|
291091
|
- |
|
ibm
|
websphere_application_server
|
IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.45, 7.0.x before 7.0.0.25, 8.0.x before 8.0.0.5, and 8.5.x Full Profile before 8.5.0.1, when the PM44303 fix is installed, does not properly …
|
CWE-20
Improper Input Validation
|
CVE-2012-3325
|
2024-11-21 10:40 |
2012-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291092
|
- |
|
hp
|
inode_management_center_pc
|
Multiple unspecified vulnerabilities in HP iNode Management Center before iNode PC 5.1 E0304 allow remote attackers to execute arbitrary code via crafted input, as demonstrated by a stack-based buffe…
|
NVD-CWE-noinfo
|
CVE-2012-3254
|
2024-11-21 10:40 |
2012-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291093
|
- |
|
hp
|
intelligent_management_center
|
Multiple unspecified vulnerabilities in HP Intelligent Management Center (IMC) before 5.0 E0101P05 allow remote attackers to execute arbitrary code via crafted input, as demonstrated by an integer ov…
|
NVD-CWE-noinfo
|
CVE-2012-3253
|
2024-11-21 10:40 |
2012-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291094
|
- |
|
ibm
|
infosphere_guardium
|
The datasource definition editor in IBM InfoSphere Guardium 8.2 and earlier, when the save-password setting is enabled, transmits cleartext database credentials, which allows remote attackers to obta…
|
CWE-310
Cryptographic Issues
|
CVE-2012-3312
|
2024-11-21 10:40 |
2012-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291095
|
- |
|
ibm
|
infosphere_guardium
|
Cross-site request forgery (CSRF) vulnerability in the account-creation panel in IBM InfoSphere Guardium 8.2 and earlier, when the CSRF filtering (aka csrf_status) feature is disabled, allows remote …
|
CWE-352
Origin Validation Error
|
CVE-2012-3309
|
2024-11-21 10:40 |
2012-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291096
|
- |
|
ibm
|
websphere_mq
|
IBM WebSphere MQ 7.1, when an SVRCONN channel is used, allows remote attackers to bypass the security-configuration setup step and obtain queue-manager access via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3295
|
2024-11-21 10:40 |
2012-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291097
|
- |
|
apache
|
qpid
|
Apache QPID 0.14, 0.16, and earlier uses a NullAuthenticator mechanism to authenticate catch-up shadow connections to AMQP brokers, which allows remote attackers to bypass authentication.
|
CWE-287
Improper Authentication
|
CVE-2012-3467
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291098
|
- |
|
sgi
|
performance_co-pilot
|
The pduread function in pdu.c in libpcp in Performance Co-Pilot (PCP) before 3.6.5 does not properly time out connections, which allows remote attackers to cause a denial of service (pmcd hang) by se…
|
NVD-CWE-Other
|
CVE-2012-3421
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291099
|
- |
|
sgi
|
performance_co-pilot
|
Multiple memory leaks in Performance Co-Pilot (PCP) before 3.6.5 allow remote attackers to cause a denial of service (memory consumption or daemon crash) via a large number of PDUs with (1) a crafted…
|
CWE-399
Resource Management Errors
|
CVE-2012-3420
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291100
|
- |
|
sgi
|
performance_co-pilot
|
Performance Co-Pilot (PCP) before 3.6.5 exports some of the /proc file system, which allows attackers to obtain sensitive information such as proc/pid/maps and command line arguments.
|
CWE-200
Information Exposure
|
CVE-2012-3419
|
2024-11-21 10:40 |
2012-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
