|
302311
|
- |
|
xnview
|
xnview
|
Heap-based buffer overflow in XnView before 1.99 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted PCT image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0277
|
2024-11-21 10:34 |
2012-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302312
|
- |
|
xnview
|
xnview
|
Multiple heap-based buffer overflows in XnView before 1.99 allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a (1) SGI32LogLum compressed…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0276
|
2024-11-21 10:34 |
2012-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302313
|
- |
|
andreas_gohr
|
dokuwiki
|
Cross-site scripting (XSS) vulnerability in the tpl_mediaFileList function in inc/template.php in DokuWiki before 2012-01-25b allows remote attackers to inject arbitrary web script or HTML via the ns…
|
CWE-79
Cross-site Scripting
|
CVE-2012-0283
|
2024-11-21 10:34 |
2012-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302314
|
- |
|
tryton
|
trytond
|
model/modelstorage.py in the Tryton application framework (trytond) before 2.4.0 for Python does not properly restrict access to the Many2Many field in the relation model, which allows remote authent…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0215
|
2024-11-21 10:34 |
2012-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302315
|
- |
|
microsoft
|
windows_server_2008
windows_xp
windows_7
windows_server_2003
windows_vista
windows_2003_server
|
The Shell in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbit…
|
CWE-94
Code Injection
|
CVE-2012-0175
|
2024-11-21 10:34 |
2012-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302316
|
- |
|
symantec
|
message_filter
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Brightmail Control Center in Symantec Message Filter 6.3 allow remote attackers to hijack the authentication of arbitrary users for reque…
|
CWE-352
Origin Validation Error
|
CVE-2012-0303
|
2024-11-21 10:34 |
2012-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302317
|
- |
|
symantec
|
message_filter
|
Cross-site scripting (XSS) vulnerability in Brightmail Control Center in Symantec Message Filter 6.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2012-0302
|
2024-11-21 10:34 |
2012-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302318
|
- |
|
symantec
|
message_filter
|
Session fixation vulnerability in Brightmail Control Center in Symantec Message Filter 6.3 allows remote attackers to hijack web sessions via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2012-0301
|
2024-11-21 10:34 |
2012-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302319
|
- |
|
symantec
|
message_filter
|
Brightmail Control Center in Symantec Message Filter 6.3 does not properly restrict establishment of sessions to the listening port, which allows remote attackers to obtain potentially sensitive vers…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0300
|
2024-11-21 10:34 |
2012-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
302320
|
- |
|
novell
|
groupwise
|
Directory traversal vulnerability in WebAccess in Novell GroupWise before 8.03 allows remote attackers to read arbitrary files via the User.interface parameter.
|
CWE-22
Path Traversal
|
CVE-2012-0410
|
2024-11-21 10:34 |
2012-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
