|
296401
|
- |
|
cisco
|
adaptive_security_appliance_software
adaptive_security_appliance
asa_1000v_cloud_firewall
asa_5500
|
Cisco Adaptive Security Appliances (ASA) devices with firmware 8.4 do not properly validate unspecified input related to UNC share pathnames, which allows remote authenticated users to cause a denial…
|
CWE-20
Improper Input Validation
|
CVE-2012-6395
|
2024-11-21 10:46 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296402
|
- |
|
ibm
|
intelligent_operations_center
|
Cross-site scripting (XSS) vulnerability in IBM Intelligent Operations Center 1.5.0 allows remote attackers to inject arbitrary web script or HTML via event data fields.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6360
|
2024-11-21 10:46 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296403
|
- |
|
ibm
|
tivoli_federated_identity_manager
tivoli_federated_identity_manager_business_gateway
|
IBM Tivoli Federated Identity Manager (TFIM) 6.2.0 before 6.2.0.11, 6.2.1 before 6.2.1.3, and 6.2.2 before 6.2.2.2 and Tivoli Federated Identity Manager Business Gateway (TFIMBG) 6.2.0 before 6.2.0.1…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-6359
|
2024-11-21 10:46 |
2013-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296404
|
- |
|
samba
|
samba
|
Samba 4.0.x before 4.0.1, in certain Active Directory domain-controller configurations, does not properly interpret Access Control Entries that are based on an objectClass, which allows remote authen…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0172
|
2024-11-21 10:46 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296405
|
- |
|
cisco
|
quad
webex_social
|
Cross-site scripting (XSS) vulnerability in Cisco WebEx Social (formerly Cisco Quad) allows remote attackers to inject arbitrary web script or HTML via a crafted RSS service link, aka Bug ID CSCub619…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6397
|
2024-11-21 10:46 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296406
|
- |
|
cisco
|
prime_lan_management_solution
|
Cisco Prime LAN Management Solution (LMS) 4.1 through 4.2.2 on Linux does not properly validate authentication and authorization requests in TCP sessions, which allows remote attackers to execute arb…
|
CWE-20
Improper Input Validation
|
CVE-2012-6392
|
2024-11-21 10:46 |
2013-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296407
|
- |
|
rubyonrails
debian
|
ruby_on_rails
rails
debian_linux
|
active_support/core_ext/hash/conversions.rb in Ruby on Rails before 2.3.15, 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly restrict casts of string values, which …
|
CWE-20
Improper Input Validation
|
CVE-2013-0156
|
2024-11-21 10:46 |
2013-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296408
|
- |
|
rubyonrails
debian
|
ruby_on_rails
rails
debian_linux
|
Ruby on Rails 3.0.x before 3.0.19, 3.1.x before 3.1.10, and 3.2.x before 3.2.11 does not properly consider differences in parameter handling between the Active Record component and the JSON implement…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0155
|
2024-11-21 10:46 |
2013-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296409
|
- |
|
xen
|
xen
|
The get_page_type function in xen/arch/x86/mm.c in Xen 4.2, when debugging is enabled, allows local PV or HVM guest administrators to cause a denial of service (assertion failure and hypervisor crash…
|
NVD-CWE-noinfo
|
CVE-2013-0154
|
2024-11-21 10:46 |
2013-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
296410
|
- |
|
hp
|
pki_activex_control
|
The KillProcess method in the HP PKI ActiveX control (HPPKI.ocx) before 1.2.0.1 allows remote attackers to cause a denial of service (kill process) via the partial or full name of a process.
|
CWE-20
Improper Input Validation
|
CVE-2012-6501
|
2024-11-21 10:46 |
2013-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
