|
293091
|
- |
|
ibm
|
rational_clearquest
|
IBM Rational ClearQuest 7.1.x through 7.1.2.7 and 8.x through 8.0.0.3 allows remote attackers to obtain potentially sensitive information via a request to a (1) snoop, (2) hello, (3) ivt/, (4) hitcou…
|
CWE-200
Information Exposure
|
CVE-2012-0744
|
2024-11-21 10:35 |
2012-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293092
|
- |
|
ibm
|
aix
vios
|
The kernel in IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.2.1.4-FP-25 SP-02, does not properly implement the dupmsg system call, which allows local users to cause a denial of service (system crash) via a c…
|
CWE-20
Improper Input Validation
|
CVE-2012-0723
|
2024-11-21 10:35 |
2012-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293093
|
- |
|
apple
|
safari
|
WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differen…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0683
|
2024-11-21 10:35 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293094
|
- |
|
apple
|
safari
|
WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a differen…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-0682
|
2024-11-21 10:35 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293095
|
- |
|
apple
|
safari
|
Apple Safari before 6.0 does not properly handle the autocomplete attribute of a password input element, which allows remote attackers to bypass authentication by leveraging an unattended workstation.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0680
|
2024-11-21 10:35 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293096
|
- |
|
apple
|
safari
|
Apple Safari before 6.0 allows remote attackers to read arbitrary files via a feed:// URL.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0679
|
2024-11-21 10:35 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293097
|
- |
|
apple
|
safari
|
Cross-site scripting (XSS) vulnerability in Apple Safari before 6.0 allows remote attackers to inject arbitrary web script or HTML via a feed:// URL.
|
CWE-79
Cross-site Scripting
|
CVE-2012-0678
|
2024-11-21 10:35 |
2012-07-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293098
|
- |
|
postgresql
|
postgresql
|
CRLF injection vulnerability in pg_dump in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows user-assisted remote attackers to execute arbitrary S…
|
CWE-89
SQL Injection
|
CVE-2012-0868
|
2024-11-21 10:35 |
2012-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293099
|
- |
|
opensuse_project
postgresql
debian
redhat
|
opensuse
postgresql
debian_linux
enterprise_linux_server_aus
enterprise_linux_server_eus
enterprise_linux_hpc_node
enterprise_linux_desktop
enterprise_linux_server
enterprise_…
|
PostgreSQL 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 truncates the common name to only 32 characters when verifying SSL certificates, which allows remote attackers to spoof conn…
|
CWE-20
CWE-295
Improper Input Validation
Improper Certificate Validation
|
CVE-2012-0867
|
2024-11-21 10:35 |
2012-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293100
|
- |
|
postgresql
|
postgresql
|
CREATE TRIGGER in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 does not properly check the execute permission for trigger functions marked SECURITY …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-0866
|
2024-11-21 10:35 |
2012-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
