Foswiki 1.0.x through 1.0.10 and 1.1.x through 1.1.6, allows remote attackers to cause a denial of service (memory consumption) via a large i…
|
CWE-189
Numeric Errors
|
CVE-2012-6330
|
2024-11-21 10:46 |
2013-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296428
|
- |
|
perl
|
perl
|
The _compile function in Maketext.pm in the Locale::Maketext implementation in Perl before 5.17.7 does not properly handle backslashes and fully qualified method names during compilation of bracket n…
|
CWE-94
Code Injection
|
CVE-2012-6329
|
2024-11-21 10:46 |
2013-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296429
|
- |
|
rubyonrails
|
rails
|
The Authlogic gem for Ruby on Rails, when used with certain versions before 3.2.10, makes potentially unsafe find_by_id method calls, which might allow remote attackers to conduct CVE-2012-6496 SQL i…
|
CWE-89
SQL Injection
|
CVE-2012-6497
|
2024-11-21 10:46 |
2013-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296430
|
- |
|
rubyonrails
|
rails
ruby_on_rails
|
SQL injection vulnerability in the Active Record component in Ruby on Rails before 3.0.18, 3.1.x before 3.1.9, and 3.2.x before 3.2.10 allows remote attackers to execute arbitrary SQL commands via a …
|
CWE-89
SQL Injection
|
CVE-2012-6496
|
2024-11-21 10:46 |
2013-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
