|
301191
|
- |
|
estsoft
|
alftp
|
Untrusted search path vulnerability in ALFTP before 5.31 allows local users to gain privileges via a Trojan horse executable file in a directory that is accessed for reading an extensionless file, as…
|
NVD-CWE-Other
|
CVE-2012-0315
|
2024-11-21 10:34 |
2012-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301192
|
- |
|
symantec
|
pcanywhere
altiris_it_management_suite_pcanywhere_solution
altiris_client_management_suite_pcanywhere_solution
altiris_deployment_solution_remote_pcanywhere_solution
|
Symantec pcAnywhere through 12.5.3, Altiris IT Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1 (aka 12.6.x), Altiris Client Management Suite pcAnywhere Solution 7.0 (aka 12.5.x) and 7.1…
|
CWE-20
Improper Input Validation
|
CVE-2012-0291
|
2024-11-21 10:34 |
2012-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301193
|
- |
|
7t
|
termis
|
Untrusted search path vulnerability in 7-Technologies (7T) TERMIS 2.10 and earlier allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerabi…
|
NVD-CWE-Other
|
CVE-2012-0223
|
2024-11-21 10:34 |
2012-02-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301194
|
- |
|
advantech
|
advantech_webaccess
|
Multiple SQL injection vulnerabilities in Advantech/BroadWin WebAccess before 7.0 allow remote attackers to execute arbitrary SQL commands via crafted string input.
|
CWE-89
SQL Injection
|
CVE-2012-0244
|
2024-11-21 10:34 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301195
|
- |
|
advantech
|
advantech_webaccess
|
Buffer overflow in an ActiveX control in bwocxrun.ocx in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary code by leveraging the ability to write arbitrary content…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0243
|
2024-11-21 10:34 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301196
|
- |
|
advantech
|
advantech_webaccess
|
Format string vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary code via format string specifiers in a message string.
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2012-0242
|
2024-11-21 10:34 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301197
|
- |
|
advantech
|
advantech_webaccess
|
Advantech/BroadWin WebAccess before 7.0 allows remote attackers to cause a denial of service (memory corruption) via a modified stream identifier to a function.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0241
|
2024-11-21 10:34 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301198
|
- |
|
advantech
|
advantech_webaccess
|
GbScriptAddUp.asp in Advantech/BroadWin WebAccess before 7.0 does not properly perform authentication, which allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2012-0240
|
2024-11-21 10:34 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301199
|
- |
|
advantech
|
advantech_webaccess
|
uaddUpAdmin.asp in Advantech/BroadWin WebAccess before 7.0 does not properly perform authentication, which allows remote attackers to modify an administrative password via a password-change request.
|
CWE-287
Improper Authentication
|
CVE-2012-0239
|
2024-11-21 10:34 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301200
|
- |
|
advantech
|
advantech_webaccess
|
Stack-based buffer overflow in opcImg.asp in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0238
|
2024-11-21 10:34 |
2012-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
