|
289631
|
- |
|
cisco
|
ios
|
Cisco IOS before 15.1(2)SY allows remote authenticated users to cause a denial of service (device crash) by establishing an SSH session from a client and then placing this client into a (1) slow or (…
|
NVD-CWE-noinfo
|
CVE-2012-5014
|
2024-11-21 10:43 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289632
|
- |
|
cisco
|
ios
|
Cisco IOS before 15.3(2)T, when scansafe is enabled, allows remote attackers to cause a denial of service (latency) via SYN packets that are not accompanied by SYN-ACK packets from the Scan Safe Towe…
|
CWE-189
Numeric Errors
|
CVE-2012-4651
|
2024-11-21 10:43 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289633
|
- |
|
cisco
|
ios
|
Cisco IOS before 15.1(1)SY allows local users to cause a denial of service (device reload) by establishing an outbound SSH session, aka Bug ID CSCto00318.
|
NVD-CWE-noinfo
|
CVE-2012-4638
|
2024-11-21 10:43 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289634
|
- |
|
dvs_custom_notification_project
|
dvs_custom_notification
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the DVS Custom Notification plugin 1.0.1 and earlier for WordPress allow remote attackers to hijack the authentication of administrators …
|
CWE-352
Origin Validation Error
|
CVE-2012-4921
|
2024-11-21 10:43 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289635
|
- |
|
zingiri
|
forums
|
Directory traversal vulnerability in the zing_forum_output function in forum.php in the Zingiri Forum (aka Forums) plugin before 1.4.4 for WordPress allows remote attackers to read arbitrary files vi…
|
CWE-22
Path Traversal
|
CVE-2012-4920
|
2024-11-21 10:43 |
2014-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289636
|
- |
|
kingsoft
|
office_2012
|
Stack-based buffer overflow in wpsio.dll in Kingsoft WPS Office 2012 possibly 8.1.0.3238 allows remote attackers to execute arbitrary code via a long BSTR string.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4886
|
2024-11-21 10:43 |
2014-03-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289637
|
- |
|
tuxfamily
|
chrony
|
cmdmon.c in Chrony before 1.29 allows remote attackers to obtain potentially sensitive information from stack memory via vectors related to (1) an invalid subnet in a RPY_SUBNETS_ACCESSED command to …
|
CWE-200
Information Exposure
|
CVE-2012-4503
|
2024-11-21 10:43 |
2013-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289638
|
- |
|
tuxfamily
|
chrony
|
Multiple integer overflows in pktlength.c in Chrony before 1.29 allow remote attackers to cause a denial of service (crash) via a crafted (1) REQ_SUBNETS_ACCESSED or (2) REQ_CLIENT_ACCESSES command r…
|
CWE-189
Numeric Errors
|
CVE-2012-4502
|
2024-11-21 10:43 |
2013-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289639
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_portal_platform
|
Red Hat JBoss Enterprise Application Platform (EAP) before 6.1.0 and JBoss Portal before 6.1.0 does not load the implementation of a custom authorization module for a new application when an implemen…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-4572
|
2024-11-21 10:43 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289640
|
- |
|
redhat
|
jboss_community_application_server
jboss_enterprise_application_platform
|
The org.apache.catalina.connector.Response.encodeURL method in Red Hat JBoss Web 7.1.x and earlier, when the tracking mode is set to COOKIE, sends the jsessionid in the URL of the first response of a…
|
NVD-CWE-noinfo
|
CVE-2012-4529
|
2024-11-21 10:43 |
2013-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
