|
291111
|
- |
|
gnu
|
emacs
|
lisp/files.el in Emacs 23.2, 23.3, 23.4, and 24.1 automatically executes eval forms in local-variable sections when the enable-local-variables option is set to :safe, which allows user-assisted remot…
|
NVD-CWE-noinfo
|
CVE-2012-3479
|
2024-11-21 10:40 |
2012-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291112
|
- |
|
icinga
|
icinga
|
The database creation script (module/idoutils/db/scripts/create_mysqldb.sh) in Icinga 1.7.1 grants access to all databases to the icinga user, which allows icinga users to access other databases via …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3441
|
2024-11-21 10:40 |
2012-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291113
|
- |
|
condor_project
|
condor
|
Condor before 7.8.2 allows remote attackers to bypass host-based authentication and execute actions such as ALLOW_ADMINISTRATOR or ALLOW_WRITE by connecting from a system with a spoofed reverse DNS h…
|
CWE-287
Improper Authentication
|
CVE-2012-3416
|
2024-11-21 10:40 |
2012-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291114
|
- |
|
gimp
|
gimp
|
Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted KiSS pa…
|
CWE-787
Out-of-bounds Write
|
CVE-2012-3403
|
2024-11-21 10:40 |
2012-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291115
|
- |
|
gimp
|
gimp
|
Integer overflow in plug-ins/common/psd.c in the Adobe Photoshop PSD plugin in GIMP 2.2.13 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a c…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2012-3402
|
2024-11-21 10:40 |
2012-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291116
|
- |
|
samsung
|
kies
|
The MASetupCaller ActiveX control before 1.4.2012.508 in MASetupCaller.dll in MarkAny ContentSAFER, as distributed in Samsung KIES before 2.3.2.12074_13_13, does not properly implement unspecified me…
|
CWE-94
Code Injection
|
CVE-2012-2990
|
2024-11-21 10:40 |
2012-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291117
|
- |
|
websense
|
websense_content_content_gateway
|
Multiple cross-site scripting (XSS) vulnerabilities in monitor/m_overview.ink in Websense Content Gateway before 7.7.3 allow remote attackers to inject arbitrary web script or HTML via the (1) menu o…
|
CWE-79
Cross-site Scripting
|
CVE-2012-2984
|
2024-11-21 10:40 |
2012-08-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291118
|
- |
|
ibm
|
lotus_domino
|
Multiple cross-site scripting (XSS) vulnerabilities in IBM Lotus Domino 7.x and 8.x before 8.5.4 allow remote attackers to inject arbitrary web script or HTML via (1) a URL accessed during use of the…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3302
|
2024-11-21 10:40 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291119
|
- |
|
ibm
|
lotus_domino
|
Multiple CRLF injection vulnerabilities in the HTTP server in IBM Lotus Domino 8.5.x before 8.5.4 allow remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks v…
|
CWE-20
Improper Input Validation
|
CVE-2012-3301
|
2024-11-21 10:40 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291120
|
- |
|
ibm
|
websphere_application_server
|
Cross-site scripting (XSS) vulnerability in the Administrative Console in IBM WebSphere Application Server (WAS) 6.1.x before 6.1.0.45, 7.0.x before 7.0.0.25, 8.0.x before 8.0.0.4, and 8.5.x before 8…
|
CWE-79
Cross-site Scripting
|
CVE-2012-3293
|
2024-11-21 10:40 |
2012-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
