|
297141
|
- |
|
cisco
|
unified_computing_system
|
MCTools in the Cisco Management Controller in Cisco Unified Computing System (UCS) allows local users to gain privileges by entering crafted command-line parameters on a Fabric Interconnect device, a…
|
CWE-20
Improper Input Validation
|
CVE-2012-4082
|
2024-11-21 10:42 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297142
|
- |
|
cisco
|
unified_computing_system
|
MCServer in the Cisco Management Controller in Cisco Unified Computing System (UCS) allows local users to cause a denial of service (application crash) via invalid MCTools parameters, aka Bug ID CSCt…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4081
|
2024-11-21 10:42 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297143
|
- |
|
cisco
|
unified_computing_system
|
The Manager component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service via an invalid Smart Call Home contact address, aka Bug ID CSCtl00186.
|
CWE-20
Improper Input Validation
|
CVE-2012-4093
|
2024-11-21 10:42 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297144
|
- |
|
cisco
|
unified_computing_system
|
Multiple buffer overflows in the administrative web interface in Cisco Unified Computing System (UCS) allow remote authenticated users to cause a denial of service (memory corruption and session term…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4083
|
2024-11-21 10:42 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297145
|
- |
|
cisco
|
unified_computing_system
|
The Board Management Controller (BMC) in the Serial over LAN (SoL) subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded private key, which allows man-in-the-middle attackers to obt…
|
CWE-255
Credentials Management
|
CVE-2012-4074
|
2024-11-21 10:42 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297146
|
- |
|
cisco
|
unified_computing_system
|
The KVM subsystem in the client in Cisco Unified Computing System (UCS) does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers, and read or mod…
|
CWE-310
Cryptographic Issues
|
CVE-2012-4073
|
2024-11-21 10:42 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297147
|
- |
|
cisco
|
unified_computing_system
|
The KVM subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers, and read keyboard and mouse events, b…
|
CWE-20
Improper Input Validation
|
CVE-2012-4072
|
2024-11-21 10:42 |
2013-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297148
|
- |
|
eucalyptus
|
eucalyptus
|
Walrus in Eucalyptus before 3.2.2 allows remote attackers to cause a denial of service (memory, thread, and CPU consumption) via a crafted XML message containing a DTD, as demonstrated by a bucket-lo…
|
CWE-399
Resource Management Errors
|
CVE-2012-4067
|
2024-11-21 10:42 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297149
|
- |
|
ruby-lang
|
ruby
|
The safe-level feature in Ruby 1.8.7 allows context-dependent attackers to modify strings via the NameError#to_s method when operating on Ruby objects. NOTE: this issue is due to an incomplete fix f…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4481
|
2024-11-21 10:42 |
2013-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
297150
|
- |
|
ruby-lang
|
ruby
|
Ruby 1.8.7 before patchlevel 371, 1.9.3 before patchlevel 286, and 2.0 before revision r37068 allows context-dependent attackers to bypass safe-level restrictions and modify untainted strings via the…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4466
|
2024-11-21 10:42 |
2013-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
