|
290371
|
- |
|
cisco
|
ios_xr
ios_xe
ios
|
The BGP implementation in Cisco IOS 15.2, IOS XE 3.5.xS before 3.5.2S, and IOS XR 4.1.0 through 4.2.2 allows remote attackers to cause a denial of service (multiple connection resets) by leveraging a…
|
CWE-20
Improper Input Validation
|
CVE-2012-4617
|
2024-11-21 10:43 |
2012-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290372
|
- |
|
cisco
|
secure_desktop
|
The WebLaunch feature in Cisco Secure Desktop before 3.6.6020 does not properly validate binaries that are received by the downloader process, which allows remote attackers to execute arbitrary code …
|
CWE-20
Improper Input Validation
|
CVE-2012-4655
|
2024-11-21 10:43 |
2012-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290373
|
- |
|
wizonesolutions
|
fillpdf
|
The Fill PDF module 7.x-1.x before 7.x-1.2 for Drupal allows remote attackers to write to arbitrary PDF files via unspecified vectors related to the fillpdf_merge_pdf function and incorrect arguments…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-5007
|
2024-11-21 10:43 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290374
|
- |
|
caminova
|
djvu_browser_plug-in
|
Heap-based buffer overflow in npdjvu.dll in Caminova DjVu Browser Plug-in 6.1.4 Build 27351 and other versions before 6.1.4.27993 allows remote attackers to execute arbitrary code via a crafted Sjbz …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5006
|
2024-11-21 10:43 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290375
|
- |
|
frankdeveloper
|
vr_gpub
|
Cross-site request forgery (CSRF) vulnerability in admin/admin_options.php in VR GPub 4.0 allows remote attackers to hijack the authentication of admins for requests that add admin accounts via an ad…
|
CWE-352
Origin Validation Error
|
CVE-2012-5005
|
2024-11-21 10:43 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290376
|
- |
|
parallels
|
h-sphere
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Parallels H-Sphere 3.3 Patch 1 allow remote attackers to hijack the authentication of admins for requests that (1) add group plans via ad…
|
CWE-352
Origin Validation Error
|
CVE-2012-5004
|
2024-11-21 10:43 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290377
|
- |
|
nomachine
|
nx_web_companion
|
nxapplet.jar in No Machine NX Web Companion 3.x and earlier does not properly verify the authenticity of updates, which allows user-assisted remote attackers to execute arbitrary code via a crafted (…
|
CWE-287
Improper Authentication
|
CVE-2012-5003
|
2024-11-21 10:43 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290378
|
- |
|
ricoh
|
sr10_ftp_server
dl-10
|
Stack-based buffer overflow in SR10 FTP server (SR10.exe) 1.1.0.6 in Ricoh DC Software DL-10 4.5.0.1, when the Log file name option is enabled, allows remote attackers to execute arbitrary code via a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-5002
|
2024-11-21 10:43 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290379
|
- |
|
hitachi
|
jp1\/cm2\/network_node_manager
|
Multiple unspecified vulnerabilities in Hitachi JP1/Cm2/Network Node Manager i before 09-50-03 allow remote attackers to cause a denial of service and possibly execute arbitrary code via unspecified …
|
NVD-CWE-noinfo
|
CVE-2012-5001
|
2024-11-21 10:43 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290380
|
- |
|
blueteck
|
witze_addon
|
SQL injection vulnerability in jokes/index.php in the Witze addon 0.9 for deV!L'z Clanportal allows remote attackers to execute arbitrary SQL commands via the id parameter in a show action.
|
CWE-89
SQL Injection
|
CVE-2012-5000
|
2024-11-21 10:43 |
2012-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
